VIRY.CZ

Prosim este o kontrolu druheho notebooku, cely je neaky spomaleny

Logfile of random's system information tool 1.09 (written by random/random)
Run by Martinka at 2014-03-29 13:45:45
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 50 GB (34%) free of 145 GB
Total RAM: 1014 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:46:09, on 29.3.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21371)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\WebCam\M3000\M3000Mnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Globe Software\StatBar\StatBar.exe
C:\Program Files\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\WebCam\S6000\S6000Mnt.exe
C:\Program Files\Acer\Acer VCM\AcerVCM.exe
C:\Program Files\PANDORA.TV\PanService\KMPService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Works\WkCalRem.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Martinka\Desktop\RSIT.exe
C:\Program Files\trend micro\Martinka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... 2&st=bs&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... 2&st=bs&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... 2&st=bs&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si= ... e&tid=3192
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si= ... =chrome&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si= ... =chrome&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si= ... 2&st=bs&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si= ... =chrome&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\Martinka\Application Data\Complitly\Complitly.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HomeTab - {9fdfb66c-713b-4201-83a6-5b78ae227b41} - C:\Documents and Settings\NetworkService\Application Data\HomeTab\HomeTab.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: HomeTab - {9fdfb66c-713b-4201-83a6-5b78ae227b41} - C:\Documents and Settings\NetworkService\Application Data\HomeTab\HomeTab.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [M3000Mnt] Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [S6000Mnt] Rundll32.exe S6000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [StatBar] C:\Program Files\Globe Software\StatBar\StatBar.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [UpdateChecker] C:\Program Files\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Microsoft Works\WkCalRem.exe
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/html - {574940E0-1B7A-4881-8FA3-1E809714B156} - (no file)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\KMPService.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

--
End of file - 11354 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\Browser Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-963918322-3784137826-972506294-1005Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-963918322-3784137826-972506294-1005UA.job
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job
C:\WINDOWS\tasks\Protected Search.job
C:\WINDOWS\tasks\RMSchedule.job
C:\WINDOWS\tasks\SystemSockets.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.5.3&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\extensions\
{0545b830-f0aa-4d7e-8820-50a4629a56fe}
{33e0daa6-3af3-d8b5-6752-10e949c61516}
{800b5000-a755-47e1-992b-48a1c1357f07}

C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\
icq-search.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
sweetim.xml
Web Search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Documents and Settings\Martinka\Application Data\Complitly\Complitly.dll [2013-01-24 144456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9fdfb66c-713b-4201-83a6-5b78ae227b41}]
HomeTab - C:\Documents and Settings\NetworkService\Application Data\HomeTab\HomeTab.dll [2013-11-19 1092680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9fdfb66c-713b-4201-83a6-5b78ae227b41} - HomeTab - C:\Documents and Settings\NetworkService\Application Data\HomeTab\HomeTab.dll [2013-11-19 1092680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-02-24 17529856]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-01-25 53248]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-02-05 1430824]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2008-12-30 875016]
"M3000Mnt"=M3000Rmv.dll ,WinMainRmv /StartStillMnt []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2014-02-25 689744]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"S6000Mnt"=S6000Rmv.dll ,WinMainRmv /StartStillMnt []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"StatBar"=C:\Program Files\Globe Software\StatBar\StatBar.exe [2003-07-25 335872]
"Google Update"=C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-01 136176]
"UpdateChecker"=C:\Program Files\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe [2013-11-09 7168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2011-10-21 433872]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Documents and Settings\Martinka\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
wkcalrem.LNK - C:\Program Files\Microsoft Works\WkCalRem.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-14 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Mozilla Firefox"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Program Files\Stronghold\Stronghold Crusader.exe"="C:\Program Files\Stronghold\Stronghold Crusader.exe:*:Enabled:Stronghold Crusader"
"C:\Program Files\Acer\Acer VCM\VC.exe"="C:\Program Files\Acer\Acer VCM\VC.exe:*:Disabled:Acer Video Quality Enhancement"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"c:\windows\mdm.exe"="MSN Messenger"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe"="C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager"
"C:\Program Files\HomeTab\ProtectedSearch.exe"="C:\Program Files\HomeTab\ProtectedSearch.exe:*:Enabled:Protected Search"
"C:\Program Files\HomeTab\TBUpdater.dll"="C:\Program Files\HomeTab\TBUpdater.dll:*:Enabled:Browser Updater"
"C:\Program Files\HomeTab\SystemSockets.exe"="C:\Program Files\HomeTab\SystemSockets.exe:*:Enabled:System Sockets"
"C:\SoloApp\WebDriver.dll"="C:\SoloApp\WebDriver.dll:*:Enabled:WebDriver.dll"
"C:\SoloApp\chromedriver.exe"="C:\SoloApp\chromedriver.exe:*:Enabled:chromedriver.exe"
"C:\SoloApp\IEDriverServer.exe"="C:\SoloApp\IEDriverServer.exe:*:Enabled:IEDriverServer.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe"="C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe:*:Enabled:KMPProcess"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"VIDC.FMVC"=fmcodec.dll

======List of files/folders created in the last 1 month======

2014-03-29 13:45:45 ----D---- C:\rsit
2014-03-19 21:26:18 ----D---- C:\Program Files\Common Files\Bcgsoft
2014-03-19 21:25:46 ----D---- C:\Documents and Settings\All Users\Application Data\PearlMountain
2014-03-19 21:25:45 ----D---- C:\Documents and Settings\Martinka\Application Data\PearlMountain
2014-03-19 21:24:59 ----D---- C:\Program Files\Picture Collage Maker Pro
2014-03-14 16:53:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-03-14 16:51:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-03-11 00:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-03-10 16:46:06 ----N---- C:\WINDOWS\system32\xp_eos.exe

======List of files/folders modified in the last 1 month======

2014-03-29 13:45:53 ----D---- C:\WINDOWS\Temp
2014-03-29 13:45:49 ----D---- C:\Program Files\trend micro
2014-03-29 13:44:46 ----RD---- C:\Program Files
2014-03-29 13:44:44 ----D---- C:\WINDOWS\Prefetch
2014-03-29 01:29:03 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-29 01:29:02 ----D---- C:\WINDOWS\system32\CatRoot2
2014-03-29 00:19:52 ----D---- C:\Program Files\HomeTab
2014-03-22 15:06:24 ----HD---- C:\WINDOWS\inf
2014-03-19 21:26:18 ----D---- C:\Program Files\Common Files
2014-03-19 20:19:43 ----D---- C:\WINDOWS
2014-03-19 18:24:17 ----D---- C:\WINDOWS\system32\NtmsData
2014-03-19 18:24:00 ----SHD---- C:\System Volume Information
2014-03-19 18:23:33 ----D---- C:\WINDOWS\Registration
2014-03-19 15:43:59 ----D---- C:\Maťka
2014-03-19 00:14:21 ----D---- C:\WINDOWS\system32\MRT
2014-03-19 00:14:21 ----AD---- C:\WINDOWS\system32
2014-03-19 00:07:19 ----D---- C:\WINDOWS\Debug
2014-03-19 00:07:16 ----A---- C:\WINDOWS\system32\MRT.exe
2014-03-14 16:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-03-14 16:56:06 ----D---- C:\Program Files\Internet Explorer
2014-03-14 16:55:49 ----D---- C:\WINDOWS\system32\en-US
2014-03-14 16:55:21 ----D---- C:\WINDOWS\ie7updates
2014-03-14 16:48:40 ----SHD---- C:\WINDOWS\Installer
2014-03-14 16:48:38 ----SHD---- C:\Config.Msi
2014-03-14 16:48:37 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-03-13 16:10:01 ----D---- C:\Program Files\The KMPlayer
2014-03-12 18:38:41 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-11 08:01:14 ----SD---- C:\WINDOWS\Tasks
2014-03-04 23:12:59 ----RD---- C:\Program Files\Skype
2014-03-04 23:12:51 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2014-03-02 12:24:03 ----D---- C:\Program Files\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
R0 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
R0 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
R0 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2008-04-14 13952]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2008-04-15 312344]
R0 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-03-12 691696]
R0 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-12-18 135648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-11-25 37352]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2013-08-05 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-12-18 90400]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-02-25 1344224]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-03-23 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-11-05 879528]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-02-24 5032448]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2009-03-02 38912]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 S6000KNT;S6000KNT_WebCam Driver; C:\WINDOWS\System32\Drivers\S6000KNT.sys [2012-02-24 3361408]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-02-05 205232]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 altubxv1;altubxv1; C:\WINDOWS\system32\drivers\altubxv1.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-11-05 539576]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-06-29 156392]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-03-31 55352]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-08-27 74656]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-04-06 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-04-06 25512]
S3 int15.sys;int15.sys; \??\c:\acernb\int15.sys []
S3 M3000Srv;USB2.0 UVC WebCam Driver; C:\WINDOWS\System32\Drivers\M3000KNT.sys [2009-01-02 145408]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2009-02-03 162816]
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2009-11-19 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2009-11-19 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2009-11-19 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2009-11-19 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2009-11-19 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2009-11-19 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2009-11-19 123504]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2014-02-25 440400]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2014-02-25 440400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-11-01 264800]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-15 354840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-12-18 182696]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\KMPService.exe [2013-07-08 1922600]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2009-02-05 237568]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 267776]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-05 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-07-10 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-05 135664]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-02-24 118896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2014-02-25 1017424]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Zdravim

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 29.3.2014
Čas skenování: 21:16:29
Protokol: mbam.txt
Správce: Ano

Verze: 2.00.0.1000
Databáze malwaru: v2014.03.29.06
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto

OS: Windows XP Service Pack 3
CPU: x86
Souborový systém: NTFS
Uživatel: Martinka

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 230690
Uplynulý čas: 29 min, 11 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 1
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UPDATECHECKERAPP.EXE, 1444, , [858562a715667db9fd72cfb436cd04fc]

Moduly: 0
(No malicious items detected)

Klíče registru: 38
PUP.Optional.FaceMoods.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0D7562AE-8EF6-416d-A838-AB665251703A}, , [a96134d589f2b6804852ae58956dd12f],
PUP.Optional.FaceMoods.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{64182481-4F71-486B-A045-B233BD0DA8FC}, , [ed1d8a7f2e4d89add1c734d205fd1de3],
PUP.Optional.FaceMoods.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{64182481-4F71-486B-A045-B233BD0DA8FC}, , [ed1d8a7f2e4d89add1c734d205fd1de3],
PUP.Optional.FaceMoods.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}, , [cc3e0cfde09b270f5e3bb6500bf7e020],
PUP.Optional.FaceMoods.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}, , [cc3e0cfde09b270f5e3bb6500bf7e020],
PUP.Optional.SweetPacks, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EEE6C35C-6118-11DC-9C72-001320C79847}, , [3dcd47c2e7942d092d191ded659df907],
PUP.Optional.SweetPacks, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EEE6C35C-6118-11DC-9C72-001320C79847}, , [3dcd47c2e7942d092d191ded659df907],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{f8c77e88-ecbf-40f9-8e8b-fb0da19c6553}_is1, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{5a578610-cfb2-40c0-808f-2a874346fcc5}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{cc60fe81-0b1d-4dd6-a479-8d1f3ae81c99}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A928E66C-F501-4E66-9953-855C712F93B2}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FCA8936E-403A-4487-A966-70F80F1D5A6A}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.ToolbarInfo.1, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.ToolbarInfo, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{947d3534-7582-4127-a057-0a8a69ec4fe7}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.NotificationSource.1, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.NotificationSource, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{9fdfb66c-713b-4201-83a6-5b78ae227b41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.Band.1, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.Band, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9FDFB66C-713B-4201-83A6-5B78AE227B41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9FDFB66C-713B-4201-83A6-5B78AE227B41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9FDFB66C-713B-4201-83A6-5B78AE227B41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9FDFB66C-713B-4201-83A6-5B78AE227B41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{f6c7dfa0-170e-4fe1-b6ba-dedfc1633560}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.SourceSinkImpl.1, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.SourceSinkImpl, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{9FDFB66C-713B-4201-83A6-5B78AE227B41}\INPROCSERVER32, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.FaceMoods.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ihflimipbcaljfnojhhknppphnnciiif, , [77938b7e473446f0fb4921378a78fe02],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\SWEETIM, , [1ded14f5e59696a0f4c0c0bde61d5ba5],
PUP.Optional.HomeTab.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SIMPLYTECH\HomeTab, , [3bcf769374078da97c0cc39f37cbaf51],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\PriceGong, , [a367d8314e2d300663c52f3aa45e25db],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM, , [2bdf85847803f046b5fe8df0fb08ab55],
PUP.Optional.SqueakyChocolate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SqueakyChocolate, LLC UpdateChecker, , [bb4f87820d6e9c9aba6a81cffa0859a7],

Hodnoty registru: 5
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{9FDFB66C-713B-4201-83A6-5B78AE227B41}, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\SWEETIM|simapp_id, {E88DF905-9D5A-43DC-BB1D-3AAAD30947E2}, , [1ded14f5e59696a0f4c0c0bde61d5ba5]
PUP.Optional.HomeTab.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigURL, http://cdn1.browsersecurity.net/safe/cl ... 6&tid=6533, , [6c9e69a05427c96d53342c36fb0737c9]
PUP.Optional.SqueakyChocolate.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|UpdateChecker, C:\Program Files\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe, , [858562a715667db9fd72cfb436cd04fc]
PUP.Optional.SweetIM.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM|simapp_id, {E88DF905-9D5A-43DC-BB1D-3AAAD30947E2}, , [2bdf85847803f046b5fe8df0fb08ab55]

Data registru: 17
Hijack.SearchPage, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[4cbeca3fd3a814220d2d5fabdb293ac6]
Hijack.SearchPage, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[29e17b8e4d2ed06643f9ab5f5fa501ff]
Hijack.SearchPage, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[7c8ec742a7d4b48283b84cbeba4a7888]
Hijack.SearchPage, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com/), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[8585c643e99257df7ac363a7aa5a46ba]
Hijack.SearchPage, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[f01a49c0f88357df39febd4d54b0fe02]
Hijack.SearchPage, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[e02aba4f7209fd39be7aca407c88619f]
Hijack.SearchPage, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[2edc8b7e6d0ef541f148bf4b010321df]
Hijack.SearchPage, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://search.certified-toolbar.com?si= ... =chrome&q=, Dobré: (http://www.google.com/), Špatné: (http://search.certified-toolbar.com?si= ... =chrome&q=),,[d931fb0e215a44f2142a95757a8ab24e]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si= ... 7E064&q=%s, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... 7E064&q=%s),,[060400093744e35370f754b87a8a768a]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|(Default), http://search.certified-toolbar.com?si= ... 7E064&q=%s, Dobré: (http://www.google.com/), Špatné: (http://search.certified-toolbar.com?si= ... 7E064&q=%s),,[f218c742fd7e1d19fa6ecf3dca3a22de]
Hijack.StartPage, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.certified-toolbar.com?si= ... e&tid=3192, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... e&tid=3192),,[d03ae524e497c27451e495759c686898]
Hijack.SearchPage, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://search.certified-toolbar.com?si= ... 2&st=bs&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... 2&st=bs&q=),,[a1698485e19a59dde257a06a19ebfe02]
Hijack.SearchPage, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://search.certified-toolbar.com?si= ... 2&st=bs&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... 2&st=bs&q=),,[e02a0702f18a9a9c62d520ea58ac47b9]
Hijack.SearchPage, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://search.certified-toolbar.com?si= ... 2&st=bs&q=, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... 2&st=bs&q=),,[907a8881f883fe385bdd49c123e119e7]
Hijack.SearchPage, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://search.certified-toolbar.com?si= ... 2&st=bs&q=, Dobré: (http://www.google.com/), Špatné: (http://search.certified-toolbar.com?si= ... 2&st=bs&q=),,[a961fb0eb2c988ae06386b9f7391c53b]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si= ... =3192&q=%s, Dobré: (http://www.google.com), Špatné: (http://search.certified-toolbar.com?si= ... =3192&q=%s),,[20ea1feaf487be785e096ca02adac43c]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-963918322-3784137826-972506294-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|(Default), http://search.certified-toolbar.com?si= ... =3192&q=%s, Dobré: (http://www.google.com/), Špatné: (http://search.certified-toolbar.com?si= ... =3192&q=%s),,[fd0dee1b3f3c1026491f13f959abc33d]

Složky: 23
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\LocalService\Local Settings\Application Data\SIMPLYTECH\Toolbar, , [da3098719fdc3ff70b85243ed52dd22e],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\Martinka\Local Settings\Application Data\SIMPLYTECH\Toolbar, , [be4c69a063180a2c6f21bba731d125db],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\NetworkService\Local Settings\Application Data\SIMPLYTECH\Toolbar, , [d03ab8517ffc3cfa375976ec768c21df],
PUP.Optional.ProtectedSearch, C:\Documents and Settings\All Users\Start Menu\Programs\PROTECTED SEARCH, , [ad5d8f7a98e3f34345e45ff75fa4926e],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\chrome, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\IE, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\support@HomeTab.com, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\chrome, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\components, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\plugins, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Documents and Settings\All Users\Start Menu\Programs\HomeTab, , [7694c940a1dab48226fdccb315ee8e72],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\39CD33159FA04F5DA72CF9BCDF615C3A, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\7592CA038BE44F55AEEAFAFAC1EF7241, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\B27CD892D5E848F686479C16766710F4, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.FaceMoods.A, C:\Documents and Settings\Martinka\Application Data\facemoods.com, , [b1596a9ff9825bdba382c7902dd5718f],
PUP.Optional.FaceMoods.A, C:\Documents and Settings\Martinka\Application Data\facemoods.com\facemoods, , [b1596a9ff9825bdba382c7902dd5718f],

Soubory: 146
PUP.Optional.HomeTab.A, C:\Documents and Settings\Martinka\Application Data\Complitly\hometab.exe, , [cd3d32d727546bcb90fafc26e31ebc44],
PUP.Optional.HomeTab.A, C:\WINDOWS\Temp\tbu10B8.exe, , [3fcb45c4e4975cda454530f21fe2ba46],
PUP.Optional.HomeTab.A, C:\WINDOWS\Temp\tbu4DD.exe, , [8c7e00092754a98d5535e33f7f8223dd],
PUP.Optional.HomeTab.A, C:\WINDOWS\Temp\tbuDFE.exe, , [12f83ecb7209af878bffa57d7091f808],
Trojan.MSIL, C:\WINDOWS\Temp\is-4FOH9.tmp\8022.exe, , [9674d435a9d2c472015962aaed14ae52],
Trojan.MSIL, C:\WINDOWS\Temp\is-SA80J.tmp\6020.exe, , [54b6e326304bde58203a7993659c8878],
Trojan.MSIL, C:\WINDOWS\Temp\is-SLB0E.tmp\8633.exe, , [d5355dac36455bdb79e16ca09f62669a],
PUP.Optional.Simplytech, C:\WINDOWS\Launcher.exe, , [56b4f613d6a565d1e7d0a1041ae9fa06],
PUP.Optional.SweetIM, C:\WINDOWS\Installer\1ce30ff.msi, , [4fbb0efb4c2fe94df6518da10400d927],
PUP.Optional.WebSearch.A, C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\WEB SEARCH.XML, , [7b8fcb3e3b4094a20a2803592dd56e92],
PUP.Optional.HomeTab.A, C:\WINDOWS\Tasks\BROWSER UPDATER.JOB, , [41c9898079024de9a5e00c56fc06cd33],
PUP.Optional.HomeTab.A, C:\WINDOWS\Tasks\SYSTEMSOCKETS.JOB, , [9e6ca069f982280ee6a073ef689ab749],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\LocalService\Local Settings\Application Data\SIMPLYTECH\Toolbar\settings.dat, , [da3098719fdc3ff70b85243ed52dd22e],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\Martinka\Local Settings\Application Data\SIMPLYTECH\Toolbar\settings.dat, , [be4c69a063180a2c6f21bba731d125db],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\Martinka\Local Settings\Application Data\SIMPLYTECH\Toolbar\settings.ini, , [be4c69a063180a2c6f21bba731d125db],
PUP.Optional.SearchCertifiedTB.A, C:\Documents and Settings\NetworkService\Local Settings\Application Data\SIMPLYTECH\Toolbar\settings.dat, , [d03ab8517ffc3cfa375976ec768c21df],
PUP.Optional.ProtectedSearch, C:\Documents and Settings\All Users\Start Menu\Programs\PROTECTED SEARCH\PROTECTED SEARCH SETTINGS.LNK, , [ad5d8f7a98e3f34345e45ff75fa4926e],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home\home.htm, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home\jquery-ui-1.10.1.custom.min.js, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home\jquiso.js, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home\style.css, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\SIMPLYTECH\home\vars.js, , [888231d895e67abcf030b0cf669d7e82],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home\home.htm, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home\jquery-ui-1.10.1.custom.min.js, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home\jquiso.js, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home\style.css, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\SIMPLYTECH\home\vars.js, , [58b2f5144a31c57147d9f08f748ffc04],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\MICROSOFT.WIN32.TASKSCHEDULER.XML, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-DLS1M.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-RIIBR.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\cinshlpr.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\hometab_icon.ico, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\InstallHelper.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\Interop.IWshRuntimeLibrary.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-0A9H4.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-0M2AF.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-0N5NM.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-0T2I5.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-1KKK0.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-3348M.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-3A1JV.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-4CGGH.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-4NFB6.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-534VM.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-56FG2.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-6PS2R.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-7VC85.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-9QN35.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-AQN13.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-CD7QL.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-DDSOJ.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-DGVAK.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-SCUGP.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-SME4K.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-T1OJP.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-TGBOD.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-TLNJT.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-U1RO8.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-V6RRI.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\Microsoft.Win32.TaskScheduler.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\ProtectedSearch.ico, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\STInst32.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\STInst32.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\System.Data.SQLite.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SystemSockets.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\TaskSchedulerCreator.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\TBUpdater.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\ToolbarUninstall.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\unins000.dat, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\unins000.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\WPackageUpgrade.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\WSearchArmor.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\WSystemDefender.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\WSystemUpdater.exe, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-DQI0B.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-E3BSN.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-FKENT.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-FVOMJ.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-H3KUI.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-IK2HT.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-KEKTU.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-L2S3M.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-LECUC.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-LIFQL.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-MG4I1.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-MPP3I.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-OAA2G.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-OB6SB.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-OI3RV.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-OPEA4.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-PNUR1.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-PP2DH.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-PPK8E.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-QJGOM.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\is-RGTJB.tmp, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\chrome\HomeTab.crx, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\IE\HomeTab.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\chrome.manifest, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\install.js, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\install.rdf, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\pop.htm, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\chrome\HomeTab_6533.jar, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\COMPONENTS\wtb_complete.js, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\SUPPORT@HOMETAB.COM\plugins\npwiddit.dll, , [9476ef1a78037bbbd052413eb74cc63a],
PUP.Optional.HomeTab.A, C:\Documents and Settings\All Users\Start Menu\Programs\HomeTab\PROTECTED SEARCH SETTINGS.LNK, , [7694c940a1dab48226fdccb315ee8e72],
PUP.Optional.ProtectedSearch.A, C:\WINDOWS\Tasks\PROTECTED SEARCH.JOB, , [58b227e2532880b6c26a92ed07fc857b],
PUP.Optional.HomeTab.A, C:\Documents and Settings\LocalService\Application Data\HomeTab\HomeTab.dll, , [4ebc6e9b92e9e84e458f9ee36c97629e],
PUP.Optional.HomeTab.A, C:\Documents and Settings\NetworkService\Application Data\HomeTab\HomeTab.dll, , [02088980126983b39f35631e3fc46b95],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UPDATECHECKERAPP.EXE, , [858562a715667db9fd72cfb436cd04fc],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\1.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\a.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\b.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\c.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\d.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\e.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\f.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\g.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\h.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\i.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\J.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\k.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\l.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\m.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\mru.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\n.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\o.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\p.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\q.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\r.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\s.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\t.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\u.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\v.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\w.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\x.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\y.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.PriceGong.A, C:\Documents and Settings\Martinka\Application Data\PriceGong\Data\z.xml, , [fd0d22e748337bbb2f3666e945bd5fa1],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\39CD33159FA04F5DA72CF9BCDF615C3A\SmileysWeLove_SetupS_cdn.exe, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\7592CA038BE44F55AEEAFAFAC1EF7241\PasswordBoxCHSTORE_p1v0.exe, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\B27CD892D5E848F686479C16766710F4\Trial-14.0.1000.88_en-US_1004739_ROW-EN.exe, , [db2fa6634e2d4ee8d2b54b0450b2fa06],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\System.Net.Json.dll, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\uninstall.exe, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UpdateCheckerApp.exe.config, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UpdateNotifier.exe, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UpdateNotifier.exe.config, , [bb4f87820d6e9c9aba6a81cffa0859a7],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER\UpdaterLibrary.dll, , [bb4f87820d6e9c9aba6a81cffa0859a7],

Fyzické sektory: 0
(No malicious items detected)


(end)

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test zopakujte, at vime, ze se to nevraci. Napiste vysledek, podle nej zvolim dalsi postup.

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 29.3.2014
Čas skenování: 22:14:40
Protokol: mbam2.txt
Správce: Ano

Verze: 2.00.0.1000
Databáze malwaru: v2014.03.29.06
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto

OS: Windows XP Service Pack 3
CPU: x86
Souborový systém: NTFS
Uživatel: Martinka

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 230345
Uplynulý čas: 34 min, 14 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 6
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY, , [6c9ea069700bf64093f4f35c0af816ea],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\39CD33159FA04F5DA72CF9BCDF615C3A, , [6c9ea069700bf64093f4f35c0af816ea],
PUP.Optional.OpenCandy, C:\Documents and Settings\Martinka\Application Data\OPENCANDY\7592CA038BE44F55AEEAFAFAC1EF7241, , [6c9ea069700bf64093f4f35c0af816ea],
PUP.Optional.SqueakyChocolate.A, C:\Program Files\SQUEAKYCHOCOLATE\UPDATECHECKER, , [8d7d7e8b3942b97de93b064a2cd641bf],
PUP.Optional.FaceMoods.A, C:\Documents and Settings\Martinka\Application Data\facemoods.com, , [d63407027cff6fc7b76ecf88df2323dd],
PUP.Optional.FaceMoods.A, C:\Documents and Settings\Martinka\Application Data\facemoods.com\facemoods, , [d63407027cff6fc7b76ecf88df2323dd],

Soubory: 0
(No malicious items detected)

Fyzické sektory: 0
(No malicious items detected)


(end)

Nalezy nechte odstranit, pak MBAM odinstalujte.

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

# AdwCleaner v3.022 - Report created 30/03/2014 at 13:31:51
# Updated 13/03/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Martinka - ACER-9B8A28C521
# Running from : C:\Documents and Settings\Martinka\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Documents and Settings\All Users\Application Data\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\All Users\Application Data\SweetIM
Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\DownTango
Folder Deleted : C:\Program Files\Complitly
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files\Protected Search
Folder Deleted : C:\Program Files\SweetIM
Folder Deleted : C:\Documents and Settings\LocalService\Local Settings\Application Data\HomeTab
Folder Deleted : C:\Documents and Settings\LocalService\Local Settings\Application Data\SimplyTech
Folder Deleted : C:\Documents and Settings\LocalService\Application Data\HomeTab
Folder Deleted : C:\Documents and Settings\LocalService\Application Data\SimplyTech
Folder Deleted : C:\Documents and Settings\NetworkService\Local Settings\Application Data\SimplyTech
Folder Deleted : C:\Documents and Settings\NetworkService\Application Data\HomeTab
Folder Deleted : C:\Documents and Settings\NetworkService\Application Data\SimplyTech
Folder Deleted : C:\Documents and Settings\Martinka\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Martinka\Local Settings\Application Data\DownTango
Folder Deleted : C:\Documents and Settings\Martinka\Local Settings\Application Data\HomeTab
Folder Deleted : C:\Documents and Settings\Martinka\Local Settings\Application Data\SimplyTech
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Complitly
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Dealio
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\registry mechanic
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\ICQToolbarData
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\SweetPacksToolbarData
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Folder Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\invalidprefs.js
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin.gif
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin.src
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\SweetIm.xml
File Deleted : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\HomeTab.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2418376
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\HomeTab\ProtectedSearch.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\HomeTab\TBUpdater.dll]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\HomeTab\SystemSockets.exe]
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Complitly
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\ProtectedSearch
Key Deleted : HKCU\Software\SmileysWeLove
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\Software\simplytech
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\dt soft\daemon tools toolbar
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FB697452-8CA4-46B4-98B1-165C922A2EF3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Protected Search_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{08ED8855-4C2E-429B-A878-F129E1F624FA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0B1AAC97-8563-41D9-AE47-58E6A222F0E1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1CD4D45E-4851-496D-840F-2C2E752ECFB7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{5F05C28D-DEA9-4AD6-A73A-064175988EAB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{94C3BB3A-56A1-43DE-A242-8B41F46E97EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C878CD69-85DB-426B-81A3-E71175AAEB91}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{FB697452-8CA4-46B4-98B1-165C922A2EF3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\facemoods
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Protected Search_is1
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F
Key Deleted : HKLM\Software\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F
Key Deleted : HKLM\Software\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F

***** [ Browsers ] *****

-\\ Internet Explorer v7.0.6000.21371

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]

-\\ Mozilla Firefox v27.0.1 (sk)

[ File : C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultengine", "Web Search");
Line Deleted : user_pref("browser.search.order.1", "Web Search");
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1395595548);
Line Deleted : user_pref("icqtoolbar.history", "%C5%BEivotopis%20Rada%20Proch%C3%A1zku");
Line Deleted : user_pref("icqtoolbar.icqgeo", 4201);
Line Deleted : user_pref("icqtoolbar.installTime", "1390076672");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "27.0.1");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.uniqueID", "138880018813887781611390076672390");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1395595551);
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
Line Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");

-\\ Google Chrome v

[ File : C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [18386 octets] - [30/03/2014 13:27:10]
AdwCleaner[S0].txt - [17786 octets] - [30/03/2014 13:31:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17847 octets] ##########

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte ho. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)



Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2014/03/30 15:14:29

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF [ATA]
- Primary IDE Channel (0)
+ Intel(R) ICH7M/MDH SATA AHCI Controller [ATA]
- WDC WD1600BEVT-22ZCT0
+ AKSR74LI IDE Controller [SCSI]
- PALOXA 3W5URKHI SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD1600BEVT-22ZCT0 : 160,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD1600BEVT-22ZCT0
----------------------------------------------------------------------------
Model : WDC WD1600BEVT-22ZCT0
Firmware : 11.01A11
Serial Number : WD-WXE409RWC806
Disk Size : 160,0 GB (8,4/137,4/160,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 7094 hod.
Power On Count : 3405 krát
Temparature : 35 C (95 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 160 157 _21 0000000003C6 Čas na roztočení ploten
04 _93 _93 __0 000000001ECA Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _91 _91 __0 000000001BB6 Hodin v činnosti
0A 100 _94 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000D4D Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000081 Počet vypnutí disku
C1 164 164 __0 00000001A947 Počet cyklů načítání/vymazání
C2 108 _82 __0 000000000023 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 3039 3039 5257 4338 3036
020: 0000 4000 0032 3131 2E30 3131 3131 5744 4320 5744
030: 3136 3030 4245 5654 2D32 4354 4354 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0706 0706 0000 004C 004C
080: 01FE 0000 746B 7F09 6163 BC09 BC09 6163 407F 0018
090: 0018 0080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 0000 5001 4EE0
110: 569F 948F 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 169E 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 303F 303F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 2BA5

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martinka [Práva správce]
Mód : Kontrola -- Datum : 03/30/2014 15:24:53
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ][PUM] HKLM\[...]\SystemRestore : DisableSR (1) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> NALEZENO
[HJ SMENU][PUM] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 3 ¤¤¤
[FF][PUP] 0ek1zvuf.default : Complitly - Speed up your search with your personal search suggestions tool
[FF][PUP] 0ek1zvuf.default : ICQ Toolbar
[FF][PUP] 0ek1zvuf.default : SweetPacks Toolbar for Firefox

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] SSDT[25] : NtClose @ 0x8056F8D7 -> HOOKED (Unknown @ 0xA16F306C)
[Address] SSDT[41] : NtCreateKey @ 0x80578ACE -> HOOKED (Unknown @ 0xA16F3026)
[Address] SSDT[50] : NtCreateSection @ 0x8056DB66 -> HOOKED (Unknown @ 0xA16F3076)
[Address] SSDT[53] : NtCreateThread @ 0x80584D59 -> HOOKED (Unknown @ 0xA16F301C)
[Address] SSDT[63] : NtDeleteKey @ 0x8059978F -> HOOKED (Unknown @ 0xA16F302B)
[Address] SSDT[65] : NtDeleteValueKey @ 0x805983AE -> HOOKED (Unknown @ 0xA16F3035)
[Address] SSDT[68] : NtDuplicateObject @ 0x8057F1A9 -> HOOKED (Unknown @ 0xA16F3067)
[Address] SSDT[98] : NtLoadKey @ 0x805D5283 -> HOOKED (Unknown @ 0xA16F303A)
[Address] SSDT[122] : NtOpenProcess @ 0x8057F956 -> HOOKED (Unknown @ 0xA16F3008)
[Address] SSDT[128] : NtOpenThread @ 0x805E4867 -> HOOKED (Unknown @ 0xA16F300D)
[Address] SSDT[177] : NtQueryValueKey @ 0x80572F2A -> HOOKED (Unknown @ 0xA16F308F)
[Address] SSDT[193] : NtReplaceKey @ 0x806573A6 -> HOOKED (Unknown @ 0xA16F3044)
[Address] SSDT[200] : NtRequestWaitReplyPort @ 0x8057D153 -> HOOKED (Unknown @ 0xA16F3080)
[Address] SSDT[204] : NtRestoreKey @ 0x80656F3D -> HOOKED (Unknown @ 0xA16F303F)
[Address] SSDT[213] : NtSetContextThread @ 0x80636401 -> HOOKED (Unknown @ 0xA16F307B)
[Address] SSDT[237] : NtSetSecurityObject @ 0x8059DDEB -> HOOKED (Unknown @ 0xA16F3085)
[Address] SSDT[247] : NtSetValueKey @ 0x805800A4 -> HOOKED (Unknown @ 0xA16F3030)
[Address] SSDT[255] : NtSystemDebugControl @ 0x80651C71 -> HOOKED (Unknown @ 0xA16F308A)
[Address] SSDT[257] : NtTerminateProcess @ 0x8058E8D1 -> HOOKED (Unknown @ 0xA16F3017)
[Address] Shadow SSDT[549] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0xA16F309E)
[Address] Shadow SSDT[552] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0xA16F30A3)
[Address] EAT @explorer.exe (LoadRBDString) : igfxpph.dll -> HOOKED (C:\Program Files\Microsoft Office\Office12\1051\GrooveIntlResource.dll @ 0x034A1157)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : PUP ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD1600BEVT-22ZCT0 +++++
--- User ---
[MBR] 67c4c9e788972000c1f719b704657dc6
[BSP] 8e40ff7a714a74f39e7ac9da8facf0ce : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 7169 MB
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 14684160 | Size: 145456 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_03302014_152453.txt >>

Znovu spustte RogueKiller (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martinka [Práva správce]
Mód : Odebrat -- Datum : 03/30/2014 17:56:19
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ][PUM] HKLM\[...]\SystemRestore : DisableSR (1) -> NAHRAZENO (0)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> NAHRAZENO (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> NAHRAZENO (1)
[HJ SMENU][PUM] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 3 ¤¤¤
[FF][PUP] 0ek1zvuf.default : Complitly - Speed up your search with your personal search suggestions tool
[FF][PUP] 0ek1zvuf.default : ICQ Toolbar
[FF][PUP] 0ek1zvuf.default : SweetPacks Toolbar for Firefox

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] SSDT[25] : NtClose @ 0x8056F8D7 -> HOOKED (Unknown @ 0xA16F306C)
[Address] SSDT[41] : NtCreateKey @ 0x80578ACE -> HOOKED (Unknown @ 0xA16F3026)
[Address] SSDT[50] : NtCreateSection @ 0x8056DB66 -> HOOKED (Unknown @ 0xA16F3076)
[Address] SSDT[53] : NtCreateThread @ 0x80584D59 -> HOOKED (Unknown @ 0xA16F301C)
[Address] SSDT[63] : NtDeleteKey @ 0x8059978F -> HOOKED (Unknown @ 0xA16F302B)
[Address] SSDT[65] : NtDeleteValueKey @ 0x805983AE -> HOOKED (Unknown @ 0xA16F3035)
[Address] SSDT[68] : NtDuplicateObject @ 0x8057F1A9 -> HOOKED (Unknown @ 0xA16F3067)
[Address] SSDT[98] : NtLoadKey @ 0x805D5283 -> HOOKED (Unknown @ 0xA16F303A)
[Address] SSDT[122] : NtOpenProcess @ 0x8057F956 -> HOOKED (Unknown @ 0xA16F3008)
[Address] SSDT[128] : NtOpenThread @ 0x805E4867 -> HOOKED (Unknown @ 0xA16F300D)
[Address] SSDT[177] : NtQueryValueKey @ 0x80572F2A -> HOOKED (Unknown @ 0xA16F308F)
[Address] SSDT[193] : NtReplaceKey @ 0x806573A6 -> HOOKED (Unknown @ 0xA16F3044)
[Address] SSDT[200] : NtRequestWaitReplyPort @ 0x8057D153 -> HOOKED (Unknown @ 0xA16F3080)
[Address] SSDT[204] : NtRestoreKey @ 0x80656F3D -> HOOKED (Unknown @ 0xA16F303F)
[Address] SSDT[213] : NtSetContextThread @ 0x80636401 -> HOOKED (Unknown @ 0xA16F307B)
[Address] SSDT[237] : NtSetSecurityObject @ 0x8059DDEB -> HOOKED (Unknown @ 0xA16F3085)
[Address] SSDT[247] : NtSetValueKey @ 0x805800A4 -> HOOKED (Unknown @ 0xA16F3030)
[Address] SSDT[255] : NtSystemDebugControl @ 0x80651C71 -> HOOKED (Unknown @ 0xA16F308A)
[Address] SSDT[257] : NtTerminateProcess @ 0x8058E8D1 -> HOOKED (Unknown @ 0xA16F3017)
[Address] Shadow SSDT[549] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0xA16F309E)
[Address] Shadow SSDT[552] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0xA16F30A3)
[Address] EAT @explorer.exe (LoadRBDString) : igfxpph.dll -> HOOKED (C:\Program Files\Microsoft Office\Office12\1051\GrooveIntlResource.dll @ 0x034A1157)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : PUP ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD1600BEVT-22ZCT0 +++++
--- User ---
[MBR] 67c4c9e788972000c1f719b704657dc6
[BSP] 8e40ff7a714a74f39e7ac9da8facf0ce : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 7169 MB
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 14684160 | Size: 145456 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_03302014_175618.txt >>
RKreport[0]_S_03302014_152453.txt

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martinka [Práva správce]
Mód : Oprava HOSTS -- Datum : 03/30/2014 17:57:39
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : PUP ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


ÿþ1

¤¤¤ Resetovaný HOSTS: ¤¤¤


Dokončeno : << RKreport[0]_H_03302014_175738.txt >>
RKreport[0]_D_03302014_175618.txt;RKreport[0]_S_03302014_152453.txt

Dejte novy log z RSIT

Logfile of random's system information tool 1.09 (written by random/random)
Run by Martinka at 2014-03-30 18:26:16
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 50 GB (34%) free of 145 GB
Total RAM: 1014 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:26:25, on 30.3.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21371)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\WebCam\M3000\M3000Mnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Globe Software\StatBar\StatBar.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\WINDOWS\WebCam\S6000\S6000Mnt.exe
C:\Program Files\Acer\Acer VCM\AcerVCM.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\PANDORA.TV\PanService\KMPService.exe
C:\Program Files\Microsoft Works\WkCalRem.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Martinka\Desktop\RSIT.exe
C:\Program Files\trend micro\Martinka.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [M3000Mnt] Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [S6000Mnt] Rundll32.exe S6000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [StatBar] C:\Program Files\Globe Software\StatBar\StatBar.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Microsoft Works\WkCalRem.exe
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/html - {574940E0-1B7A-4881-8FA3-1E809714B156} - (no file)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\KMPService.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

--
End of file - 9186 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-963918322-3784137826-972506294-1005Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-963918322-3784137826-972506294-1005UA.job
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job
C:\WINDOWS\tasks\RMSchedule.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.google.sk/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\extensions\
staged
{0545b830-f0aa-4d7e-8820-50a4629a56fe}

C:\Documents and Settings\Martinka\Application Data\Mozilla\Firefox\Profiles\0ek1zvuf.default\searchplugins\
icq-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-02-24 17529856]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-01-25 53248]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-02-05 1430824]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2008-12-30 875016]
"M3000Mnt"=M3000Rmv.dll ,WinMainRmv /StartStillMnt []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2014-02-25 689744]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"S6000Mnt"=S6000Rmv.dll ,WinMainRmv /StartStillMnt []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"StatBar"=C:\Program Files\Globe Software\StatBar\StatBar.exe [2003-07-25 335872]
"Google Update"=C:\Documents and Settings\Martinka\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-01 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2011-10-21 433872]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Documents and Settings\Martinka\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
wkcalrem.LNK - C:\Program Files\Microsoft Works\WkCalRem.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Mozilla Firefox"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Program Files\Stronghold\Stronghold Crusader.exe"="C:\Program Files\Stronghold\Stronghold Crusader.exe:*:Enabled:Stronghold Crusader"
"C:\Program Files\Acer\Acer VCM\VC.exe"="C:\Program Files\Acer\Acer VCM\VC.exe:*:Disabled:Acer Video Quality Enhancement"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"c:\windows\mdm.exe"="MSN Messenger"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\SoloApp\WebDriver.dll"="C:\SoloApp\WebDriver.dll:*:Enabled:WebDriver.dll"
"C:\SoloApp\chromedriver.exe"="C:\SoloApp\chromedriver.exe:*:Enabled:chromedriver.exe"
"C:\SoloApp\IEDriverServer.exe"="C:\SoloApp\IEDriverServer.exe:*:Enabled:IEDriverServer.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe"="C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe:*:Enabled:KMPProcess"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"VIDC.FMVC"=fmcodec.dll

======List of files/folders created in the last 1 month======

2014-03-30 13:26:57 ----D---- C:\AdwCleaner
2014-03-29 14:45:45 ----D---- C:\rsit
2014-03-19 22:26:18 ----D---- C:\Program Files\Common Files\Bcgsoft
2014-03-19 22:25:46 ----D---- C:\Documents and Settings\All Users\Application Data\PearlMountain
2014-03-19 22:25:45 ----D---- C:\Documents and Settings\Martinka\Application Data\PearlMountain
2014-03-19 22:24:59 ----D---- C:\Program Files\Picture Collage Maker Pro
2014-03-14 17:53:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-03-14 17:51:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-03-11 01:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-03-10 17:46:06 ----N---- C:\WINDOWS\system32\xp_eos.exe

======List of files/folders modified in the last 1 month======

2014-03-30 18:26:25 ----D---- C:\WINDOWS\Temp
2014-03-30 18:26:21 ----D---- C:\Program Files\trend micro
2014-03-30 17:59:26 ----AD---- C:\WINDOWS\system32
2014-03-30 15:24:37 ----D---- C:\WINDOWS\system32\drivers
2014-03-30 15:19:00 ----D---- C:\WINDOWS\system32\CatRoot2
2014-03-30 15:13:32 ----D---- C:\WINDOWS\Prefetch
2014-03-30 13:40:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-30 13:34:07 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-03-30 13:31:54 ----RD---- C:\Program Files
2014-03-30 13:23:12 ----D---- C:\Program Files\SqueakyChocolate
2014-03-29 22:29:11 ----SD---- C:\WINDOWS\Tasks
2014-03-29 22:29:10 ----SHD---- C:\WINDOWS\Installer
2014-03-29 22:29:10 ----D---- C:\WINDOWS
2014-03-29 21:33:09 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-03-22 16:06:24 ----HD---- C:\WINDOWS\inf
2014-03-19 22:26:18 ----D---- C:\Program Files\Common Files
2014-03-19 19:24:17 ----D---- C:\WINDOWS\system32\NtmsData
2014-03-19 19:24:00 ----SHD---- C:\System Volume Information
2014-03-19 19:23:33 ----D---- C:\WINDOWS\Registration
2014-03-19 17:22:31 ----D---- C:\Documents and Settings\Martinka\Application Data\Google
2014-03-19 16:43:59 ----D---- C:\Maťka
2014-03-19 01:14:21 ----D---- C:\WINDOWS\system32\MRT
2014-03-19 01:07:19 ----D---- C:\WINDOWS\Debug
2014-03-19 01:07:16 ----A---- C:\WINDOWS\system32\MRT.exe
2014-03-14 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-03-14 17:56:06 ----D---- C:\Program Files\Internet Explorer
2014-03-14 17:55:49 ----D---- C:\WINDOWS\system32\en-US
2014-03-14 17:55:21 ----D---- C:\WINDOWS\ie7updates
2014-03-14 17:48:38 ----SHD---- C:\Config.Msi
2014-03-14 17:48:37 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-03-13 17:10:01 ----D---- C:\Program Files\The KMPlayer
2014-03-12 19:38:41 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-05 00:12:59 ----RD---- C:\Program Files\Skype
2014-03-05 00:12:51 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2014-03-02 13:24:03 ----D---- C:\Program Files\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
R0 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
R0 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
R0 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2008-04-14 13952]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2008-04-15 312344]
R0 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-03-12 691696]
R0 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-12-18 135648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-11-25 37352]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2013-08-06 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-12-18 90400]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-02-25 1344224]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-03-23 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-11-05 879528]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-02-24 5032448]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2009-03-02 38912]
R3 S6000KNT;S6000KNT_WebCam Driver; C:\WINDOWS\System32\Drivers\S6000KNT.sys [2012-02-24 3361408]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-02-05 205232]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 aksr74li;aksr74li; C:\WINDOWS\system32\drivers\aksr74li.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-11-05 539576]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-06-29 156392]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-03-31 55352]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-08-27 74656]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-04-06 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-04-06 25512]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 int15.sys;int15.sys; \??\c:\acernb\int15.sys []
S3 M3000Srv;USB2.0 UVC WebCam Driver; C:\WINDOWS\System32\Drivers\M3000KNT.sys [2009-01-02 145408]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2009-02-03 162816]
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2009-11-19 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2009-11-19 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2009-11-19 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2009-11-19 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2009-11-19 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2009-11-19 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2009-11-19 123504]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2014-02-25 440400]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2014-02-25 440400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-11-01 264800]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-15 354840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-12-18 182696]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\KMPService.exe [2013-07-08 1922600]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2009-02-05 237568]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 267776]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-05 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-07-10 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-05 135664]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-02-24 118896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2014-02-25 1017424]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------