Prosba o kontrolu logu - prejmenovane soubory office
Napsal: 21 pro 2015 07:18
Dobry den, prijdu k pocitaci rano a vidim ze je neco v neporadku, cast kon plochy nejde spustit jsou jakoby zdublované s příponou com, maji divnou koncovku a nenabiha outlook.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Milan at 2015-12-21 07:19:25
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (3%) free of 57 GB
Total RAM: 1534 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:19:28, on 21.12.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\logonui.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\windows\system32\cisvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\windows\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\windows\system32\svchost.exe
c:\Program Files\Synology Data Replicator 3\SynoDrService.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
c:\Program Files\TightVNC\tvnserver.exe
C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE
C:\Program Files\ViewPower2.10\jre\bin\javaw.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\rdpclip.exe
C:\windows\Explorer.EXE
C:\Program Files\TightVNC\tvnserver.exe
C:\Program Files\Browny02\Brother\BrStMonW.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\ControlCenter4\BrCtrlCntr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Browny02\BrYNSvc.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\ControlCenter4\BrCcUxSys.exe
C:\windows\system32\wscntfy.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\system32\cidaemon.exe
C:\windows\system32\logon.scr
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\winlogon.exe
C:\Documents and Settings\Milan\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Milan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.atlas.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tvncontrol] "c:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-21-1390067357-1454471165-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: start.lnk = ?
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} (OvisLink IPCamera Control) - http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7155813140
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
O16 - DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} (CV781Object Object) - http://192.168.1.225/AV718.cab
O16 - DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} (Media Control) - http://192.168.1.31/Media.CAB
O16 - DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} - http://192.168.1.223/classes/AlfaCamV.cab
O16 - DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} (IPCamera Control) - http://192.168.1.227/classes/CamV_H264.cab
O16 - DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} - http://62.209.202.134:6001/plugin/client.cab
O16 - DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} (VaPgCtrl Class) - http://192.168.1.8/plugin/h263ctrl.cab
O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} (Settings Class) - https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
O16 - DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} - http://192.168.1.31/SVRFind.CAB
O16 - DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} (CSQ2 Object) - http://62.209.202.134:6000/view.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\windows\system32\SUPDSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SynoDrService - Unknown owner - c:\Program Files\Synology Data Replicator 3\SynoDrService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - c:\Program Files\TightVNC\tvnserver.exe
O23 - Service: upsMonitor - Acresso - C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE
O23 - Service: Apache Tomcat upsTomcat (upsTomcat) - Apache Software Foundation - C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe
--
End of file - 8867 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job - C:\Program Files\Synology Data Replicator 3\Backup.exe /SCH /MIN
C:\windows\tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job - C:\windows\system32\msfeedssync.exe sync
C:\windows\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Milan\Data aplikací\Mozilla\Firefox\Profiles\8onsj25k.default
prefs.js - "browser.startup.homepage" - "http://www.atlas.cz/"
prefs.js - "extensions.enabledItems" - "jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.235 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-03 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\windows\system32\NvCpl.dll [2011-05-25 13895272]
"tvncontrol"=c:\Program Files\TightVNC\tvnserver.exe [2013-07-19 1690096]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ControlCenter4"=C:\Program Files\ControlCenter4\BrCcBoot.exe [2014-05-22 139776]
"BrStsMon00"=C:\Program Files\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-11-17 50137728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwb65w2t16]
C:\DOCUME~1\MILANL~1\nwb65w2t16\92486.vbs []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
VIA RAID TOOL.lnk - C:\Program Files\VIA\RAID\raid_tool.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\Milan\Nabídka Start\Programy\Po spuštění
start.lnk - C:\Documents and Settings\Milan\nwb65w2t16\92486.vbs
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2008-05-26 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Temp\TV\TeamViewer.exe"="C:\Temp\TV\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\SUPDSvc.exe"="C:\WINDOWS\system32\SUPDSvc.exe:*:Enabled:Samsung UPD Service"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe"="C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"
"C:\Program Files\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe"="C:\Program Files\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe:*:Enabled:Samsung Scanner Discovery Module V3"
"C:\Ksoft\KOSYS\KOSYS.EXE"="C:\Ksoft\KOSYS\KOSYS.EXE:*:Enabled:KOSYS"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"\\192.168.1.99\other\Instalacky\Microsoft Toolkit 2.5.0.exe"="\\192.168.1.99\other\Instalacky\Microsoft Toolkit 2.5.0.exe:*:Enabled:Microsoft Toolkit 2.5.0.exe"
"C:\Program Files\KMSpico\KMSELDI.exe"="C:\Program Files\KMSpico\KMSELDI.exe:*:Enabled:KMS Emulator: KMSELDI.exe"
"C:\Program Files\KMSpico\AutoPico.exe"="C:\Program Files\KMSpico\AutoPico.exe:*:Enabled:KMS Emulator: AutoPico.exe"
"C:\Program Files\TightVNC\tvnserver.exe"="C:\Program Files\TightVNC\tvnserver.exe:*:Enabled:TightVNC"
"C:\Program Files\TightVNC\tvnviewer.exe"="C:\Program Files\TightVNC\tvnviewer.exe:*:Enabled:TightVNC"
"C:\Program Files\Samsung\Easy Printer Manager\uninstall.exe"="C:\Program Files\Samsung\Easy Printer Manager\uninstall.exe:*:Enabled:Samsung uninstaller "
"C:\Program Files\ViewPower2.10\jre\bin\javaw.exe"="C:\Program Files\ViewPower2.10\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe"="C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MIDI1"=SYNCOR11.DLL
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2015-12-21 07:19:25 ----D---- C:\rsit
2015-12-21 04:37:43 ----AS---- C:\2011 KnorrPrr. příloha faktury- code 0217 optys.xls.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:37:27 ----AS---- C:\1305013622.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:49 ----AS---- C:\03podle92.xml.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:49 ----AS---- C:\000335.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:48 ----AS---- C:\000334.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-06 12:02:59 ----D---- C:\windows\system32\NtmsData
2015-12-02 08:14:50 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 month======
2015-12-21 07:19:28 ----D---- C:\Program Files\trend micro
2015-12-21 07:15:41 ----D---- C:\Program Files\Mozilla Firefox
2015-12-21 07:14:32 ----A---- C:\windows\wincmd.ini
2015-12-21 07:13:15 ----D---- C:\Documents and Settings\Milan\Data aplikací\Skype
2015-12-21 07:12:42 ----D---- C:\windows\system32
2015-12-21 07:08:33 ----D---- C:\windows\system32\CatRoot2
2015-12-21 07:08:33 ----D---- C:\WINDOWS
2015-12-21 07:08:28 ----D---- C:\windows\Temp
2015-12-21 07:08:18 ----A---- C:\windows\SchedLgU.Txt
2015-12-21 05:03:50 ----D---- C:\SnapshotFolder
2015-12-21 05:03:39 ----D---- C:\Nabidka
2015-12-21 05:03:37 ----D---- C:\Miliimport
2015-12-21 05:03:36 ----D---- C:\Ksoft
2015-12-21 04:52:26 ----D---- C:\Downloads
2015-12-21 04:41:26 ----D---- C:\Documents and Settings\Milan\Data aplikací\Spyware Terminator
2015-12-21 04:41:24 ----D---- C:\Documents and Settings\Milan\Data aplikací\SpamBayes
2015-12-21 04:40:12 ----A---- C:\Documents and Settings\Milan\Data aplikací\iniasd.txt
2015-12-21 04:40:11 ----D---- C:\Documents and Settings\Milan\Data aplikací\FTPRush
2015-12-21 04:40:08 ----D---- C:\Documents and Settings\Milan\Data aplikací\602XML
2015-12-21 04:38:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Vodafone
2015-12-21 04:38:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype Extras
2015-12-21 04:38:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Toolkit
2015-12-21 04:37:44 ----A---- C:\cerr.txt
2015-12-21 04:37:44 ----A---- C:\Boot.bak
2015-12-21 04:37:43 ----D---- C:\AdwCleaner
2015-12-21 04:37:43 ----D---- C:\1Schranka
2015-12-21 04:37:27 ----D---- C:\1
2015-12-21 04:36:52 ----D---- C:\windows\Prefetch
2015-12-17 18:36:16 ----A---- C:\windows\wcx_ftp.ini
2015-12-17 18:18:38 ----D---- C:\Program Files\=PRIKAZY=
2015-12-09 19:33:13 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-12-06 15:05:27 ----SHD---- C:\System Volume Information
2015-12-06 12:04:22 ----D---- C:\windows\repair
2015-12-06 12:04:11 ----D---- C:\windows\Registration
2015-12-06 12:02:59 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2015-12-06 12:00:14 ----D---- C:\windows\Minidump
2015-12-02 08:14:54 ----SHD---- C:\windows\Installer
2015-12-02 08:14:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2015-12-02 08:14:51 ----RD---- C:\Program Files\Skype
2015-12-02 08:14:50 ----D---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2008-11-04 83296]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\windows\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R0 viamraid;viamraid; C:\windows\system32\DRIVERS\viamraid.sys [2007-03-19 104064]
R0 viasraid;viasraid; C:\windows\system32\drivers\viasraid.sys [2003-11-01 77312]
R0 videX32;videX32; C:\windows\system32\DRIVERS\videX32.sys [2007-03-29 9216]
R1 Ext2fs;Ext2fs; C:\windows\system32\DRIVERS\ext2fs.sys [2008-09-25 181120]
R1 IfsMount;IfsMount; C:\windows\system32\DRIVERS\ifsmount.sys [2008-08-28 51072]
R1 intelppm;Řadič procesoru Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\windows\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
R3 BrScnUsb;Brother USB Still Image driver; C:\windows\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\windows\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RtkHDAud.sys [2011-05-10 6406760]
R3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\windows\system32\DRIVERS\nv4_mini.sys [2011-05-25 12753664]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\windows\system32\DRIVERS\Rtenicxp.sys [2011-01-14 277352]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Třída USB Printer; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 aeaudio;aeaudio; C:\windows\system32\drivers\aeaudio.sys [2002-04-01 4816]
S3 Ambfilt;Ambfilt; C:\windows\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 catchme;catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys []
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2008-11-19 25280]
S3 hipeer20;Remobo Instant Private Network; C:\windows\system32\DRIVERS\remobo32.sys [2009-04-22 26112]
S3 Huawei;Vodafone Mobile Broadband - USB Smart Card Reader (Huawei); C:\windows\system32\DRIVERS\ewdcsc.sys [2009-08-18 24448]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-11-04 102528]
S3 hwusbfake;Huawei DataCard USB Fake; C:\windows\system32\DRIVERS\ewusbfake.sys [2009-11-04 100736]
S3 Monfilt;Monfilt; C:\windows\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\windows\System32\Drivers\PCASp50.sys []
S3 pwdrvio;pwdrvio; \??\C:\windows\system32\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\windows\system32\pwdspio.sys []
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\windows\system32\DRIVERS\rt2870.sys [2009-03-04 709248]
S3 smwdm;smwdm; C:\windows\system32\drivers\smwdm.sys [2003-07-15 578368]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\windows\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2001-10-24 6784]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 35288]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\windows\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\windows\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\windows\system32\DRIVERS\ZTEusbmdm6k.sys [2009-08-18 105088]
S3 ZTEusbnmea;ZTE NMEA Port; C:\windows\system32\DRIVERS\ZTEusbnmea.sys [2009-08-18 105088]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\windows\system32\DRIVERS\ZTEusbser6k.sys [2009-08-18 105088]
S4 AmdK7;Ovladač procesoru AMD K7; C:\windows\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
S4 RTL8023xp;D-Link DGE-528T Gigabit Ethernet Adapter NDIS XP Driver; C:\windows\system32\DRIVERS\DLKRTXP.SYS [2006-07-31 83456]
S4 viaagp1;VIA AGP Filter; C:\windows\system32\DRIVERS\viaagp1.sys [2002-12-27 26880]
S4 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; C:\windows\system32\DRIVERS\yukonwxp.sys [2003-11-27 174464]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-03 153376]
R2 NVSvc;NVIDIA Driver Helper Service; C:\windows\system32\nvsvc32.exe [2011-05-25 154728]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-19 487936]
R2 SynoDrService;SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [2013-10-09 251464]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 tvnserver;TightVNC Server; c:\Program Files\TightVNC\tvnserver.exe [2013-07-19 1690096]
R2 upsMonitor;upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE [2015-01-11 116224]
R2 WSearch;Windows Search; C:\windows\system32\SearchIndexer.exe [2008-05-26 439808]
R3 BrYNSvc;BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [2013-09-25 282112]
R3 upsTomcat;Apache Tomcat upsTomcat; C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe [2011-04-15 57344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-09 269504]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-23 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 Samsung UPD Service;Samsung UPD Service; C:\windows\system32\SUPDSvc.exe [2009-03-24 127656]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Milan at 2015-12-21 07:19:25
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 2 GB (3%) free of 57 GB
Total RAM: 1534 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:19:28, on 21.12.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\logonui.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\windows\system32\cisvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\windows\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\windows\system32\svchost.exe
c:\Program Files\Synology Data Replicator 3\SynoDrService.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
c:\Program Files\TightVNC\tvnserver.exe
C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE
C:\Program Files\ViewPower2.10\jre\bin\javaw.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\rdpclip.exe
C:\windows\Explorer.EXE
C:\Program Files\TightVNC\tvnserver.exe
C:\Program Files\Browny02\Brother\BrStMonW.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\ControlCenter4\BrCtrlCntr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Browny02\BrYNSvc.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\ControlCenter4\BrCcUxSys.exe
C:\windows\system32\wscntfy.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\system32\cidaemon.exe
C:\windows\system32\logon.scr
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\winlogon.exe
C:\Documents and Settings\Milan\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Milan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.atlas.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tvncontrol] "c:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-21-1390067357-1454471165-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: start.lnk = ?
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {336C9D79-263A-4D75-AA7C-60DAF945AE67} (OvisLink IPCamera Control) - http://62.209.202.134:7001/classes/Ovis ... V_H264.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7155813140
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
O16 - DPF: {6BA530D8-94B2-49E0-AC55-70899582FE1F} (CV781Object Object) - http://192.168.1.225/AV718.cab
O16 - DPF: {79EE81BD-6194-4240-A04F-131A81513DCB} (Media Control) - http://192.168.1.31/Media.CAB
O16 - DPF: {7A24CAC8-8549-4698-85A2-AFF61D4427F7} - http://192.168.1.223/classes/AlfaCamV.cab
O16 - DPF: {87D48502-D1FF-4D25-B66C-9DA4F7CB2722} (IPCamera Control) - http://192.168.1.227/classes/CamV_H264.cab
O16 - DPF: {8FEED82A-42A6-4117-A803-7EC3EB9339E0} - http://62.209.202.134:6001/plugin/client.cab
O16 - DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} (VaPgCtrl Class) - http://192.168.1.8/plugin/h263ctrl.cab
O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} (Settings Class) - https://snzr.ksrzis.cz/nsnzr/ozn/capicom.cab
O16 - DPF: {DB87A30F-4960-4247-9672-6A0D550EECE8} - http://192.168.1.31/SVRFind.CAB
O16 - DPF: {FF3BA0DA-79B5-4110-8FAC-C402D85AAEDA} (CSQ2 Object) - http://62.209.202.134:6000/view.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A4B689E6-71A9-4A5E-9F1F-FA3868115F32}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files\Browny02\BrYNSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\windows\system32\SUPDSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SynoDrService - Unknown owner - c:\Program Files\Synology Data Replicator 3\SynoDrService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - c:\Program Files\TightVNC\tvnserver.exe
O23 - Service: upsMonitor - Acresso - C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE
O23 - Service: Apache Tomcat upsTomcat (upsTomcat) - Apache Software Foundation - C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe
--
End of file - 8867 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\Synology Data Replicator 3-SELI-KANCELAR1-T.job - C:\Program Files\Synology Data Replicator 3\Backup.exe /SCH /MIN
C:\windows\tasks\User_Feed_Synchronization-{526B7424-400E-4A5F-A451-969C6C71A20B}.job - C:\windows\system32\msfeedssync.exe sync
C:\windows\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Milan\Data aplikací\Mozilla\Firefox\Profiles\8onsj25k.default
prefs.js - "browser.startup.homepage" - "http://www.atlas.cz/"
prefs.js - "extensions.enabledItems" - "jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.235 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-03 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\windows\system32\NvCpl.dll [2011-05-25 13895272]
"tvncontrol"=c:\Program Files\TightVNC\tvnserver.exe [2013-07-19 1690096]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ControlCenter4"=C:\Program Files\ControlCenter4\BrCcBoot.exe [2014-05-22 139776]
"BrStsMon00"=C:\Program Files\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-11-17 50137728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwb65w2t16]
C:\DOCUME~1\MILANL~1\nwb65w2t16\92486.vbs []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
VIA RAID TOOL.lnk - C:\Program Files\VIA\RAID\raid_tool.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\Milan\Nabídka Start\Programy\Po spuštění
start.lnk - C:\Documents and Settings\Milan\nwb65w2t16\92486.vbs
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2008-05-26 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Temp\TV\TeamViewer.exe"="C:\Temp\TV\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\SUPDSvc.exe"="C:\WINDOWS\system32\SUPDSvc.exe:*:Enabled:Samsung UPD Service"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe"="C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"
"C:\Program Files\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe"="C:\Program Files\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe:*:Enabled:Samsung Scanner Discovery Module V3"
"C:\Ksoft\KOSYS\KOSYS.EXE"="C:\Ksoft\KOSYS\KOSYS.EXE:*:Enabled:KOSYS"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"\\192.168.1.99\other\Instalacky\Microsoft Toolkit 2.5.0.exe"="\\192.168.1.99\other\Instalacky\Microsoft Toolkit 2.5.0.exe:*:Enabled:Microsoft Toolkit 2.5.0.exe"
"C:\Program Files\KMSpico\KMSELDI.exe"="C:\Program Files\KMSpico\KMSELDI.exe:*:Enabled:KMS Emulator: KMSELDI.exe"
"C:\Program Files\KMSpico\AutoPico.exe"="C:\Program Files\KMSpico\AutoPico.exe:*:Enabled:KMS Emulator: AutoPico.exe"
"C:\Program Files\TightVNC\tvnserver.exe"="C:\Program Files\TightVNC\tvnserver.exe:*:Enabled:TightVNC"
"C:\Program Files\TightVNC\tvnviewer.exe"="C:\Program Files\TightVNC\tvnviewer.exe:*:Enabled:TightVNC"
"C:\Program Files\Samsung\Easy Printer Manager\uninstall.exe"="C:\Program Files\Samsung\Easy Printer Manager\uninstall.exe:*:Enabled:Samsung uninstaller "
"C:\Program Files\ViewPower2.10\jre\bin\javaw.exe"="C:\Program Files\ViewPower2.10\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe"="C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MIDI1"=SYNCOR11.DLL
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2015-12-21 07:19:25 ----D---- C:\rsit
2015-12-21 04:37:43 ----AS---- C:\2011 KnorrPrr. příloha faktury- code 0217 optys.xls.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:37:27 ----AS---- C:\1305013622.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:49 ----AS---- C:\03podle92.xml.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:49 ----AS---- C:\000335.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-21 04:36:48 ----AS---- C:\000334.pdf.id-8462270565165585-obamausa7@aol.com
2015-12-06 12:02:59 ----D---- C:\windows\system32\NtmsData
2015-12-02 08:14:50 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 month======
2015-12-21 07:19:28 ----D---- C:\Program Files\trend micro
2015-12-21 07:15:41 ----D---- C:\Program Files\Mozilla Firefox
2015-12-21 07:14:32 ----A---- C:\windows\wincmd.ini
2015-12-21 07:13:15 ----D---- C:\Documents and Settings\Milan\Data aplikací\Skype
2015-12-21 07:12:42 ----D---- C:\windows\system32
2015-12-21 07:08:33 ----D---- C:\windows\system32\CatRoot2
2015-12-21 07:08:33 ----D---- C:\WINDOWS
2015-12-21 07:08:28 ----D---- C:\windows\Temp
2015-12-21 07:08:18 ----A---- C:\windows\SchedLgU.Txt
2015-12-21 05:03:50 ----D---- C:\SnapshotFolder
2015-12-21 05:03:39 ----D---- C:\Nabidka
2015-12-21 05:03:37 ----D---- C:\Miliimport
2015-12-21 05:03:36 ----D---- C:\Ksoft
2015-12-21 04:52:26 ----D---- C:\Downloads
2015-12-21 04:41:26 ----D---- C:\Documents and Settings\Milan\Data aplikací\Spyware Terminator
2015-12-21 04:41:24 ----D---- C:\Documents and Settings\Milan\Data aplikací\SpamBayes
2015-12-21 04:40:12 ----A---- C:\Documents and Settings\Milan\Data aplikací\iniasd.txt
2015-12-21 04:40:11 ----D---- C:\Documents and Settings\Milan\Data aplikací\FTPRush
2015-12-21 04:40:08 ----D---- C:\Documents and Settings\Milan\Data aplikací\602XML
2015-12-21 04:38:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Vodafone
2015-12-21 04:38:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype Extras
2015-12-21 04:38:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Toolkit
2015-12-21 04:37:44 ----A---- C:\cerr.txt
2015-12-21 04:37:44 ----A---- C:\Boot.bak
2015-12-21 04:37:43 ----D---- C:\AdwCleaner
2015-12-21 04:37:43 ----D---- C:\1Schranka
2015-12-21 04:37:27 ----D---- C:\1
2015-12-21 04:36:52 ----D---- C:\windows\Prefetch
2015-12-17 18:36:16 ----A---- C:\windows\wcx_ftp.ini
2015-12-17 18:18:38 ----D---- C:\Program Files\=PRIKAZY=
2015-12-09 19:33:13 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-12-06 15:05:27 ----SHD---- C:\System Volume Information
2015-12-06 12:04:22 ----D---- C:\windows\repair
2015-12-06 12:04:11 ----D---- C:\windows\Registration
2015-12-06 12:02:59 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2015-12-06 12:00:14 ----D---- C:\windows\Minidump
2015-12-02 08:14:54 ----SHD---- C:\windows\Installer
2015-12-02 08:14:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2015-12-02 08:14:51 ----RD---- C:\Program Files\Skype
2015-12-02 08:14:50 ----D---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2008-11-04 83296]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\windows\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R0 viamraid;viamraid; C:\windows\system32\DRIVERS\viamraid.sys [2007-03-19 104064]
R0 viasraid;viasraid; C:\windows\system32\drivers\viasraid.sys [2003-11-01 77312]
R0 videX32;videX32; C:\windows\system32\DRIVERS\videX32.sys [2007-03-29 9216]
R1 Ext2fs;Ext2fs; C:\windows\system32\DRIVERS\ext2fs.sys [2008-09-25 181120]
R1 IfsMount;IfsMount; C:\windows\system32\DRIVERS\ifsmount.sys [2008-08-28 51072]
R1 intelppm;Řadič procesoru Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\windows\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
R3 BrScnUsb;Brother USB Still Image driver; C:\windows\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\windows\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RtkHDAud.sys [2011-05-10 6406760]
R3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\windows\system32\DRIVERS\nv4_mini.sys [2011-05-25 12753664]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\windows\system32\DRIVERS\Rtenicxp.sys [2011-01-14 277352]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Třída USB Printer; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 aeaudio;aeaudio; C:\windows\system32\drivers\aeaudio.sys [2002-04-01 4816]
S3 Ambfilt;Ambfilt; C:\windows\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 catchme;catchme; \??\C:\DOCUME~1\MILANL~1\LOCALS~1\Temp\catchme.sys []
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2008-11-19 25280]
S3 hipeer20;Remobo Instant Private Network; C:\windows\system32\DRIVERS\remobo32.sys [2009-04-22 26112]
S3 Huawei;Vodafone Mobile Broadband - USB Smart Card Reader (Huawei); C:\windows\system32\DRIVERS\ewdcsc.sys [2009-08-18 24448]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-11-04 102528]
S3 hwusbfake;Huawei DataCard USB Fake; C:\windows\system32\DRIVERS\ewusbfake.sys [2009-11-04 100736]
S3 Monfilt;Monfilt; C:\windows\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\windows\System32\Drivers\PCASp50.sys []
S3 pwdrvio;pwdrvio; \??\C:\windows\system32\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\windows\system32\pwdspio.sys []
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\windows\system32\DRIVERS\rt2870.sys [2009-03-04 709248]
S3 smwdm;smwdm; C:\windows\system32\drivers\smwdm.sys [2003-07-15 578368]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\windows\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2001-10-24 6784]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 35288]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\windows\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\windows\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\windows\system32\DRIVERS\ZTEusbmdm6k.sys [2009-08-18 105088]
S3 ZTEusbnmea;ZTE NMEA Port; C:\windows\system32\DRIVERS\ZTEusbnmea.sys [2009-08-18 105088]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\windows\system32\DRIVERS\ZTEusbser6k.sys [2009-08-18 105088]
S4 AmdK7;Ovladač procesoru AMD K7; C:\windows\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
S4 RTL8023xp;D-Link DGE-528T Gigabit Ethernet Adapter NDIS XP Driver; C:\windows\system32\DRIVERS\DLKRTXP.SYS [2006-07-31 83456]
S4 viaagp1;VIA AGP Filter; C:\windows\system32\DRIVERS\viaagp1.sys [2002-12-27 26880]
S4 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; C:\windows\system32\DRIVERS\yukonwxp.sys [2003-11-27 174464]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-03 153376]
R2 NVSvc;NVIDIA Driver Helper Service; C:\windows\system32\nvsvc32.exe [2011-05-25 154728]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-19 487936]
R2 SynoDrService;SynoDrService; c:\Program Files\Synology Data Replicator 3\SynoDrService.exe [2013-10-09 251464]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 tvnserver;TightVNC Server; c:\Program Files\TightVNC\tvnserver.exe [2013-07-19 1690096]
R2 upsMonitor;upsMonitor; C:\PROGRA~1\VIEWPO~1.10\UPSMON~1.EXE [2015-01-11 116224]
R2 WSearch;Windows Search; C:\windows\system32\SearchIndexer.exe [2008-05-26 439808]
R3 BrYNSvc;BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [2013-09-25 282112]
R3 upsTomcat;Apache Tomcat upsTomcat; C:\Program Files\ViewPower2.10\tomcat\bin\tomcat6.exe [2011-04-15 57344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-09 269504]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-23 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 Samsung UPD Service;Samsung UPD Service; C:\windows\system32\SUPDSvc.exe [2009-03-24 127656]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
mas to zavirene a sanca, ze sa dostanes k zasifrovanym suborom je mala ,,,