Ahoj, zdá se mi, že mi pc běží jaksi pomaleji než by mělo, mohl by mi někdo zkušený poradit kde může bejt problém?
Mam AMD 64 x2 Dualcore 4800+ 2,5 gHz
4 gb RAM
a 512 Geforce 9800
zde je log.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:50:31, on 7.9.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
D:\Programy\ad aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\Programy\Itunes\iTunesHelper.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Programy\IVT BLUESOLEIL 1,4\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
D:\Programy\QIP Infium\infium.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\AIMP\AIMP2.exe
D:\Gamez\Steam Powered\Steam.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Programy\DAEMON Tools Pro\DTProAgent.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Programy\icq\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Programy\icq\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - D:\Programy\ad aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - D:\Programy\IVT BLUESOLEIL 1,4\BTNtService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Update Service (gupdate1c98222a2b0105a) (gupdate1c98222a2b0105a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Reprobates Drivers Auto Removal (pr2an4ab) (pr2an4ab) - futuregames.cz - C:\WINDOWS\system32\pr2an4ab.exe
O23 - Service: Radmin Server V3 (RServer3) - Famatech International Corp. - C:\WINDOWS\system32\rserver30\RServer3.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 7720 bytes
žádost o kontrolu logu
Re: žádost o kontrolu logu
Nazdar. Stiahni DDS. Uloz na plochu, ukonci vsetky spustene programy a spust ho. Po skonceni scanu sa otvoria vysledky v 2 oknach - DDS.txt a Attach.txt. Obsah oboch by som rad videl.
Nemam rad amaterizmus...
A adresat odkazu to vie :)
A adresat odkazu to vie :)
Re: žádost o kontrolu logu
Tady je ten prvni
DDS (Ver_09-07-30.01) - NTFSx86
Run by Dixx at 17:07:46,79 on po 07.09.2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_15
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.3583.2986 [GMT 2:00]
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\Programy\ad aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\Programy\Itunes\iTunesHelper.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Programy\IVT BLUESOLEIL 1,4\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
D:\Gamez\Steam Powered\Steam.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Documents and Settings\Dixx\Plocha\dds.pif
============== Pseudo HJT Report ===============
uInternet Settings,ProxyOverride = *.local
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 5.0\reader\activex\AcroIEHelper.ocx
BHO: WebTransBHO Class: {2db66063-bb98-466a-aa0d-3e7acf5ed853} - c:\windows\WebIE.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: {d187a56b-a33f-4cbe-9d77-459fc0bae012} - Burn4Free Toolbar Helper
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: WebTranslator: {bfc32e1d-ee75-4a48-bc60-104e11ee2431} - c:\windows\WebIE.dll
TB: Burn4Free Toolbar: {4f11acbb-393f-4c86-a214-ff3d0d155cc3} -
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [NVIDIA nTune] "c:\program files\nvidia corporation\ntune\nTuneCmd.exe" clear
uRun: [DAEMON Tools Pro Agent] "d:\programy\daemon tools pro\DTProAgent.exe"
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-explorer: NoFileUrl = 0 (0x0)
uPolicies-explorer: NoUpdateCheck = 0 (0x0)
uPolicies-system: NoDispSettingsPage = 0 (0x0)
uPolicies-system: NoDispAppearancePage = 0 (0x0)
IE: {BFC32E1D-EE75-4A48-BC60-104E11EE2431}
IE: {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\programy\icq\icq6\ICQ.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
LSA: Notification Packages = scecli
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\dixx\dataap~1\mozilla\firefox\profiles\ryilerhe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: d:\programy\itunes\mozilla plugins\npitunes.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.SOAPEncoding.schemaCollection", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");
============= SERVICES / DRIVERS ===============
R0 pe3an4ab;Reprobates Environment Driver (pe3an4ab);c:\windows\system32\drivers\pe3an4ab.sys [2008-7-28 64632]
R0 ps7an4ab;Reprobates Synchronization Driver (ps7an4ab);c:\windows\system32\drivers\ps7an4ab.sys [2008-7-28 68736]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-7-1 34312]
R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [2008-4-24 45848]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-5-29 142592]
R2 aawservice;Lavasoft Ad-Aware Service;d:\programy\ad aware\aawservice.exe [2008-5-12 611664]
R2 ekrn;Eset Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2008-7-1 468224]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-9-30 935208]
R3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2006-11-1 3328]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2008-5-28 69120]
S2 gupdate1c98222a2b0105a;Google Update Service (gupdate1c98222a2b0105a);c:\program files\google\update\GoogleUpdate.exe [2009-1-29 133104]
S2 pr2an4ab;Reprobates Drivers Auto Removal (pr2an4ab);c:\windows\system32\pr2an4ab.exe svc --> c:\windows\system32\pr2an4ab.exe svc [?]
S3 cpuz132;cpuz132;\??\c:\docume~1\dixx\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\dixx\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [2008-11-8 1238344]
=============== Created Last 30 ================
2009-09-06 01:22 <DIR> --d----- c:\docume~1\dixx\dataap~1\Desktopicon
2009-09-03 11:41 0 a------- c:\windows\XXLGSC
2009-09-03 11:17 491,520 a------- c:\windows\WebIE.dll
2009-09-03 11:17 294,912 a------- c:\windows\TrnWord.dll
2009-09-03 11:17 356,352 a------- c:\windows\TrnOutl.dll
2009-09-03 11:17 200,704 a------- c:\windows\TRNOET.DLL
2009-09-03 11:17 45,056 a------- c:\windows\TRNOEH.DLL
2009-09-03 11:17 26,624 a------- c:\windows\OETRN.EXE
2009-09-03 11:11 43 a------- c:\windows\WTRDCTM.INI
2009-09-03 11:08 516,096 a------- c:\windows\UN32.EXE
2009-09-03 11:08 3,613 a------- c:\windows\UN32P.INI
2009-09-03 11:04 1,680 a------- c:\windows\MAILTRAN.INI
2009-09-03 11:04 2,960 a------- c:\windows\TRNCOM.INI
2009-09-03 11:04 4,192 a------- c:\windows\WTRAN32.INI
2009-09-03 11:04 2,822 a------- c:\windows\WDICT32.INI
2009-09-02 16:25 <DIR> --d----- c:\program files\iPod
2009-08-21 17:57 <DIR> --d----- c:\program files\common files\xing shared
2009-08-19 04:17 189,480 a------- c:\windows\system32\PnkBstrB.xtr
2009-08-19 04:15 139,152 a------- c:\docume~1\dixx\dataap~1\PnkBstrK.sys
2009-08-19 04:15 794,408 a------- c:\windows\system32\pbsvc.exe
2009-08-19 02:16 <DIR> --d----- c:\program files\common files\Real
==================== Find3M ====================
2009-08-19 04:29 137,544 a------- c:\windows\system32\drivers\PnkBstrK.sys
2009-08-19 04:29 189,480 a------- c:\windows\system32\PnkBstrB.exe
2009-08-19 04:15 75,064 a------- c:\windows\system32\PnkBstrA.exe
2009-07-25 05:23 411,368 a------- c:\windows\system32\deploytk.dll
============= FINISH: 17:08:00,97 ===============
DDS (Ver_09-07-30.01) - NTFSx86
Run by Dixx at 17:07:46,79 on po 07.09.2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_15
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.3583.2986 [GMT 2:00]
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\Programy\ad aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\Programy\Itunes\iTunesHelper.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Programy\IVT BLUESOLEIL 1,4\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
D:\Gamez\Steam Powered\Steam.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Documents and Settings\Dixx\Plocha\dds.pif
============== Pseudo HJT Report ===============
uInternet Settings,ProxyOverride = *.local
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 5.0\reader\activex\AcroIEHelper.ocx
BHO: WebTransBHO Class: {2db66063-bb98-466a-aa0d-3e7acf5ed853} - c:\windows\WebIE.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: {d187a56b-a33f-4cbe-9d77-459fc0bae012} - Burn4Free Toolbar Helper
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: WebTranslator: {bfc32e1d-ee75-4a48-bc60-104e11ee2431} - c:\windows\WebIE.dll
TB: Burn4Free Toolbar: {4f11acbb-393f-4c86-a214-ff3d0d155cc3} -
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [NVIDIA nTune] "c:\program files\nvidia corporation\ntune\nTuneCmd.exe" clear
uRun: [DAEMON Tools Pro Agent] "d:\programy\daemon tools pro\DTProAgent.exe"
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-explorer: NoFileUrl = 0 (0x0)
uPolicies-explorer: NoUpdateCheck = 0 (0x0)
uPolicies-system: NoDispSettingsPage = 0 (0x0)
uPolicies-system: NoDispAppearancePage = 0 (0x0)
IE: {BFC32E1D-EE75-4A48-BC60-104E11EE2431}
IE: {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\programy\icq\icq6\ICQ.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
LSA: Notification Packages = scecli
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\dixx\dataap~1\mozilla\firefox\profiles\ryilerhe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: d:\programy\itunes\mozilla plugins\npitunes.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.SOAPEncoding.schemaCollection", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");
============= SERVICES / DRIVERS ===============
R0 pe3an4ab;Reprobates Environment Driver (pe3an4ab);c:\windows\system32\drivers\pe3an4ab.sys [2008-7-28 64632]
R0 ps7an4ab;Reprobates Synchronization Driver (ps7an4ab);c:\windows\system32\drivers\ps7an4ab.sys [2008-7-28 68736]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-7-1 34312]
R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [2008-4-24 45848]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-5-29 142592]
R2 aawservice;Lavasoft Ad-Aware Service;d:\programy\ad aware\aawservice.exe [2008-5-12 611664]
R2 ekrn;Eset Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2008-7-1 468224]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-9-30 935208]
R3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2006-11-1 3328]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2008-5-28 69120]
S2 gupdate1c98222a2b0105a;Google Update Service (gupdate1c98222a2b0105a);c:\program files\google\update\GoogleUpdate.exe [2009-1-29 133104]
S2 pr2an4ab;Reprobates Drivers Auto Removal (pr2an4ab);c:\windows\system32\pr2an4ab.exe svc --> c:\windows\system32\pr2an4ab.exe svc [?]
S3 cpuz132;cpuz132;\??\c:\docume~1\dixx\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\dixx\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [2008-11-8 1238344]
=============== Created Last 30 ================
2009-09-06 01:22 <DIR> --d----- c:\docume~1\dixx\dataap~1\Desktopicon
2009-09-03 11:41 0 a------- c:\windows\XXLGSC
2009-09-03 11:17 491,520 a------- c:\windows\WebIE.dll
2009-09-03 11:17 294,912 a------- c:\windows\TrnWord.dll
2009-09-03 11:17 356,352 a------- c:\windows\TrnOutl.dll
2009-09-03 11:17 200,704 a------- c:\windows\TRNOET.DLL
2009-09-03 11:17 45,056 a------- c:\windows\TRNOEH.DLL
2009-09-03 11:17 26,624 a------- c:\windows\OETRN.EXE
2009-09-03 11:11 43 a------- c:\windows\WTRDCTM.INI
2009-09-03 11:08 516,096 a------- c:\windows\UN32.EXE
2009-09-03 11:08 3,613 a------- c:\windows\UN32P.INI
2009-09-03 11:04 1,680 a------- c:\windows\MAILTRAN.INI
2009-09-03 11:04 2,960 a------- c:\windows\TRNCOM.INI
2009-09-03 11:04 4,192 a------- c:\windows\WTRAN32.INI
2009-09-03 11:04 2,822 a------- c:\windows\WDICT32.INI
2009-09-02 16:25 <DIR> --d----- c:\program files\iPod
2009-08-21 17:57 <DIR> --d----- c:\program files\common files\xing shared
2009-08-19 04:17 189,480 a------- c:\windows\system32\PnkBstrB.xtr
2009-08-19 04:15 139,152 a------- c:\docume~1\dixx\dataap~1\PnkBstrK.sys
2009-08-19 04:15 794,408 a------- c:\windows\system32\pbsvc.exe
2009-08-19 02:16 <DIR> --d----- c:\program files\common files\Real
==================== Find3M ====================
2009-08-19 04:29 137,544 a------- c:\windows\system32\drivers\PnkBstrK.sys
2009-08-19 04:29 189,480 a------- c:\windows\system32\PnkBstrB.exe
2009-08-19 04:15 75,064 a------- c:\windows\system32\PnkBstrA.exe
2009-07-25 05:23 411,368 a------- c:\windows\system32\deploytk.dll
============= FINISH: 17:08:00,97 ===============
Re: žádost o kontrolu logu
a druhej
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-07-30.01)
Systém Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 26.5.2008 23:03:21
System Uptime: 9.3.2009 22:10:24 (4363 hours ago)
Motherboard: Gigabyte Technology Co., Ltd. | | M52L-S3
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+ | Socket M2 | 2511/200mhz
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+ | Socket M2 | 2511/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 39 GiB total, 9,551 GiB free.
D: is FIXED (NTFS) - 73 GiB total, 3,453 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()
J: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP560: 13.7.2009 13:40:24 - Kontrolní bod systému
RP561: 14.7.2009 16:45:47 - Kontrolní bod systému
RP562: 17.8.2009 13:46:46 - Removed TuneUp Utilities 2009
RP563: 18.8.2009 14:43:36 - Kontrolní bod systému
RP564: 19.8.2009 4:13:06 - Nainstalováno rozhraní DirectX
RP565: 19.8.2009 12:20:31 - Removed Prototype(TM)
RP566: 20.8.2009 12:43:34 - Kontrolní bod systému
RP567: 21.8.2009 13:43:34 - Kontrolní bod systému
RP568: 22.8.2009 18:26:39 - Kontrolní bod systému
RP569: 23.8.2009 18:56:16 - Kontrolní bod systému
RP570: 25.8.2009 0:13:27 - Kontrolní bod systému
RP571: 26.8.2009 1:52:03 - Kontrolní bod systému
RP572: 27.8.2009 1:56:13 - Kontrolní bod systému
RP573: 28.8.2009 2:50:25 - Kontrolní bod systému
RP574: 29.8.2009 2:56:13 - Kontrolní bod systému
RP575: 30.8.2009 5:48:14 - Kontrolní bod systému
RP576: 31.8.2009 5:56:15 - Kontrolní bod systému
RP577: 1.9.2009 7:27:08 - Kontrolní bod systému
RP578: 2.9.2009 7:57:18 - Kontrolní bod systému
RP579: 2.9.2009 16:23:19 - Removed Apple Mobile Device Support
RP580: 3.9.2009 16:56:16 - Kontrolní bod systému
RP581: 3.9.2009 22:18:35 - Installed Java(TM) 6 Update 15
RP582: 4.9.2009 23:15:41 - Kontrolní bod systému
RP583: 6.9.2009 0:15:42 - Kontrolní bod systému
RP584: 7.9.2009 2:24:17 - Kontrolní bod systému
==== Installed Programs ======================
"Nero SoundTrax Help
Ad-Aware
Adobe Acrobat 5.0
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Advertising Center
AGEIA PhysX v7.09.13
AIMP2
Apple Mobile Device Support
Apple Software Update
µTorrent
AVS DVD Copy version 2.1
AVS4YOU Software Navigator 1.2
Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
BlueSoleil
Bonjour
Burn4Free Toolbar
CCleaner (remove only)
CloneCD
Counter-Strike: Source
CSStrat
Day of Defeat: Source
DolbyFiles
ESET NOD32 Antivirus
GamePark
Google Earth
Google Chrome
Google Update Helper
Google Updater
Half-Life 2: Deathmatch
Hamachi 1.0.2.5
HijackThis 2.0.2
ICQ6
ImagXpress
IrfanView (remove only)
iTunes
Java(TM) 6 Update 15
K-Lite Codec Pack 4.9.0 (Full)
Konvertor
Menu Templates - Starter Kit
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft Games for Windows - LIVE Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual J# 2.0 Redistributable Package
mIRC
MobileMe Control Panel
Movie Templates - Starter Kit
Mozilla Firefox (3.5.2)
MSXML 6.0 Parser (KB925673)
Nero ControlCenter
Nero DiscSpeed
Nero Vision
NVIDIA Drivers
NVIDIA nTune
OpenAL
OpenOffice.org 3.0
Palm Desktop
PC Translator
PowerISO
PunkBuster Services
QIP 2005 Uninstall
QIP Infium 2.0.9020 RC3
QuickTime
Radmin Server 3.3
Radmin Viewer 3.3
RealPlayer
REALTEK GbE & FE Ethernet PCI NIC Driver
Realtek High Definition Audio Driver
Reprobates CZ 1.3.3
Skype™ 3.8
SoundTrax
Spyware Terminator
Steam
System Requirements Lab
Total Commander (Remove or Repair)
Ultima Online: Mondain's Legacy
VDownloader 1.0
Ventrilo Client
VentriloMix
VideoLAN VLC media player 0.8.6f
Virtual DJ - Atomix Productions
Virus Effect Remover 1.7
WebFldrs XP
Windows Communication Foundation
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Presentation Foundation
Windows Support Tools
Windows Workflow Foundation
WinRAR
XML Paper Specification Shared Components Pack 1.0
==== End Of File ===========================
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-07-30.01)
Systém Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 26.5.2008 23:03:21
System Uptime: 9.3.2009 22:10:24 (4363 hours ago)
Motherboard: Gigabyte Technology Co., Ltd. | | M52L-S3
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+ | Socket M2 | 2511/200mhz
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+ | Socket M2 | 2511/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 39 GiB total, 9,551 GiB free.
D: is FIXED (NTFS) - 73 GiB total, 3,453 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()
J: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP560: 13.7.2009 13:40:24 - Kontrolní bod systému
RP561: 14.7.2009 16:45:47 - Kontrolní bod systému
RP562: 17.8.2009 13:46:46 - Removed TuneUp Utilities 2009
RP563: 18.8.2009 14:43:36 - Kontrolní bod systému
RP564: 19.8.2009 4:13:06 - Nainstalováno rozhraní DirectX
RP565: 19.8.2009 12:20:31 - Removed Prototype(TM)
RP566: 20.8.2009 12:43:34 - Kontrolní bod systému
RP567: 21.8.2009 13:43:34 - Kontrolní bod systému
RP568: 22.8.2009 18:26:39 - Kontrolní bod systému
RP569: 23.8.2009 18:56:16 - Kontrolní bod systému
RP570: 25.8.2009 0:13:27 - Kontrolní bod systému
RP571: 26.8.2009 1:52:03 - Kontrolní bod systému
RP572: 27.8.2009 1:56:13 - Kontrolní bod systému
RP573: 28.8.2009 2:50:25 - Kontrolní bod systému
RP574: 29.8.2009 2:56:13 - Kontrolní bod systému
RP575: 30.8.2009 5:48:14 - Kontrolní bod systému
RP576: 31.8.2009 5:56:15 - Kontrolní bod systému
RP577: 1.9.2009 7:27:08 - Kontrolní bod systému
RP578: 2.9.2009 7:57:18 - Kontrolní bod systému
RP579: 2.9.2009 16:23:19 - Removed Apple Mobile Device Support
RP580: 3.9.2009 16:56:16 - Kontrolní bod systému
RP581: 3.9.2009 22:18:35 - Installed Java(TM) 6 Update 15
RP582: 4.9.2009 23:15:41 - Kontrolní bod systému
RP583: 6.9.2009 0:15:42 - Kontrolní bod systému
RP584: 7.9.2009 2:24:17 - Kontrolní bod systému
==== Installed Programs ======================
"Nero SoundTrax Help
Ad-Aware
Adobe Acrobat 5.0
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Advertising Center
AGEIA PhysX v7.09.13
AIMP2
Apple Mobile Device Support
Apple Software Update
µTorrent
AVS DVD Copy version 2.1
AVS4YOU Software Navigator 1.2
Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
BlueSoleil
Bonjour
Burn4Free Toolbar
CCleaner (remove only)
CloneCD
Counter-Strike: Source
CSStrat
Day of Defeat: Source
DolbyFiles
ESET NOD32 Antivirus
GamePark
Google Earth
Google Chrome
Google Update Helper
Google Updater
Half-Life 2: Deathmatch
Hamachi 1.0.2.5
HijackThis 2.0.2
ICQ6
ImagXpress
IrfanView (remove only)
iTunes
Java(TM) 6 Update 15
K-Lite Codec Pack 4.9.0 (Full)
Konvertor
Menu Templates - Starter Kit
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft Games for Windows - LIVE Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual J# 2.0 Redistributable Package
mIRC
MobileMe Control Panel
Movie Templates - Starter Kit
Mozilla Firefox (3.5.2)
MSXML 6.0 Parser (KB925673)
Nero ControlCenter
Nero DiscSpeed
Nero Vision
NVIDIA Drivers
NVIDIA nTune
OpenAL
OpenOffice.org 3.0
Palm Desktop
PC Translator
PowerISO
PunkBuster Services
QIP 2005 Uninstall
QIP Infium 2.0.9020 RC3
QuickTime
Radmin Server 3.3
Radmin Viewer 3.3
RealPlayer
REALTEK GbE & FE Ethernet PCI NIC Driver
Realtek High Definition Audio Driver
Reprobates CZ 1.3.3
Skype™ 3.8
SoundTrax
Spyware Terminator
Steam
System Requirements Lab
Total Commander (Remove or Repair)
Ultima Online: Mondain's Legacy
VDownloader 1.0
Ventrilo Client
VentriloMix
VideoLAN VLC media player 0.8.6f
Virtual DJ - Atomix Productions
Virus Effect Remover 1.7
WebFldrs XP
Windows Communication Foundation
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Presentation Foundation
Windows Support Tools
Windows Workflow Foundation
WinRAR
XML Paper Specification Shared Components Pack 1.0
==== End Of File ===========================
Re: žádost o kontrolu logu
1) Odinstaluj Ad-Aware a Burn4Free Toolbar (Start -> Ovl. Panel -> Pridat/Odstranit Programy).
Ak by to neslo, pouzi Revo Uninstaller.
2) Stiahni ComboFix, najlepsie na plochu. Vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall. Spust program cez ucet s administratorskymi pravami a postupuj podla instrukcii. Cely sken bude trvat cca 10 minut. Pocas neho moze byt PC restartovane. Log, ktory ComboFix vytvori, najdes na adrese "C:\ComboFix.txt".
Ten vloz sem.
Pozor: Kym ComboFix nevytvori log, na nic neklikat, nic nestlacat !!
Ak by to neslo, pouzi Revo Uninstaller.
2) Stiahni ComboFix, najlepsie na plochu. Vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall. Spust program cez ucet s administratorskymi pravami a postupuj podla instrukcii. Cely sken bude trvat cca 10 minut. Pocas neho moze byt PC restartovane. Log, ktory ComboFix vytvori, najdes na adrese "C:\ComboFix.txt".
Ten vloz sem.
Pozor: Kym ComboFix nevytvori log, na nic neklikat, nic nestlacat !!
Nemam rad amaterizmus...
A adresat odkazu to vie :)
A adresat odkazu to vie :)
Re: žádost o kontrolu logu
Mam problém, nemohu vypnout ten ESET avg mam proslou verzi a porad to tam otravuje a pise mi to ze to musim vypnout a nevim kdyz to ve sptravci uloh neni pojmenovany jako eset.exe tak nevim jakej to muze bejt jinej soubor.. :(
Re: žádost o kontrolu logu
Už se mi to podařilo ale cosi o nejakym programu od windowsu (EULA nebo co, ja nema moriginal windowsi tak aby mi je to neshodilo) ???
Re: žádost o kontrolu logu
Dixx píše:...nemohu vypnout ten ESET avg ...
Ake AVG?
Pokracuj dalej a hlasky programu ignoruj.
Nemam rad amaterizmus...
A adresat odkazu to vie :)
A adresat odkazu to vie :)
Re: žádost o kontrolu logu
Promiň používal jsem předtím avg né nortona, tak jsem si to poplet, tady je vypiz z toho combofixu.
ComboFix 09-09-06.06 - Dixx 08.09.2009 1:51.1.2 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.3583.3135 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dixx\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Dixx\Local Settings\Data aplikací\Downloaded Installations\{5B00B6A7-3352-415F-A7C2-ABCCCEC5383E}
c:\documents and settings\Dixx\Local Settings\Data aplikací\Downloaded Installations\{5B00B6A7-3352-415F-A7C2-ABCCCEC5383E}\rserv33.msi
C:\smp.bat
c:\windows\system32\ieuinit.inf
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-08-07 do 2009-09-07 )))))))))))))))))))))))))))))))
.
2009-09-03 09:17 . 2009-09-03 09:17 491520 ----a-w- c:\windows\WebIE.dll
2009-09-03 09:17 . 2009-09-03 09:17 294912 ----a-w- c:\windows\TrnWord.dll
2009-09-03 09:17 . 2009-09-03 09:17 45056 ----a-w- c:\windows\TRNOEH.DLL
2009-09-03 09:17 . 2009-09-03 09:17 356352 ----a-w- c:\windows\TrnOutl.dll
2009-09-03 09:17 . 2009-09-03 09:17 26624 ----a-w- c:\windows\OETRN.EXE
2009-09-03 09:17 . 2009-09-03 09:17 200704 ----a-w- c:\windows\TRNOET.DLL
2009-09-03 09:08 . 2009-09-03 09:08 516096 ----a-w- c:\windows\UN32.EXE
2009-09-02 14:25 . 2009-09-02 14:25 -------- d-----w- c:\program files\iPod
2009-08-21 15:57 . 2009-08-21 15:57 -------- d-----w- c:\program files\Common Files\xing shared
2009-08-21 15:57 . 2009-08-21 15:57 -------- d-----w- c:\program files\Real
2009-08-19 02:15 . 2009-08-19 02:15 794408 ----a-w- c:\windows\system32\pbsvc.exe
2009-08-19 00:16 . 2009-08-21 15:57 -------- d-----w- c:\program files\Common Files\Real
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-07 19:26 . 2008-05-29 14:01 -------- d-----w- c:\program files\AIMP
2009-09-07 15:51 . 2008-05-29 12:20 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-09-07 15:50 . 2008-09-18 13:43 -------- d-----w- c:\program files\Burn4Free Toolbar
2009-09-03 20:19 . 2008-06-03 22:01 -------- d-----w- c:\program files\Java
2009-09-02 14:25 . 2008-05-29 13:47 -------- d-----w- c:\program files\Common Files\Apple
2009-08-22 13:58 . 2008-06-11 17:05 -------- d-----w- c:\program files\OpenAL
2009-08-19 02:29 . 2008-12-10 23:16 137544 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-08-19 02:29 . 2008-12-10 23:16 189480 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-08-19 02:15 . 2008-12-10 23:16 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-08-17 11:47 . 2009-07-12 11:13 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-07-25 03:23 . 2008-11-12 10:32 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-12 11:35 . 2009-05-21 20:38 -------- d-----w- c:\program files\Thief - Deadly Shadows
2008-09-18 13:48 . 2008-09-18 13:46 24 --sh--w- c:\windows\SE207A1C4.tmp
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 81920]
"DAEMON Tools Pro Agent"="d:\programy\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-06-28 1626112]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-17 15360]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFileUrl"= 0 (0x0)
"NoUpdateCheck"= 0 (0x0)
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BlueSoleil.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\BlueSoleil.lnk
backup=c:\windows\pss\BlueSoleil.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Dixx^Nabídka Start^Programy^Po spuštění^HotSync Manager.lnk]
path=c:\documents and settings\Dixx\Nabídka Start\Programy\Po spuštění\HotSync Manager.lnk
backup=c:\windows\pss\HotSync Manager.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dixx^Nabídka Start^Programy^Po spuštění^Registrace Need for Speed™ Undercover.lnk]
path=c:\documents and settings\Dixx\Nabídka Start\Programy\Po spuštění\Registrace Need for Speed™ Undercover.lnk
backup=c:\windows\pss\Registrace Need for Speed™ Undercover.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SharedAccess"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
"iTunesHelper"="d:\programy\Itunes\iTunesHelper.exe"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"d:\\Programy\\QIP\\qip.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"d:\\Gamez\\Steam Powered\\SteamApps\\hernaujezdec3\\counter-strike source\\hl2.exe"=
"d:\\Programy\\DC++\\Strong\\StrongDC.exe"=
R0 pe3an4ab;Reprobates Environment Driver (pe3an4ab);c:\windows\system32\drivers\pe3an4ab.sys [28.7.2008 14:52 64632]
R0 ps7an4ab;Reprobates Synchronization Driver (ps7an4ab);c:\windows\system32\drivers\ps7an4ab.sys [28.7.2008 14:49 68736]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [1.7.2008 9:04 34312]
R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [24.4.2008 8:49 45848]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [29.5.2008 15:22 142592]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [1.7.2008 9:02 468224]
R3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [1.11.2006 6:01 3328]
S2 gupdate1c98222a2b0105a;Google Update Service (gupdate1c98222a2b0105a);c:\program files\Google\Update\GoogleUpdate.exe [29.1.2009 17:02 133104]
S2 pr2an4ab;Reprobates Drivers Auto Removal (pr2an4ab);c:\windows\system32\pr2an4ab.exe svc --> c:\windows\system32\pr2an4ab.exe svc [?]
S3 cpuz132;cpuz132;\??\c:\docume~1\Dixx\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\Dixx\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys [?]
S3 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [8.11.2008 17:11 1238344]
.
Obsah adresáře 'Naplánované úlohy'
2009-09-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-09-07 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-29 05:03]
2009-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-01-29 22:16]
2009-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-01-29 22:16]
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{D187A56B-A33F-4CBE-9D77-459FC0BAE012} - (no file)
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)
Notify-dimsntfy - (no file)
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Dixx\Data aplikací\Mozilla\Firefox\Profiles\ryilerhe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: d:\programy\Itunes\Mozilla Plugins\npitunes.dll
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-08 01:58
Windows 5.1.2600 Service Pack 2 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1343024091-287218729-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:7c,49,98,3c,a8,bc,a5,47,4a,7e,a4,5e,00,e0,33,f9,2c,e5,2c,7f,83,eb,34,
e1,63,df,e1,0b,ed,3e,1c,17,c0,1c,78,83,1c,42,2c,6e,45,f5,3b,68,22,04,d3,d4,\
"??"=hex:75,ff,e5,14,92,e5,b7,54,f3,a4,1b,86,82,c6,80,2d
[HKEY_USERS\S-1-5-21-1343024091-287218729-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:17,00,92,66,8f,89,e5,af,e2,d0,2e,a0,ba,4a,36,60,28,ef,3b,d0,c4,
f0,5b,82,19,35,ce,23,b6,71,a9,92,f6,77,94,b7,e1,29,be,82,8b,83,75,44,8d,77,\
"rkeysecu"=hex:5e,46,28,a4,f9,12,2a,a5,1e,68,15,5e,c7,2d,c8,7f
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(3044)
c:\windows\system32\browselc.dll
c:\program files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
c:\windows\WebIE.dll
c:\program files\Common Files\Nero\SMC\NeroDigitalExt.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
d:\programy\IVT BLUESOLEIL 1,4\BTNtService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
d:\programy\Nero\Nero8\Nero BackItUp\NBService.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\NVIDIA Corporation\nTune\nTuneService.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2009-09-07 2:00 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-09-08 00:00
Před spuštěním: Volných bajtů: 10 129 313 792
Po spuštění: Volných bajtů: 10 142 121 984
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
192
ComboFix 09-09-06.06 - Dixx 08.09.2009 1:51.1.2 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.3583.3135 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dixx\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Dixx\Local Settings\Data aplikací\Downloaded Installations\{5B00B6A7-3352-415F-A7C2-ABCCCEC5383E}
c:\documents and settings\Dixx\Local Settings\Data aplikací\Downloaded Installations\{5B00B6A7-3352-415F-A7C2-ABCCCEC5383E}\rserv33.msi
C:\smp.bat
c:\windows\system32\ieuinit.inf
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-08-07 do 2009-09-07 )))))))))))))))))))))))))))))))
.
2009-09-03 09:17 . 2009-09-03 09:17 491520 ----a-w- c:\windows\WebIE.dll
2009-09-03 09:17 . 2009-09-03 09:17 294912 ----a-w- c:\windows\TrnWord.dll
2009-09-03 09:17 . 2009-09-03 09:17 45056 ----a-w- c:\windows\TRNOEH.DLL
2009-09-03 09:17 . 2009-09-03 09:17 356352 ----a-w- c:\windows\TrnOutl.dll
2009-09-03 09:17 . 2009-09-03 09:17 26624 ----a-w- c:\windows\OETRN.EXE
2009-09-03 09:17 . 2009-09-03 09:17 200704 ----a-w- c:\windows\TRNOET.DLL
2009-09-03 09:08 . 2009-09-03 09:08 516096 ----a-w- c:\windows\UN32.EXE
2009-09-02 14:25 . 2009-09-02 14:25 -------- d-----w- c:\program files\iPod
2009-08-21 15:57 . 2009-08-21 15:57 -------- d-----w- c:\program files\Common Files\xing shared
2009-08-21 15:57 . 2009-08-21 15:57 -------- d-----w- c:\program files\Real
2009-08-19 02:15 . 2009-08-19 02:15 794408 ----a-w- c:\windows\system32\pbsvc.exe
2009-08-19 00:16 . 2009-08-21 15:57 -------- d-----w- c:\program files\Common Files\Real
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-07 19:26 . 2008-05-29 14:01 -------- d-----w- c:\program files\AIMP
2009-09-07 15:51 . 2008-05-29 12:20 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-09-07 15:50 . 2008-09-18 13:43 -------- d-----w- c:\program files\Burn4Free Toolbar
2009-09-03 20:19 . 2008-06-03 22:01 -------- d-----w- c:\program files\Java
2009-09-02 14:25 . 2008-05-29 13:47 -------- d-----w- c:\program files\Common Files\Apple
2009-08-22 13:58 . 2008-06-11 17:05 -------- d-----w- c:\program files\OpenAL
2009-08-19 02:29 . 2008-12-10 23:16 137544 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-08-19 02:29 . 2008-12-10 23:16 189480 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-08-19 02:15 . 2008-12-10 23:16 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-08-17 11:47 . 2009-07-12 11:13 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-07-25 03:23 . 2008-11-12 10:32 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-12 11:35 . 2009-05-21 20:38 -------- d-----w- c:\program files\Thief - Deadly Shadows
2008-09-18 13:48 . 2008-09-18 13:46 24 --sh--w- c:\windows\SE207A1C4.tmp
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 81920]
"DAEMON Tools Pro Agent"="d:\programy\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-06-28 1626112]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-17 15360]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFileUrl"= 0 (0x0)
"NoUpdateCheck"= 0 (0x0)
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BlueSoleil.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\BlueSoleil.lnk
backup=c:\windows\pss\BlueSoleil.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Dixx^Nabídka Start^Programy^Po spuštění^HotSync Manager.lnk]
path=c:\documents and settings\Dixx\Nabídka Start\Programy\Po spuštění\HotSync Manager.lnk
backup=c:\windows\pss\HotSync Manager.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dixx^Nabídka Start^Programy^Po spuštění^Registrace Need for Speed™ Undercover.lnk]
path=c:\documents and settings\Dixx\Nabídka Start\Programy\Po spuštění\Registrace Need for Speed™ Undercover.lnk
backup=c:\windows\pss\Registrace Need for Speed™ Undercover.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SharedAccess"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
"iTunesHelper"="d:\programy\Itunes\iTunesHelper.exe"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"d:\\Programy\\QIP\\qip.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"d:\\Gamez\\Steam Powered\\SteamApps\\hernaujezdec3\\counter-strike source\\hl2.exe"=
"d:\\Programy\\DC++\\Strong\\StrongDC.exe"=
R0 pe3an4ab;Reprobates Environment Driver (pe3an4ab);c:\windows\system32\drivers\pe3an4ab.sys [28.7.2008 14:52 64632]
R0 ps7an4ab;Reprobates Synchronization Driver (ps7an4ab);c:\windows\system32\drivers\ps7an4ab.sys [28.7.2008 14:49 68736]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [1.7.2008 9:04 34312]
R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [24.4.2008 8:49 45848]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [29.5.2008 15:22 142592]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [1.7.2008 9:02 468224]
R3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [1.11.2006 6:01 3328]
S2 gupdate1c98222a2b0105a;Google Update Service (gupdate1c98222a2b0105a);c:\program files\Google\Update\GoogleUpdate.exe [29.1.2009 17:02 133104]
S2 pr2an4ab;Reprobates Drivers Auto Removal (pr2an4ab);c:\windows\system32\pr2an4ab.exe svc --> c:\windows\system32\pr2an4ab.exe svc [?]
S3 cpuz132;cpuz132;\??\c:\docume~1\Dixx\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\Dixx\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys [?]
S3 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [8.11.2008 17:11 1238344]
.
Obsah adresáře 'Naplánované úlohy'
2009-09-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-09-07 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-29 05:03]
2009-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-01-29 22:16]
2009-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-01-29 22:16]
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{D187A56B-A33F-4CBE-9D77-459FC0BAE012} - (no file)
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)
Notify-dimsntfy - (no file)
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Dixx\Data aplikací\Mozilla\Firefox\Profiles\ryilerhe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: d:\programy\Itunes\Mozilla Plugins\npitunes.dll
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-08 01:58
Windows 5.1.2600 Service Pack 2 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1343024091-287218729-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:7c,49,98,3c,a8,bc,a5,47,4a,7e,a4,5e,00,e0,33,f9,2c,e5,2c,7f,83,eb,34,
e1,63,df,e1,0b,ed,3e,1c,17,c0,1c,78,83,1c,42,2c,6e,45,f5,3b,68,22,04,d3,d4,\
"??"=hex:75,ff,e5,14,92,e5,b7,54,f3,a4,1b,86,82,c6,80,2d
[HKEY_USERS\S-1-5-21-1343024091-287218729-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:17,00,92,66,8f,89,e5,af,e2,d0,2e,a0,ba,4a,36,60,28,ef,3b,d0,c4,
f0,5b,82,19,35,ce,23,b6,71,a9,92,f6,77,94,b7,e1,29,be,82,8b,83,75,44,8d,77,\
"rkeysecu"=hex:5e,46,28,a4,f9,12,2a,a5,1e,68,15,5e,c7,2d,c8,7f
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(3044)
c:\windows\system32\browselc.dll
c:\program files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
c:\windows\WebIE.dll
c:\program files\Common Files\Nero\SMC\NeroDigitalExt.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
d:\programy\IVT BLUESOLEIL 1,4\BTNtService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
d:\programy\Nero\Nero8\Nero BackItUp\NBService.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\NVIDIA Corporation\nTune\nTuneService.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2009-09-07 2:00 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-09-08 00:00
Před spuštěním: Volných bajtů: 10 129 313 792
Po spuštění: Volných bajtů: 10 142 121 984
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
192
Re: žádost o kontrolu logu
4 polozky zmazane, inak v logu nic skodliveho nevidim. Co rychlost PC?
Nemam rad amaterizmus...
A adresat odkazu to vie :)
A adresat odkazu to vie :)
Re: žádost o kontrolu logu
Je to minimálně lepší než předtím.. díky moc!
Re: žádost o kontrolu logu
Tak teda este toto: das si tu spravit scan, nahlas potom vysledky.
Nemam rad amaterizmus...
A adresat odkazu to vie :)
A adresat odkazu to vie :)
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 98 hostů