Zdravím,zde je log z HJT.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:00:04, on 4.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
D:\WINDOWS\ehome\ehtray.exe
D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\arservice.exe
D:\WINDOWS\eHome\ehRecvr.exe
D:\WINDOWS\eHome\ehSched.exe
D:\WINDOWS\system32\inetsrv\inetinfo.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\eHome\ehmsas.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\WINDOWS\system32\msiexec.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer - Microsoft Windows XP 2009 Ultra Edition
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O4 - HKLM\..\Run: [ehTray] D:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [avast5] D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 6219 bytes
Díky :-)
Prosím o kontrolu logu-zpomalené PC
Re: Prosím o kontrolu logu-zpomalené PC
Ahoj,
Co máš za problémy s počítačem?
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
**********************
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
Co máš za problémy s počítačem?
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
**********************
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
Re: Prosím o kontrolu logu-zpomalené PC
Tady je log,někdy se mi zdá že je PC moc pomalé.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lukáš at 2010-08-04 21:17:42
Systém Microsoft Windows XP Professional Service Pack 3
System drive D: has 29 GB (74%) free of 39 GB
Total RAM: 1215 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:47, on 4.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
D:\WINDOWS\ehome\ehtray.exe
D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\arservice.exe
D:\WINDOWS\eHome\ehRecvr.exe
D:\WINDOWS\eHome\ehSched.exe
D:\WINDOWS\system32\inetsrv\inetinfo.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\eHome\ehmsas.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\Documents and Settings\Lukáš\Dokumenty\Stažené soubory\RSIT.exe
D:\Program Files\trend micro\Lukáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer - Microsoft Windows XP 2009 Ultra Edition
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O4 - HKLM\..\Run: [ehTray] D:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [avast5] D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 6285 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - D:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Centrum.cz Toolbar - D:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray"=D:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"AlwaysReady Power Message APP"=D:\WINDOWS\ARPWRMSG.EXE [2008-11-05 77312]
"avast5"=D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"SpywareTerminator"=D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-08-03 2176512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2008-10-19 66560]
"SpywareTerminatorUpdate"=D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrvIcon]
D:\Program Files\Vista Components\Vista Drive Icon\DrvIcon.exe [2007-07-04 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-08-03 2176512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
D:\WINDOWS\system32\VTTimer.exe [2010-08-03 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
D:\WINDOWS\system32\VTtrayp.exe [2010-08-03 176128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3
"sp_rssrv"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2008-09-23 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=D:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=D:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"ForceClassicControlPanel"=1
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1
"NoRecentDocsNetHood"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Program Files\Skype\Plugin Manager\skypePM.exe"="D:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-08-04 21:17:42 ----D---- D:\rsit
2010-08-04 21:16:44 ----D---- D:\Program Files\CCleaner
2010-08-04 20:58:01 ----D---- D:\Program Files\Trend Micro
2010-08-03 21:31:51 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\OpenOffice.org
2010-08-03 20:37:39 ----D---- D:\Program Files\OpenOffice.org 3
2010-08-03 20:34:51 ----D---- D:\Documents and Settings\All Users\Data aplikací\Adobe
2010-08-03 20:34:35 ----D---- D:\Program Files\Common Files\Adobe
2010-08-03 20:34:35 ----D---- D:\Program Files\Adobe
2010-08-03 16:16:19 ----A---- D:\WINDOWS\system32\drivers\mouhid.sys
2010-08-03 16:15:54 ----A---- D:\WINDOWS\system32\drivers\hidusb.sys
2010-08-03 16:15:48 ----N---- D:\WINDOWS\system32\SET4.tmp
2010-08-03 15:19:50 ----RA---- D:\WINDOWS\system32\VModes.exe
2010-08-03 15:19:40 ----D---- D:\Program Files\S3
2010-08-03 14:24:59 ----D---- D:\Program Files\Rockstar Games
2010-08-03 13:05:04 ----D---- D:\Program Files\xp-AntiSpy
2010-08-03 12:53:58 ----D---- D:\WINDOWS\pss
2010-08-03 12:47:42 ----D---- D:\Program Files\WinClamAVShield
2010-08-03 12:44:33 ----A---- D:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2010-08-03 12:44:32 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\Spyware Terminator
2010-08-03 12:44:30 ----D---- D:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-08-03 12:44:29 ----D---- D:\Program Files\Spyware Terminator
2010-08-03 12:30:32 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\skypePM
2010-08-03 12:29:39 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\Skype
2010-08-03 12:29:02 ----D---- D:\Program Files\Common Files\Skype
2010-08-03 12:28:53 ----RD---- D:\Program Files\Skype
2010-08-03 12:28:46 ----D---- D:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-03 09:55:16 ----A---- D:\WINDOWS\system32\drivers\MSTEE.sys
2010-08-03 09:55:08 ----A---- D:\WINDOWS\system32\drivers\NdisIP.sys
2010-08-03 09:55:03 ----A---- D:\WINDOWS\system32\drivers\StreamIP.sys
2010-08-03 09:54:53 ----A---- D:\WINDOWS\system32\drivers\SLIP.sys
2010-08-03 09:54:46 ----A---- D:\WINDOWS\system32\drivers\WSTCODEC.SYS
2010-08-03 09:54:38 ----A---- D:\WINDOWS\system32\drivers\NABTSFEC.sys
2010-08-03 09:54:29 ----A---- D:\WINDOWS\system32\drivers\sptd.sys
2010-08-03 09:54:25 ----A---- D:\WINDOWS\system32\drivers\CCDECODE.sys
2010-08-03 09:54:10 ----D---- D:\Program Files\DAEMON Tools Lite
2010-08-03 09:54:00 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
2010-08-03 09:53:59 ----D---- D:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-08-03 09:50:02 ----A---- D:\WINDOWS\system32\vfwwdm32.dll
2010-08-03 09:50:01 ----A---- D:\WINDOWS\system32\drivers\usbvideo.sys
2010-08-03 09:45:27 ----A---- D:\WINDOWS\system32\drivers\usbccgp.sys
2010-08-03 09:37:34 ----N---- D:\WINDOWS\system32\spmsg.dll
2010-08-03 09:37:33 ----HDC---- D:\WINDOWS\$NtUninstallMSCompPackV1$
2010-08-03 09:37:13 ----HDC---- D:\WINDOWS\$NtUninstallwmp11$
2010-08-03 09:36:45 ----A---- D:\WINDOWS\system32\XAPOFX1_5.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\XAudio2_7.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\xactengine3_7.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\D3DCompiler_43.dll
2010-08-03 09:36:43 ----A---- D:\WINDOWS\system32\d3dcsx_43.dll
2010-08-03 09:36:42 ----A---- D:\WINDOWS\system32\d3dx11_43.dll
2010-08-03 09:36:42 ----A---- D:\WINDOWS\system32\d3dx10_43.dll
2010-08-03 09:36:41 ----A---- D:\WINDOWS\system32\D3DX9_43.dll
2010-08-03 09:36:39 ----A---- D:\WINDOWS\system32\XAudio2_6.dll
2010-08-03 09:36:39 ----A---- D:\WINDOWS\system32\XAPOFX1_4.dll
2010-08-03 09:36:38 ----A---- D:\WINDOWS\system32\xactengine3_6.dll
2010-08-03 09:36:38 ----A---- D:\WINDOWS\system32\X3DAudio1_7.dll
2010-08-03 09:36:37 ----A---- D:\WINDOWS\system32\XAudio2_5.dll
2010-08-03 09:36:36 ----A---- D:\WINDOWS\system32\xactengine3_5.dll
2010-08-03 09:36:35 ----A---- D:\WINDOWS\system32\D3DCompiler_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dx11_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dx10_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dcsx_42.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\D3DX9_42.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\d3dx10_41.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\D3DCompiler_41.dll
2010-08-03 09:36:27 ----HDC---- D:\WINDOWS\$NtUninstallWMFDist11$
2010-08-03 09:36:27 ----A---- D:\WINDOWS\system32\D3DX9_41.dll
2010-08-03 09:36:26 ----A---- D:\WINDOWS\system32\XAudio2_4.dll
2010-08-03 09:36:26 ----A---- D:\WINDOWS\system32\XAPOFX1_3.dll
2010-08-03 09:36:25 ----A---- D:\WINDOWS\system32\xactengine3_4.dll
2010-08-03 09:36:25 ----A---- D:\WINDOWS\system32\X3DAudio1_6.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\D3DX9_40.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\d3dx10_40.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\D3DCompiler_40.dll
2010-08-03 09:36:23 ----A---- D:\WINDOWS\system32\XAudio2_3.dll
2010-08-03 09:36:23 ----A---- D:\WINDOWS\system32\XAPOFX1_2.dll
2010-08-03 09:36:22 ----A---- D:\WINDOWS\system32\xactengine3_3.dll
2010-08-03 09:36:22 ----A---- D:\WINDOWS\system32\X3DAudio1_5.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\XAudio2_2.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\XAPOFX1_1.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\xactengine3_2.dll
2010-08-03 09:36:20 ----A---- D:\WINDOWS\system32\d3dx10_39.dll
2010-08-03 09:36:20 ----A---- D:\WINDOWS\system32\D3DCompiler_39.dll
2010-08-03 09:36:19 ----A---- D:\WINDOWS\system32\D3DX9_39.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\XAudio2_1.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\XAPOFX1_0.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\xactengine3_1.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\X3DAudio1_4.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\d3dx10_38.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\D3DCompiler_38.dll
2010-08-03 09:36:16 ----A---- D:\WINDOWS\system32\D3DX9_38.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\XAudio2_0.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\xactengine3_0.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\X3DAudio1_3.dll
2010-08-03 09:36:14 ----A---- D:\WINDOWS\system32\d3dx10_37.dll
2010-08-03 09:36:14 ----A---- D:\WINDOWS\system32\D3DCompiler_37.dll
2010-08-03 09:36:13 ----A---- D:\WINDOWS\system32\D3DX9_37.dll
2010-08-03 09:36:12 ----A---- D:\WINDOWS\system32\xactengine2_10.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\d3dx9_36.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\d3dx10_36.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\D3DCompiler_36.dll
2010-08-03 09:36:10 ----A---- D:\WINDOWS\system32\xactengine2_9.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\d3dx9_35.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\d3dx10_35.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\D3DCompiler_35.dll
2010-08-03 09:36:08 ----A---- D:\WINDOWS\system32\xactengine2_8.dll
2010-08-03 09:36:08 ----A---- D:\WINDOWS\system32\X3DAudio1_2.dll
2010-08-03 09:36:07 ----A---- D:\WINDOWS\system32\d3dx10_34.dll
2010-08-03 09:36:07 ----A---- D:\WINDOWS\system32\D3DCompiler_34.dll
2010-08-03 09:36:06 ----A---- D:\WINDOWS\system32\xinput1_3.dll
2010-08-03 09:36:06 ----A---- D:\WINDOWS\system32\d3dx9_34.dll
2010-08-03 09:36:05 ----A---- D:\WINDOWS\system32\xactengine2_7.dll
2010-08-03 09:36:01 ----A---- D:\WINDOWS\system32\d3dx10_33.dll
2010-08-03 09:36:01 ----A---- D:\WINDOWS\system32\D3DCompiler_33.dll
2010-08-03 09:35:57 ----A---- D:\WINDOWS\system32\d3dx9_33.dll
2010-08-03 09:35:56 ----A---- D:\WINDOWS\system32\xactengine2_6.dll
2010-08-03 09:35:55 ----A---- D:\WINDOWS\system32\xactengine2_5.dll
2010-08-03 09:35:55 ----A---- D:\WINDOWS\system32\d3dx9_32.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\xactengine2_4.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\x3daudio1_1.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\d3dx9_31.dll
2010-08-03 09:35:53 ----A---- D:\WINDOWS\system32\xinput1_2.dll
2010-08-03 09:35:53 ----A---- D:\WINDOWS\system32\xactengine2_3.dll
2010-08-03 09:35:52 ----A---- D:\WINDOWS\system32\xinput1_1.dll
2010-08-03 09:35:52 ----A---- D:\WINDOWS\system32\xactengine2_2.dll
2010-08-03 09:35:51 ----A---- D:\WINDOWS\system32\xactengine2_1.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\xactengine2_0.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\x3daudio1_0.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\d3dx9_30.dll
2010-08-03 09:35:48 ----A---- D:\WINDOWS\system32\d3dx9_29.dll
2010-08-03 09:35:48 ----A---- D:\WINDOWS\system32\d3dx9_28.dll
2010-08-03 09:35:47 ----A---- D:\WINDOWS\system32\d3dx9_27.dll
2010-08-03 09:35:47 ----A---- D:\WINDOWS\system32\d3dx9_26.dll
2010-08-03 09:35:46 ----A---- D:\WINDOWS\system32\d3dx9_25.dll
2010-08-03 09:35:44 ----A---- D:\WINDOWS\system32\d3dx9_24.dll
2010-08-03 09:31:59 ----HD---- D:\WINDOWS\msdownld.tmp
2010-08-03 09:31:46 ----D---- D:\WINDOWS\Logs
======List of files/folders modified in the last 1 months======
2010-08-04 21:17:05 ----D---- D:\WINDOWS\Prefetch
2010-08-04 21:17:04 ----D---- D:\WINDOWS\Debug
2010-08-04 21:17:04 ----D---- D:\WINDOWS
2010-08-04 21:17:03 ----D---- D:\WINDOWS\Temp
2010-08-04 21:16:44 ----RD---- D:\Program Files
2010-08-04 20:58:04 ----SHD---- D:\WINDOWS\Installer
2010-08-04 20:58:04 ----SD---- D:\Documents and Settings\Lukáš\Data aplikací\Microsoft
2010-08-04 20:32:04 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\ICQ
2010-08-04 20:18:05 ----D---- D:\WINDOWS\system32\inetsrv
2010-08-04 20:16:07 ----D---- D:\WINDOWS\Registration
2010-08-04 18:32:06 ----N---- D:\WINDOWS\SchedLgU.Txt
2010-08-04 16:35:28 ----D---- D:\Program Files\Mozilla Firefox
2010-08-03 21:34:15 ----D---- D:\WINDOWS\system32\CatRoot2
2010-08-03 20:57:14 ----D---- D:\WINDOWS\system32\drivers
2010-08-03 20:38:51 ----D---- D:\WINDOWS\WinSxS
2010-08-03 20:37:57 ----RSD---- D:\WINDOWS\Fonts
2010-08-03 20:34:35 ----D---- D:\Program Files\Common Files
2010-08-03 20:34:23 ----D---- D:\WINDOWS\system32
2010-08-03 17:29:33 ----A---- D:\WINDOWS\win.ini
2010-08-03 17:29:33 ----A---- D:\WINDOWS\system.ini
2010-08-03 16:15:35 ----HD---- D:\WINDOWS\inf
2010-08-03 15:27:00 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI
2010-08-03 15:19:50 ----D---- D:\WINDOWS\Help
2010-08-03 15:19:44 ----D---- D:\WINDOWS\system32\ReinstallBackups
2010-08-03 15:19:40 ----HD---- D:\Program Files\InstallShield Installation Information
2010-08-03 15:19:24 ----A---- D:\WINDOWS\system32\VTTrayp.exe
2010-08-03 15:19:24 ----A---- D:\WINDOWS\system32\VTTimer.exe
2010-08-03 15:19:23 ----A---- D:\WINDOWS\system32\VTovrlay.dll
2010-08-03 15:19:22 ----A---- D:\WINDOWS\system32\VTInfo2.dll
2010-08-03 15:19:21 ----A---- D:\WINDOWS\system32\vticd.dll
2010-08-03 15:19:20 ----A---- D:\WINDOWS\system32\VTGamma2.dll
2010-08-03 15:19:17 ----A---- D:\WINDOWS\system32\VTDisply.dll
2010-08-03 15:19:16 ----A---- D:\WINDOWS\system32\vtdisp.dll
2010-08-03 14:52:49 ----SD---- D:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-08-03 14:24:42 ----D---- D:\Program Files\Common Files\InstallShield
2010-08-03 13:19:42 ----D---- D:\Program Files\Alky for Applications
2010-08-03 13:06:25 ----D---- D:\Program Files\Messenger
2010-08-03 12:33:51 ----HD---- D:\WINDOWS\$hf_mig$
2010-08-03 09:37:45 ----D---- D:\WINDOWS\system32\CatRoot
2010-08-03 09:37:19 ----D---- D:\Program Files\Windows Media Player
2010-08-03 09:37:18 ----RSHDC---- D:\WINDOWS\system32\dllcache
2010-08-03 09:36:46 ----D---- D:\WINDOWS\system32\DirectX
2010-08-03 09:35:40 ----D---- D:\WINDOWS\Microsoft.NET
2010-08-03 09:30:16 ----SD---- D:\WINDOWS\Downloaded Program Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; D:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-13 46464]
R0 PxHelp20;PxHelp20; D:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-05-12 20576]
R0 sptd;sptd; D:\WINDOWS\System32\Drivers\sptd.sys [2010-08-03 691696]
R0 viaagp1;VIA AGP Filter; D:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-01 27904]
R0 VIAMRAID;VIAMRAID; D:\WINDOWS\system32\drivers\VIAMRAID.sys [2008-09-22 117248]
R1 Aavmker4;avast! Asynchronous Virus Monitor; D:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; D:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; D:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\D:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 aswFsBlk;aswFsBlk; D:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;aswMon2; D:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R2 cpuz134;cpuz134; \??\D:\WINDOWS\system32\drivers\cpuz134_x32.sys []
R3 aracpi;aracpi; D:\WINDOWS\system32\DRIVERS\aracpi.sys [2008-11-05 22784]
R3 arhidfltr;MS Ar HID Filter Driver; D:\WINDOWS\system32\DRIVERS\arhidfltr.sys [2008-11-05 19200]
R3 arkbcfltr;Microsoft PS2 Keyboard Filter; D:\WINDOWS\system32\DRIVERS\arkbcfltr.sys [2008-11-05 5376]
R3 armoucfltr;Microsoft PS2 Mouse Filter; D:\WINDOWS\system32\DRIVERS\armoucfltr.sys [2008-11-05 4992]
R3 ARPolicy;ARPolicy; D:\WINDOWS\system32\DRIVERS\arpolicy.sys [2008-11-05 10112]
R3 aswRdr;aswRdr; D:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; D:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidUsb;Ovladač třídy standardu HID; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 viagfx;viagfx; D:\WINDOWS\system32\DRIVERS\vtmini.sys [2010-08-03 283904]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); D:\WINDOWS\system32\drivers\viaudios.sys [2004-03-17 117248]
S3 an4gc1wd;an4gc1wd; D:\WINDOWS\system32\drivers\an4gc1wd.sys []
S3 CCDECODE;Dekodér Closed Caption; D:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MHNDRV;Ovladač platformy MHN; D:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; D:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; D:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbvideo;Zobrazovací zařízení USB (WDM); D:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-09-23 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-09-23 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ARSVC;ARSVC; D:\WINDOWS\arservice.exe [2008-11-05 58880]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 ehRecvr;Služba přijímače aplikace Media Center; D:\WINDOWS\eHome\ehRecvr.exe [2008-10-10 238592]
R2 ehSched;Služba plánování aplikace Media Center; D:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
R2 IISADMIN;Správa služby IIS; D:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 McrdSvc;Media Center Extender Service; D:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; D:\Program Files\Spyware Terminator\sp_rsser.exe [2010-08-03 488960]
R2 W3SVC;Publikování na webu; D:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R3 avast! Mail Scanner;avast! Mail Scanner; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 MHN;MHN; D:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; D:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lukáš at 2010-08-04 21:17:42
Systém Microsoft Windows XP Professional Service Pack 3
System drive D: has 29 GB (74%) free of 39 GB
Total RAM: 1215 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:47, on 4.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
D:\WINDOWS\ehome\ehtray.exe
D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\arservice.exe
D:\WINDOWS\eHome\ehRecvr.exe
D:\WINDOWS\eHome\ehSched.exe
D:\WINDOWS\system32\inetsrv\inetinfo.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\eHome\ehmsas.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\Documents and Settings\Lukáš\Dokumenty\Stažené soubory\RSIT.exe
D:\Program Files\trend micro\Lukáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer - Microsoft Windows XP 2009 Ultra Edition
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O4 - HKLM\..\Run: [ehTray] D:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [avast5] D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - D:\Program Files\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 6285 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - D:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Centrum.cz Toolbar - D:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray"=D:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"AlwaysReady Power Message APP"=D:\WINDOWS\ARPWRMSG.EXE [2008-11-05 77312]
"avast5"=D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"SpywareTerminator"=D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-08-03 2176512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2008-10-19 66560]
"SpywareTerminatorUpdate"=D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrvIcon]
D:\Program Files\Vista Components\Vista Drive Icon\DrvIcon.exe [2007-07-04 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-08-03 2176512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
D:\WINDOWS\system32\VTTimer.exe [2010-08-03 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
D:\WINDOWS\system32\VTtrayp.exe [2010-08-03 176128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3
"sp_rssrv"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2008-09-23 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=D:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=D:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"ForceClassicControlPanel"=1
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1
"NoRecentDocsNetHood"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Program Files\Skype\Plugin Manager\skypePM.exe"="D:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-08-04 21:17:42 ----D---- D:\rsit
2010-08-04 21:16:44 ----D---- D:\Program Files\CCleaner
2010-08-04 20:58:01 ----D---- D:\Program Files\Trend Micro
2010-08-03 21:31:51 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\OpenOffice.org
2010-08-03 20:37:39 ----D---- D:\Program Files\OpenOffice.org 3
2010-08-03 20:34:51 ----D---- D:\Documents and Settings\All Users\Data aplikací\Adobe
2010-08-03 20:34:35 ----D---- D:\Program Files\Common Files\Adobe
2010-08-03 20:34:35 ----D---- D:\Program Files\Adobe
2010-08-03 16:16:19 ----A---- D:\WINDOWS\system32\drivers\mouhid.sys
2010-08-03 16:15:54 ----A---- D:\WINDOWS\system32\drivers\hidusb.sys
2010-08-03 16:15:48 ----N---- D:\WINDOWS\system32\SET4.tmp
2010-08-03 15:19:50 ----RA---- D:\WINDOWS\system32\VModes.exe
2010-08-03 15:19:40 ----D---- D:\Program Files\S3
2010-08-03 14:24:59 ----D---- D:\Program Files\Rockstar Games
2010-08-03 13:05:04 ----D---- D:\Program Files\xp-AntiSpy
2010-08-03 12:53:58 ----D---- D:\WINDOWS\pss
2010-08-03 12:47:42 ----D---- D:\Program Files\WinClamAVShield
2010-08-03 12:44:33 ----A---- D:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2010-08-03 12:44:32 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\Spyware Terminator
2010-08-03 12:44:30 ----D---- D:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-08-03 12:44:29 ----D---- D:\Program Files\Spyware Terminator
2010-08-03 12:30:32 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\skypePM
2010-08-03 12:29:39 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\Skype
2010-08-03 12:29:02 ----D---- D:\Program Files\Common Files\Skype
2010-08-03 12:28:53 ----RD---- D:\Program Files\Skype
2010-08-03 12:28:46 ----D---- D:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-03 09:55:16 ----A---- D:\WINDOWS\system32\drivers\MSTEE.sys
2010-08-03 09:55:08 ----A---- D:\WINDOWS\system32\drivers\NdisIP.sys
2010-08-03 09:55:03 ----A---- D:\WINDOWS\system32\drivers\StreamIP.sys
2010-08-03 09:54:53 ----A---- D:\WINDOWS\system32\drivers\SLIP.sys
2010-08-03 09:54:46 ----A---- D:\WINDOWS\system32\drivers\WSTCODEC.SYS
2010-08-03 09:54:38 ----A---- D:\WINDOWS\system32\drivers\NABTSFEC.sys
2010-08-03 09:54:29 ----A---- D:\WINDOWS\system32\drivers\sptd.sys
2010-08-03 09:54:25 ----A---- D:\WINDOWS\system32\drivers\CCDECODE.sys
2010-08-03 09:54:10 ----D---- D:\Program Files\DAEMON Tools Lite
2010-08-03 09:54:00 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
2010-08-03 09:53:59 ----D---- D:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-08-03 09:50:02 ----A---- D:\WINDOWS\system32\vfwwdm32.dll
2010-08-03 09:50:01 ----A---- D:\WINDOWS\system32\drivers\usbvideo.sys
2010-08-03 09:45:27 ----A---- D:\WINDOWS\system32\drivers\usbccgp.sys
2010-08-03 09:37:34 ----N---- D:\WINDOWS\system32\spmsg.dll
2010-08-03 09:37:33 ----HDC---- D:\WINDOWS\$NtUninstallMSCompPackV1$
2010-08-03 09:37:13 ----HDC---- D:\WINDOWS\$NtUninstallwmp11$
2010-08-03 09:36:45 ----A---- D:\WINDOWS\system32\XAPOFX1_5.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\XAudio2_7.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\xactengine3_7.dll
2010-08-03 09:36:44 ----A---- D:\WINDOWS\system32\D3DCompiler_43.dll
2010-08-03 09:36:43 ----A---- D:\WINDOWS\system32\d3dcsx_43.dll
2010-08-03 09:36:42 ----A---- D:\WINDOWS\system32\d3dx11_43.dll
2010-08-03 09:36:42 ----A---- D:\WINDOWS\system32\d3dx10_43.dll
2010-08-03 09:36:41 ----A---- D:\WINDOWS\system32\D3DX9_43.dll
2010-08-03 09:36:39 ----A---- D:\WINDOWS\system32\XAudio2_6.dll
2010-08-03 09:36:39 ----A---- D:\WINDOWS\system32\XAPOFX1_4.dll
2010-08-03 09:36:38 ----A---- D:\WINDOWS\system32\xactengine3_6.dll
2010-08-03 09:36:38 ----A---- D:\WINDOWS\system32\X3DAudio1_7.dll
2010-08-03 09:36:37 ----A---- D:\WINDOWS\system32\XAudio2_5.dll
2010-08-03 09:36:36 ----A---- D:\WINDOWS\system32\xactengine3_5.dll
2010-08-03 09:36:35 ----A---- D:\WINDOWS\system32\D3DCompiler_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dx11_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dx10_42.dll
2010-08-03 09:36:29 ----A---- D:\WINDOWS\system32\d3dcsx_42.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\D3DX9_42.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\d3dx10_41.dll
2010-08-03 09:36:28 ----A---- D:\WINDOWS\system32\D3DCompiler_41.dll
2010-08-03 09:36:27 ----HDC---- D:\WINDOWS\$NtUninstallWMFDist11$
2010-08-03 09:36:27 ----A---- D:\WINDOWS\system32\D3DX9_41.dll
2010-08-03 09:36:26 ----A---- D:\WINDOWS\system32\XAudio2_4.dll
2010-08-03 09:36:26 ----A---- D:\WINDOWS\system32\XAPOFX1_3.dll
2010-08-03 09:36:25 ----A---- D:\WINDOWS\system32\xactengine3_4.dll
2010-08-03 09:36:25 ----A---- D:\WINDOWS\system32\X3DAudio1_6.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\D3DX9_40.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\d3dx10_40.dll
2010-08-03 09:36:24 ----A---- D:\WINDOWS\system32\D3DCompiler_40.dll
2010-08-03 09:36:23 ----A---- D:\WINDOWS\system32\XAudio2_3.dll
2010-08-03 09:36:23 ----A---- D:\WINDOWS\system32\XAPOFX1_2.dll
2010-08-03 09:36:22 ----A---- D:\WINDOWS\system32\xactengine3_3.dll
2010-08-03 09:36:22 ----A---- D:\WINDOWS\system32\X3DAudio1_5.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\XAudio2_2.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\XAPOFX1_1.dll
2010-08-03 09:36:21 ----A---- D:\WINDOWS\system32\xactengine3_2.dll
2010-08-03 09:36:20 ----A---- D:\WINDOWS\system32\d3dx10_39.dll
2010-08-03 09:36:20 ----A---- D:\WINDOWS\system32\D3DCompiler_39.dll
2010-08-03 09:36:19 ----A---- D:\WINDOWS\system32\D3DX9_39.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\XAudio2_1.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\XAPOFX1_0.dll
2010-08-03 09:36:18 ----A---- D:\WINDOWS\system32\xactengine3_1.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\X3DAudio1_4.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\d3dx10_38.dll
2010-08-03 09:36:17 ----A---- D:\WINDOWS\system32\D3DCompiler_38.dll
2010-08-03 09:36:16 ----A---- D:\WINDOWS\system32\D3DX9_38.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\XAudio2_0.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\xactengine3_0.dll
2010-08-03 09:36:15 ----A---- D:\WINDOWS\system32\X3DAudio1_3.dll
2010-08-03 09:36:14 ----A---- D:\WINDOWS\system32\d3dx10_37.dll
2010-08-03 09:36:14 ----A---- D:\WINDOWS\system32\D3DCompiler_37.dll
2010-08-03 09:36:13 ----A---- D:\WINDOWS\system32\D3DX9_37.dll
2010-08-03 09:36:12 ----A---- D:\WINDOWS\system32\xactengine2_10.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\d3dx9_36.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\d3dx10_36.dll
2010-08-03 09:36:11 ----A---- D:\WINDOWS\system32\D3DCompiler_36.dll
2010-08-03 09:36:10 ----A---- D:\WINDOWS\system32\xactengine2_9.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\d3dx9_35.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\d3dx10_35.dll
2010-08-03 09:36:09 ----A---- D:\WINDOWS\system32\D3DCompiler_35.dll
2010-08-03 09:36:08 ----A---- D:\WINDOWS\system32\xactengine2_8.dll
2010-08-03 09:36:08 ----A---- D:\WINDOWS\system32\X3DAudio1_2.dll
2010-08-03 09:36:07 ----A---- D:\WINDOWS\system32\d3dx10_34.dll
2010-08-03 09:36:07 ----A---- D:\WINDOWS\system32\D3DCompiler_34.dll
2010-08-03 09:36:06 ----A---- D:\WINDOWS\system32\xinput1_3.dll
2010-08-03 09:36:06 ----A---- D:\WINDOWS\system32\d3dx9_34.dll
2010-08-03 09:36:05 ----A---- D:\WINDOWS\system32\xactengine2_7.dll
2010-08-03 09:36:01 ----A---- D:\WINDOWS\system32\d3dx10_33.dll
2010-08-03 09:36:01 ----A---- D:\WINDOWS\system32\D3DCompiler_33.dll
2010-08-03 09:35:57 ----A---- D:\WINDOWS\system32\d3dx9_33.dll
2010-08-03 09:35:56 ----A---- D:\WINDOWS\system32\xactengine2_6.dll
2010-08-03 09:35:55 ----A---- D:\WINDOWS\system32\xactengine2_5.dll
2010-08-03 09:35:55 ----A---- D:\WINDOWS\system32\d3dx9_32.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\xactengine2_4.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\x3daudio1_1.dll
2010-08-03 09:35:54 ----A---- D:\WINDOWS\system32\d3dx9_31.dll
2010-08-03 09:35:53 ----A---- D:\WINDOWS\system32\xinput1_2.dll
2010-08-03 09:35:53 ----A---- D:\WINDOWS\system32\xactengine2_3.dll
2010-08-03 09:35:52 ----A---- D:\WINDOWS\system32\xinput1_1.dll
2010-08-03 09:35:52 ----A---- D:\WINDOWS\system32\xactengine2_2.dll
2010-08-03 09:35:51 ----A---- D:\WINDOWS\system32\xactengine2_1.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\xactengine2_0.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\x3daudio1_0.dll
2010-08-03 09:35:49 ----A---- D:\WINDOWS\system32\d3dx9_30.dll
2010-08-03 09:35:48 ----A---- D:\WINDOWS\system32\d3dx9_29.dll
2010-08-03 09:35:48 ----A---- D:\WINDOWS\system32\d3dx9_28.dll
2010-08-03 09:35:47 ----A---- D:\WINDOWS\system32\d3dx9_27.dll
2010-08-03 09:35:47 ----A---- D:\WINDOWS\system32\d3dx9_26.dll
2010-08-03 09:35:46 ----A---- D:\WINDOWS\system32\d3dx9_25.dll
2010-08-03 09:35:44 ----A---- D:\WINDOWS\system32\d3dx9_24.dll
2010-08-03 09:31:59 ----HD---- D:\WINDOWS\msdownld.tmp
2010-08-03 09:31:46 ----D---- D:\WINDOWS\Logs
======List of files/folders modified in the last 1 months======
2010-08-04 21:17:05 ----D---- D:\WINDOWS\Prefetch
2010-08-04 21:17:04 ----D---- D:\WINDOWS\Debug
2010-08-04 21:17:04 ----D---- D:\WINDOWS
2010-08-04 21:17:03 ----D---- D:\WINDOWS\Temp
2010-08-04 21:16:44 ----RD---- D:\Program Files
2010-08-04 20:58:04 ----SHD---- D:\WINDOWS\Installer
2010-08-04 20:58:04 ----SD---- D:\Documents and Settings\Lukáš\Data aplikací\Microsoft
2010-08-04 20:32:04 ----D---- D:\Documents and Settings\Lukáš\Data aplikací\ICQ
2010-08-04 20:18:05 ----D---- D:\WINDOWS\system32\inetsrv
2010-08-04 20:16:07 ----D---- D:\WINDOWS\Registration
2010-08-04 18:32:06 ----N---- D:\WINDOWS\SchedLgU.Txt
2010-08-04 16:35:28 ----D---- D:\Program Files\Mozilla Firefox
2010-08-03 21:34:15 ----D---- D:\WINDOWS\system32\CatRoot2
2010-08-03 20:57:14 ----D---- D:\WINDOWS\system32\drivers
2010-08-03 20:38:51 ----D---- D:\WINDOWS\WinSxS
2010-08-03 20:37:57 ----RSD---- D:\WINDOWS\Fonts
2010-08-03 20:34:35 ----D---- D:\Program Files\Common Files
2010-08-03 20:34:23 ----D---- D:\WINDOWS\system32
2010-08-03 17:29:33 ----A---- D:\WINDOWS\win.ini
2010-08-03 17:29:33 ----A---- D:\WINDOWS\system.ini
2010-08-03 16:15:35 ----HD---- D:\WINDOWS\inf
2010-08-03 15:27:00 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI
2010-08-03 15:19:50 ----D---- D:\WINDOWS\Help
2010-08-03 15:19:44 ----D---- D:\WINDOWS\system32\ReinstallBackups
2010-08-03 15:19:40 ----HD---- D:\Program Files\InstallShield Installation Information
2010-08-03 15:19:24 ----A---- D:\WINDOWS\system32\VTTrayp.exe
2010-08-03 15:19:24 ----A---- D:\WINDOWS\system32\VTTimer.exe
2010-08-03 15:19:23 ----A---- D:\WINDOWS\system32\VTovrlay.dll
2010-08-03 15:19:22 ----A---- D:\WINDOWS\system32\VTInfo2.dll
2010-08-03 15:19:21 ----A---- D:\WINDOWS\system32\vticd.dll
2010-08-03 15:19:20 ----A---- D:\WINDOWS\system32\VTGamma2.dll
2010-08-03 15:19:17 ----A---- D:\WINDOWS\system32\VTDisply.dll
2010-08-03 15:19:16 ----A---- D:\WINDOWS\system32\vtdisp.dll
2010-08-03 14:52:49 ----SD---- D:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-08-03 14:24:42 ----D---- D:\Program Files\Common Files\InstallShield
2010-08-03 13:19:42 ----D---- D:\Program Files\Alky for Applications
2010-08-03 13:06:25 ----D---- D:\Program Files\Messenger
2010-08-03 12:33:51 ----HD---- D:\WINDOWS\$hf_mig$
2010-08-03 09:37:45 ----D---- D:\WINDOWS\system32\CatRoot
2010-08-03 09:37:19 ----D---- D:\Program Files\Windows Media Player
2010-08-03 09:37:18 ----RSHDC---- D:\WINDOWS\system32\dllcache
2010-08-03 09:36:46 ----D---- D:\WINDOWS\system32\DirectX
2010-08-03 09:35:40 ----D---- D:\WINDOWS\Microsoft.NET
2010-08-03 09:30:16 ----SD---- D:\WINDOWS\Downloaded Program Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; D:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-13 46464]
R0 PxHelp20;PxHelp20; D:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-05-12 20576]
R0 sptd;sptd; D:\WINDOWS\System32\Drivers\sptd.sys [2010-08-03 691696]
R0 viaagp1;VIA AGP Filter; D:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-01 27904]
R0 VIAMRAID;VIAMRAID; D:\WINDOWS\system32\drivers\VIAMRAID.sys [2008-09-22 117248]
R1 Aavmker4;avast! Asynchronous Virus Monitor; D:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; D:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; D:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\D:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 aswFsBlk;aswFsBlk; D:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;aswMon2; D:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R2 cpuz134;cpuz134; \??\D:\WINDOWS\system32\drivers\cpuz134_x32.sys []
R3 aracpi;aracpi; D:\WINDOWS\system32\DRIVERS\aracpi.sys [2008-11-05 22784]
R3 arhidfltr;MS Ar HID Filter Driver; D:\WINDOWS\system32\DRIVERS\arhidfltr.sys [2008-11-05 19200]
R3 arkbcfltr;Microsoft PS2 Keyboard Filter; D:\WINDOWS\system32\DRIVERS\arkbcfltr.sys [2008-11-05 5376]
R3 armoucfltr;Microsoft PS2 Mouse Filter; D:\WINDOWS\system32\DRIVERS\armoucfltr.sys [2008-11-05 4992]
R3 ARPolicy;ARPolicy; D:\WINDOWS\system32\DRIVERS\arpolicy.sys [2008-11-05 10112]
R3 aswRdr;aswRdr; D:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; D:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidUsb;Ovladač třídy standardu HID; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 viagfx;viagfx; D:\WINDOWS\system32\DRIVERS\vtmini.sys [2010-08-03 283904]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); D:\WINDOWS\system32\drivers\viaudios.sys [2004-03-17 117248]
S3 an4gc1wd;an4gc1wd; D:\WINDOWS\system32\drivers\an4gc1wd.sys []
S3 CCDECODE;Dekodér Closed Caption; D:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MHNDRV;Ovladač platformy MHN; D:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; D:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; D:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbvideo;Zobrazovací zařízení USB (WDM); D:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-09-23 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-09-23 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ARSVC;ARSVC; D:\WINDOWS\arservice.exe [2008-11-05 58880]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 ehRecvr;Služba přijímače aplikace Media Center; D:\WINDOWS\eHome\ehRecvr.exe [2008-10-10 238592]
R2 ehSched;Služba plánování aplikace Media Center; D:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
R2 IISADMIN;Správa služby IIS; D:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 McrdSvc;Media Center Extender Service; D:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; D:\Program Files\Spyware Terminator\sp_rsser.exe [2010-08-03 488960]
R2 W3SVC;Publikování na webu; D:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R3 avast! Mail Scanner;avast! Mail Scanner; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 MHN;MHN; D:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; D:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
-----------------EOF-----------------
Re: Prosím o kontrolu logu-zpomalené PC
Stahni Mbam http://download.cnet.com/3001-8022_4-10 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
Re: Prosím o kontrolu logu-zpomalené PC
Tady je MBAM log:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Verze databáze: 4390
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.11
4.8.2010 22:15:03
mbam-log-2010-08-04 (22-15-03).txt
Typ skenu: Úplný sken (C:\|D:\|)
Skenované objekty: 145016
Uplynulý čas: 34 minuta(y), 15 sekunda(y)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 1
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\forceclassiccontrolpanel (Hijack.ControlPanelStyle) -> No action taken.
Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Verze databáze: 4390
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.11
4.8.2010 22:15:03
mbam-log-2010-08-04 (22-15-03).txt
Typ skenu: Úplný sken (C:\|D:\|)
Skenované objekty: 145016
Uplynulý čas: 34 minuta(y), 15 sekunda(y)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 1
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\forceclassiccontrolpanel (Hijack.ControlPanelStyle) -> No action taken.
Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Re: Prosím o kontrolu logu-zpomalené PC
Co našel mbam, smaž
Stáhni na plochu ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Před použitím vypni všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
-Zavři všechna aktivní okna a spusť ho pod učtem s právy administrátora
- Po spuštění se zobrazí podmínky použití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování, se vytvoří log C:\ComboFix.txt, zkopíruj celý jeho obsah sem.
Stáhni na plochu ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Před použitím vypni všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
-Zavři všechna aktivní okna a spusť ho pod učtem s právy administrátora
- Po spuštění se zobrazí podmínky použití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování, se vytvoří log C:\ComboFix.txt, zkopíruj celý jeho obsah sem.
Re: Prosím o kontrolu logu-zpomalené PC
ComboFix 10-08-04.04 - Lukáš 04.08.2010 22:39:01.1.1 - x86
Spuštěný z: d:\documents and settings\Lukáš\Dokumenty\Stažené soubory\ComboFix.exe
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
d:\windows\system32\Cache
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-07-04 do 2010-08-04 )))))))))))))))))))))))))))))))
.
2010-08-04 20:23 . 2010-08-04 20:23 -------- d-----w- d:\program files\DVDCover+
2010-08-04 19:38 . 2010-04-29 13:39 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-08-04 19:38 . 2010-08-04 19:38 -------- d-----w- d:\program files\Malwarebytes' Anti-Malware
2010-08-04 19:38 . 2010-04-29 13:39 20952 ----a-w- d:\windows\system32\drivers\mbam.sys
2010-08-04 19:17 . 2010-08-04 19:17 -------- d-----w- D:\rsit
2010-08-04 19:16 . 2010-08-04 19:16 -------- d-----w- d:\program files\CCleaner
2010-08-04 18:58 . 2010-08-04 19:17 -------- d-----w- d:\program files\Trend Micro
2010-08-03 18:37 . 2010-08-03 18:37 -------- d-----w- d:\program files\OpenOffice.org 3
2010-08-03 18:34 . 2010-08-03 18:34 -------- d-----w- d:\program files\Common Files\Adobe
2010-08-03 14:16 . 2001-10-24 07:54 12160 ----a-w- d:\windows\system32\drivers\mouhid.sys
2010-08-03 14:15 . 2008-04-13 21:15 10368 ----a-w- d:\windows\system32\drivers\hidusb.sys
2010-08-03 13:19 . 2005-11-01 08:35 28672 ----a-r- d:\windows\system32\VModes.exe
2010-08-03 13:19 . 2010-08-03 13:19 -------- d-----w- d:\program files\S3
2010-08-03 12:24 . 2010-08-03 12:24 -------- d-----w- d:\program files\Rockstar Games
2010-08-03 11:05 . 2010-08-03 11:05 -------- d-----w- d:\program files\xp-AntiSpy
2010-08-03 10:47 . 2010-08-04 20:27 -------- d-----w- d:\program files\WinClamAVShield
2010-08-03 10:44 . 2010-08-03 10:44 142592 ----a-w- d:\windows\system32\drivers\sp_rsdrv2.sys
2010-08-03 10:44 . 2010-08-04 19:03 -------- d-----w- d:\program files\Spyware Terminator
2010-08-03 10:30 . 2010-08-03 10:30 56 ---ha-w- d:\windows\system32\ezsidmv.dat
2010-08-03 10:29 . 2010-08-03 10:29 -------- d-----w- d:\program files\Common Files\Skype
2010-08-03 10:28 . 2010-08-03 10:29 -------- d-----r- d:\program files\Skype
2010-08-03 07:55 . 2008-04-13 14:39 5504 ----a-w- d:\windows\system32\drivers\MSTEE.sys
2010-08-03 07:55 . 2008-04-13 14:46 10880 ----a-w- d:\windows\system32\drivers\NdisIP.sys
2010-08-03 07:55 . 2008-04-13 18:46 15232 ----a-w- d:\windows\system32\drivers\StreamIP.sys
2010-08-03 07:54 . 2008-04-13 18:46 11136 ----a-w- d:\windows\system32\drivers\SLIP.sys
2010-08-03 07:54 . 2008-04-13 14:46 19200 ----a-w- d:\windows\system32\drivers\WSTCODEC.SYS
2010-08-03 07:54 . 2008-04-13 14:46 85248 ----a-w- d:\windows\system32\drivers\NABTSFEC.sys
2010-08-03 07:54 . 2010-08-03 07:54 691696 ----a-w- d:\windows\system32\drivers\sptd.sys
2010-08-03 07:54 . 2008-04-13 14:46 17024 ----a-w- d:\windows\system32\drivers\CCDECODE.sys
2010-08-03 07:54 . 2010-08-03 07:54 -------- d-----w- d:\program files\DAEMON Tools Lite
2010-08-03 07:50 . 2008-04-13 23:22 57856 ----a-w- d:\windows\system32\vfwwdm32.dll
2010-08-03 07:50 . 2008-04-13 14:46 121984 ----a-w- d:\windows\system32\drivers\usbvideo.sys
2010-08-03 07:45 . 2008-04-13 18:45 32128 ----a-w- d:\windows\system32\drivers\usbccgp.sys
2010-08-03 07:35 . 2007-03-12 12:12 3495784 ----a-w- d:\windows\system32\d3dx9_33.dll
2010-08-03 07:31 . 2010-08-03 07:31 -------- d-----w- d:\windows\Logs
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-03 13:27 . 2001-10-25 15:00 71734 ----a-w- d:\windows\system32\perfc005.dat
2010-08-03 13:27 . 2001-10-25 15:00 414806 ----a-w- d:\windows\system32\perfh005.dat
2010-08-03 13:19 . 2005-01-13 11:59 -------- d--h--w- d:\program files\InstallShield Installation Information
2010-08-03 13:19 . 2005-01-13 11:58 53248 ----a-w- d:\windows\system32\VTTimer.exe
2010-08-03 13:19 . 2005-01-13 11:58 176128 ----a-w- d:\windows\system32\VTTrayp.exe
2010-08-03 13:19 . 2005-01-13 11:58 544768 ----a-w- d:\windows\system32\VTovrlay.dll
2010-08-03 13:19 . 2005-01-13 11:58 327680 ----a-w- d:\windows\system32\VTInfo2.dll
2010-08-03 13:19 . 2005-01-13 11:58 283904 ----a-w- d:\windows\system32\drivers\vtmini.sys
2010-08-03 13:19 . 2005-01-13 11:58 1900544 ----a-w- d:\windows\system32\vticd.dll
2010-08-03 13:19 . 2005-01-13 11:58 462848 ----a-w- d:\windows\system32\VTGamma2.dll
2010-08-03 13:19 . 2005-01-13 11:58 647168 ----a-w- d:\windows\system32\VTDisply.dll
2010-08-03 13:19 . 2005-01-13 11:58 3565440 ----a-w- d:\windows\system32\vtdisp.dll
2010-08-03 12:24 . 2005-01-13 11:58 -------- d-----w- d:\program files\Common Files\InstallShield
2010-08-03 11:19 . 2005-01-13 11:33 -------- d-----w- d:\program files\Alky for Applications
2010-07-09 08:48 . 2005-01-13 11:53 20328 ----a-w- d:\windows\system32\drivers\cpuz134_x32.sys
2010-06-28 20:57 . 2005-01-13 11:49 38848 ----a-w- d:\windows\avastSS.scr
2010-06-28 20:57 . 2005-01-13 11:49 165032 ----a-w- d:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2005-01-13 11:49 46672 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2005-01-13 11:49 165456 ----a-w- d:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2005-01-13 11:49 23376 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2005-01-13 11:49 100176 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2005-01-13 11:49 94544 ----a-w- d:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2005-01-13 11:49 17744 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2005-01-13 11:49 28880 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2010-06-02 00:25 . 2010-08-03 07:36 74072 ----a-w- d:\windows\system32\XAPOFX1_5.dll
2010-06-02 00:25 . 2010-08-03 07:36 527192 ----a-w- d:\windows\system32\XAudio2_7.dll
2010-06-02 00:25 . 2010-08-03 07:36 239960 ----a-w- d:\windows\system32\xactengine3_7.dll
2010-05-26 07:11 . 2010-08-03 07:36 2106216 ----a-w- d:\windows\system32\D3DCompiler_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 1868128 ----a-w- d:\windows\system32\d3dcsx_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 470880 ----a-w- d:\windows\system32\d3dx10_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 248672 ----a-w- d:\windows\system32\d3dx11_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 1998168 ----a-w- d:\windows\system32\D3DX9_43.dll
.
------- Sigcheck -------
[-] 2008-10-19 . 12A799AD9415AE9C8ABCC5F75E9CF034 . 557056 . . [5.1.2600.5512] . . d:\windows\system32\winlogon.exe
[-] 2008-10-19 . 3AC5A6BB0491CADA4F424978ECCD9A29 . 678400 . . [5.82] . . d:\windows\system32\comctl32.dll
[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3GDR\ntoskrnl.exe
[-] 2010-02-16 . F24D47F956B2527F8771E38AFE750743 . 2183552 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2GDR\ntoskrnl.exe
[-] 2010-02-16 . AEDD2FE6BEC6FB4E3B25DB1E15C97560 . 2189056 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2QFE\ntoskrnl.exe
[-] 2010-02-16 . 6B2312D847BA95F4E858CB4C3B5F51E1 . 2192256 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3QFE\ntoskrnl.exe
[-] 2009-02-10 . 97480EBFE1D4B547657BAD75AAAB1325 . 2191360 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntoskrnl.exe
[-] 2009-02-09 . DF530FCAD41349C92945DF52EBA9F3E4 . 2182656 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntoskrnl.exe
[-] 2009-02-09 . C424407DDD99223BF3248044CBBE91F6 . 2188288 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 . F48662F55CD8DDD4DBBBCB69DE197725 . 2191232 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntoskrnl.exe
[-] 2008-10-19 . 2A3930BDD50BEA50CA5D6CE3D0EA4F94 . 2352384 . . [5.1.2600.5657] . . d:\windows\system32\ntoskrnl.exe
[-] 2008-10-19 . CCB32D10C69A89822E9134C0C4894BE1 . 578560 . . [5.1.2600.5512] . . d:\windows\system32\user32.dll
[-] 2008-10-19 . DD7E25E20AEBD672DAE7E1D911C2D824 . 1589760 . . [6.00.2900.5512] . . d:\windows\explorer.exe
[-] 2008-11-05 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . d:\windows\system32\sfcfiles.dll
[-] 2008-10-19 . 0AB43CE7EFFAD6B4914AE3C1B489AAA1 . 66560 . . [5.1.2600.5512] . . d:\windows\system32\ctfmon.exe
[-] 2010-02-17 . 7F87EDF3C7C626D336533D2580940A00 . 2065920 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2QFE\ntkrnlpa.exe
[-] 2010-02-16 . 27DE458FE1E1A618836ADB61873BC9E8 . 2060544 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2GDR\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3GDR\ntkrnlpa.exe
[-] 2010-02-16 . DCC3D91A3DEDBBA9ECFFA6028D872CF5 . 2069120 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3QFE\ntkrnlpa.exe
[-] 2009-02-10 . D721665942F74CA7FF4162A0761CBB0A . 2068224 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntkrnlpa.exe
[-] 2009-02-09 . 73A13AA10E146A3E2B4AC6D007953A74 . 2059904 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntkrnlpa.exe
[-] 2009-02-09 . BB64DC108F8C4EE4D4B7998AA19E5FA7 . 2065152 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntkrnlpa.exe
[-] 2009-02-09 . FF8A3F180A224AA27EBAB937CA027F4D . 2068352 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntkrnlpa.exe
[-] 2008-11-30 . 073FC04264BBE3AC30539D7448FB0419 . 2229248 . . [5.1.2600.5657] . . d:\windows\system32\ntkrnlpa.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="d:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="d:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2008-11-05 77312]
"avast5"="d:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-21 35760]
"Adobe ARM"="d:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"SpywareTerminator"="d:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-08-03 2176512]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-10-19 66560]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoRecentDocsNetHood"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- d:\program files\DAEMON Tools Lite\DTLite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrvIcon]
2007-07-04 20:59 45056 ----a-w- d:\program files\Vista Components\Vista Drive Icon\DrvIcon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
2010-08-03 10:44 2176512 ----a-w- d:\program files\Spyware Terminator\SpywareTerminatorShield.Exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-08-03 10:44 3037696 ----a-w- d:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
2010-08-03 13:19 53248 ----a-w- d:\windows\system32\VTTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
2010-08-03 13:19 176128 ----a-w- d:\windows\system32\VTTrayp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3 (0x3)
"sp_rssrv"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\ICQ7.2\\ICQ.exe"=
"d:\\Program Files\\ICQ7.2\\aolload.exe"=
"d:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
R1 aswSP;aswSP;d:\windows\system32\drivers\aswSP.sys [13.1.2005 13:49 165456]
R1 sp_rsdrv2;Spyware Terminator Driver 2;d:\windows\system32\drivers\sp_rsdrv2.sys [3.8.2010 12:44 142592]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [13.1.2005 13:49 17744]
R2 cpuz134;cpuz134;d:\windows\system32\drivers\cpuz134_x32.sys [13.1.2005 13:53 20328]
S4 sptd;sptd;d:\windows\system32\drivers\sptd.sys [3.8.2010 9:54 691696]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]
2008-10-16 19:33 124928 ----a-w- d:\windows\system32\advpack.dll
.
.
------- Doplňkový sken -------
.
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - d:\program files\CentrumczToolbar\IEToolbar.dll
FF - ProfilePath - d:\documents and settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\fzx24y6n.default\
FF - prefs.js: browser.search.selectedEngine - Centrum.cz Search
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.centrum.cz/index.php?tool ... m-1.0.0&q=
---- NASTAVENÍ FIREFOXU ----
d:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-04 22:42
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(652)
d:\windows\system32\SETUPAPI.dll
d:\windows\system32\cscui.dll
- - - - - - - > 'lsass.exe'(708)
d:\windows\system32\SETUPAPI.dll
- - - - - - - > 'explorer.exe'(2752)
d:\windows\system32\SHDOCVW.dll
d:\windows\system32\COMRes.dll
d:\windows\System32\cscui.dll
d:\windows\system32\msi.dll
d:\windows\system32\SETUPAPI.dll
d:\windows\system32\NETSHELL.dll
d:\windows\system32\credui.dll
d:\windows\system32\MSVCP60.dll
d:\windows\system32\WPDShServiceObj.dll
d:\windows\system32\PortableDeviceTypes.dll
d:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-08-04 22:44:29
ComboFix-quarantined-files.txt 2010-08-04 20:44
Před spuštěním: Volných bajtů: 29 833 764 864
Po spuštění: Volných bajtů: 30 157 246 464
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - 191BF04573D3DC9D6AB456C61EDF26AE
Spuštěný z: d:\documents and settings\Lukáš\Dokumenty\Stažené soubory\ComboFix.exe
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
d:\windows\system32\Cache
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-07-04 do 2010-08-04 )))))))))))))))))))))))))))))))
.
2010-08-04 20:23 . 2010-08-04 20:23 -------- d-----w- d:\program files\DVDCover+
2010-08-04 19:38 . 2010-04-29 13:39 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-08-04 19:38 . 2010-08-04 19:38 -------- d-----w- d:\program files\Malwarebytes' Anti-Malware
2010-08-04 19:38 . 2010-04-29 13:39 20952 ----a-w- d:\windows\system32\drivers\mbam.sys
2010-08-04 19:17 . 2010-08-04 19:17 -------- d-----w- D:\rsit
2010-08-04 19:16 . 2010-08-04 19:16 -------- d-----w- d:\program files\CCleaner
2010-08-04 18:58 . 2010-08-04 19:17 -------- d-----w- d:\program files\Trend Micro
2010-08-03 18:37 . 2010-08-03 18:37 -------- d-----w- d:\program files\OpenOffice.org 3
2010-08-03 18:34 . 2010-08-03 18:34 -------- d-----w- d:\program files\Common Files\Adobe
2010-08-03 14:16 . 2001-10-24 07:54 12160 ----a-w- d:\windows\system32\drivers\mouhid.sys
2010-08-03 14:15 . 2008-04-13 21:15 10368 ----a-w- d:\windows\system32\drivers\hidusb.sys
2010-08-03 13:19 . 2005-11-01 08:35 28672 ----a-r- d:\windows\system32\VModes.exe
2010-08-03 13:19 . 2010-08-03 13:19 -------- d-----w- d:\program files\S3
2010-08-03 12:24 . 2010-08-03 12:24 -------- d-----w- d:\program files\Rockstar Games
2010-08-03 11:05 . 2010-08-03 11:05 -------- d-----w- d:\program files\xp-AntiSpy
2010-08-03 10:47 . 2010-08-04 20:27 -------- d-----w- d:\program files\WinClamAVShield
2010-08-03 10:44 . 2010-08-03 10:44 142592 ----a-w- d:\windows\system32\drivers\sp_rsdrv2.sys
2010-08-03 10:44 . 2010-08-04 19:03 -------- d-----w- d:\program files\Spyware Terminator
2010-08-03 10:30 . 2010-08-03 10:30 56 ---ha-w- d:\windows\system32\ezsidmv.dat
2010-08-03 10:29 . 2010-08-03 10:29 -------- d-----w- d:\program files\Common Files\Skype
2010-08-03 10:28 . 2010-08-03 10:29 -------- d-----r- d:\program files\Skype
2010-08-03 07:55 . 2008-04-13 14:39 5504 ----a-w- d:\windows\system32\drivers\MSTEE.sys
2010-08-03 07:55 . 2008-04-13 14:46 10880 ----a-w- d:\windows\system32\drivers\NdisIP.sys
2010-08-03 07:55 . 2008-04-13 18:46 15232 ----a-w- d:\windows\system32\drivers\StreamIP.sys
2010-08-03 07:54 . 2008-04-13 18:46 11136 ----a-w- d:\windows\system32\drivers\SLIP.sys
2010-08-03 07:54 . 2008-04-13 14:46 19200 ----a-w- d:\windows\system32\drivers\WSTCODEC.SYS
2010-08-03 07:54 . 2008-04-13 14:46 85248 ----a-w- d:\windows\system32\drivers\NABTSFEC.sys
2010-08-03 07:54 . 2010-08-03 07:54 691696 ----a-w- d:\windows\system32\drivers\sptd.sys
2010-08-03 07:54 . 2008-04-13 14:46 17024 ----a-w- d:\windows\system32\drivers\CCDECODE.sys
2010-08-03 07:54 . 2010-08-03 07:54 -------- d-----w- d:\program files\DAEMON Tools Lite
2010-08-03 07:50 . 2008-04-13 23:22 57856 ----a-w- d:\windows\system32\vfwwdm32.dll
2010-08-03 07:50 . 2008-04-13 14:46 121984 ----a-w- d:\windows\system32\drivers\usbvideo.sys
2010-08-03 07:45 . 2008-04-13 18:45 32128 ----a-w- d:\windows\system32\drivers\usbccgp.sys
2010-08-03 07:35 . 2007-03-12 12:12 3495784 ----a-w- d:\windows\system32\d3dx9_33.dll
2010-08-03 07:31 . 2010-08-03 07:31 -------- d-----w- d:\windows\Logs
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-03 13:27 . 2001-10-25 15:00 71734 ----a-w- d:\windows\system32\perfc005.dat
2010-08-03 13:27 . 2001-10-25 15:00 414806 ----a-w- d:\windows\system32\perfh005.dat
2010-08-03 13:19 . 2005-01-13 11:59 -------- d--h--w- d:\program files\InstallShield Installation Information
2010-08-03 13:19 . 2005-01-13 11:58 53248 ----a-w- d:\windows\system32\VTTimer.exe
2010-08-03 13:19 . 2005-01-13 11:58 176128 ----a-w- d:\windows\system32\VTTrayp.exe
2010-08-03 13:19 . 2005-01-13 11:58 544768 ----a-w- d:\windows\system32\VTovrlay.dll
2010-08-03 13:19 . 2005-01-13 11:58 327680 ----a-w- d:\windows\system32\VTInfo2.dll
2010-08-03 13:19 . 2005-01-13 11:58 283904 ----a-w- d:\windows\system32\drivers\vtmini.sys
2010-08-03 13:19 . 2005-01-13 11:58 1900544 ----a-w- d:\windows\system32\vticd.dll
2010-08-03 13:19 . 2005-01-13 11:58 462848 ----a-w- d:\windows\system32\VTGamma2.dll
2010-08-03 13:19 . 2005-01-13 11:58 647168 ----a-w- d:\windows\system32\VTDisply.dll
2010-08-03 13:19 . 2005-01-13 11:58 3565440 ----a-w- d:\windows\system32\vtdisp.dll
2010-08-03 12:24 . 2005-01-13 11:58 -------- d-----w- d:\program files\Common Files\InstallShield
2010-08-03 11:19 . 2005-01-13 11:33 -------- d-----w- d:\program files\Alky for Applications
2010-07-09 08:48 . 2005-01-13 11:53 20328 ----a-w- d:\windows\system32\drivers\cpuz134_x32.sys
2010-06-28 20:57 . 2005-01-13 11:49 38848 ----a-w- d:\windows\avastSS.scr
2010-06-28 20:57 . 2005-01-13 11:49 165032 ----a-w- d:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2005-01-13 11:49 46672 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2005-01-13 11:49 165456 ----a-w- d:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2005-01-13 11:49 23376 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2005-01-13 11:49 100176 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2005-01-13 11:49 94544 ----a-w- d:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2005-01-13 11:49 17744 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2005-01-13 11:49 28880 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2010-06-02 00:25 . 2010-08-03 07:36 74072 ----a-w- d:\windows\system32\XAPOFX1_5.dll
2010-06-02 00:25 . 2010-08-03 07:36 527192 ----a-w- d:\windows\system32\XAudio2_7.dll
2010-06-02 00:25 . 2010-08-03 07:36 239960 ----a-w- d:\windows\system32\xactengine3_7.dll
2010-05-26 07:11 . 2010-08-03 07:36 2106216 ----a-w- d:\windows\system32\D3DCompiler_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 1868128 ----a-w- d:\windows\system32\d3dcsx_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 470880 ----a-w- d:\windows\system32\d3dx10_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 248672 ----a-w- d:\windows\system32\d3dx11_43.dll
2010-05-26 07:11 . 2010-08-03 07:36 1998168 ----a-w- d:\windows\system32\D3DX9_43.dll
.
------- Sigcheck -------
[-] 2008-10-19 . 12A799AD9415AE9C8ABCC5F75E9CF034 . 557056 . . [5.1.2600.5512] . . d:\windows\system32\winlogon.exe
[-] 2008-10-19 . 3AC5A6BB0491CADA4F424978ECCD9A29 . 678400 . . [5.82] . . d:\windows\system32\comctl32.dll
[-] 2010-02-17 . 4E8268B816B2D27E711A688D6FD0E319 . 2192128 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3GDR\ntoskrnl.exe
[-] 2010-02-16 . F24D47F956B2527F8771E38AFE750743 . 2183552 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2GDR\ntoskrnl.exe
[-] 2010-02-16 . AEDD2FE6BEC6FB4E3B25DB1E15C97560 . 2189056 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2QFE\ntoskrnl.exe
[-] 2010-02-16 . 6B2312D847BA95F4E858CB4C3B5F51E1 . 2192256 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3QFE\ntoskrnl.exe
[-] 2009-02-10 . 97480EBFE1D4B547657BAD75AAAB1325 . 2191360 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntoskrnl.exe
[-] 2009-02-09 . DF530FCAD41349C92945DF52EBA9F3E4 . 2182656 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntoskrnl.exe
[-] 2009-02-09 . C424407DDD99223BF3248044CBBE91F6 . 2188288 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 . F48662F55CD8DDD4DBBBCB69DE197725 . 2191232 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntoskrnl.exe
[-] 2008-10-19 . 2A3930BDD50BEA50CA5D6CE3D0EA4F94 . 2352384 . . [5.1.2600.5657] . . d:\windows\system32\ntoskrnl.exe
[-] 2008-10-19 . CCB32D10C69A89822E9134C0C4894BE1 . 578560 . . [5.1.2600.5512] . . d:\windows\system32\user32.dll
[-] 2008-10-19 . DD7E25E20AEBD672DAE7E1D911C2D824 . 1589760 . . [6.00.2900.5512] . . d:\windows\explorer.exe
[-] 2008-11-05 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . d:\windows\system32\sfcfiles.dll
[-] 2008-10-19 . 0AB43CE7EFFAD6B4914AE3C1B489AAA1 . 66560 . . [5.1.2600.5512] . . d:\windows\system32\ctfmon.exe
[-] 2010-02-17 . 7F87EDF3C7C626D336533D2580940A00 . 2065920 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2QFE\ntkrnlpa.exe
[-] 2010-02-16 . 27DE458FE1E1A618836ADB61873BC9E8 . 2060544 . . [5.1.2600.3670] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP2GDR\ntkrnlpa.exe
[-] 2010-02-16 . 6C31566C176BC28C7D73BC6332642A58 . 2068992 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3GDR\ntkrnlpa.exe
[-] 2010-02-16 . DCC3D91A3DEDBBA9ECFFA6028D872CF5 . 2069120 . . [5.1.2600.5938] . . d:\windows\SoftwareDistribution\Download\a05b4bd176175832ba9089ab55da70df\SP3QFE\ntkrnlpa.exe
[-] 2009-02-10 . D721665942F74CA7FF4162A0761CBB0A . 2068224 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3GDR\ntkrnlpa.exe
[-] 2009-02-09 . 73A13AA10E146A3E2B4AC6D007953A74 . 2059904 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2GDR\ntkrnlpa.exe
[-] 2009-02-09 . BB64DC108F8C4EE4D4B7998AA19E5FA7 . 2065152 . . [5.1.2600.3520] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP2QFE\ntkrnlpa.exe
[-] 2009-02-09 . FF8A3F180A224AA27EBAB937CA027F4D . 2068352 . . [5.1.2600.5755] . . d:\windows\SoftwareDistribution\Download\3600e56e45ad54d0df91c2e4c0249f5a\SP3QFE\ntkrnlpa.exe
[-] 2008-11-30 . 073FC04264BBE3AC30539D7448FB0419 . 2229248 . . [5.1.2600.5657] . . d:\windows\system32\ntkrnlpa.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="d:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-08-03 3037696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="d:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2008-11-05 77312]
"avast5"="d:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-21 35760]
"Adobe ARM"="d:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"SpywareTerminator"="d:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-08-03 2176512]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-10-19 66560]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoRecentDocsNetHood"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- d:\program files\DAEMON Tools Lite\DTLite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrvIcon]
2007-07-04 20:59 45056 ----a-w- d:\program files\Vista Components\Vista Drive Icon\DrvIcon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
2010-08-03 10:44 2176512 ----a-w- d:\program files\Spyware Terminator\SpywareTerminatorShield.Exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-08-03 10:44 3037696 ----a-w- d:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
2010-08-03 13:19 53248 ----a-w- d:\windows\system32\VTTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
2010-08-03 13:19 176128 ----a-w- d:\windows\system32\VTTrayp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3 (0x3)
"sp_rssrv"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\ICQ7.2\\ICQ.exe"=
"d:\\Program Files\\ICQ7.2\\aolload.exe"=
"d:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
R1 aswSP;aswSP;d:\windows\system32\drivers\aswSP.sys [13.1.2005 13:49 165456]
R1 sp_rsdrv2;Spyware Terminator Driver 2;d:\windows\system32\drivers\sp_rsdrv2.sys [3.8.2010 12:44 142592]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [13.1.2005 13:49 17744]
R2 cpuz134;cpuz134;d:\windows\system32\drivers\cpuz134_x32.sys [13.1.2005 13:53 20328]
S4 sptd;sptd;d:\windows\system32\drivers\sptd.sys [3.8.2010 9:54 691696]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]
2008-10-16 19:33 124928 ----a-w- d:\windows\system32\advpack.dll
.
.
------- Doplňkový sken -------
.
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - d:\program files\CentrumczToolbar\IEToolbar.dll
FF - ProfilePath - d:\documents and settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\fzx24y6n.default\
FF - prefs.js: browser.search.selectedEngine - Centrum.cz Search
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.centrum.cz/index.php?tool ... m-1.0.0&q=
---- NASTAVENÍ FIREFOXU ----
d:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-04 22:42
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(652)
d:\windows\system32\SETUPAPI.dll
d:\windows\system32\cscui.dll
- - - - - - - > 'lsass.exe'(708)
d:\windows\system32\SETUPAPI.dll
- - - - - - - > 'explorer.exe'(2752)
d:\windows\system32\SHDOCVW.dll
d:\windows\system32\COMRes.dll
d:\windows\System32\cscui.dll
d:\windows\system32\msi.dll
d:\windows\system32\SETUPAPI.dll
d:\windows\system32\NETSHELL.dll
d:\windows\system32\credui.dll
d:\windows\system32\MSVCP60.dll
d:\windows\system32\WPDShServiceObj.dll
d:\windows\system32\PortableDeviceTypes.dll
d:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-08-04 22:44:29
ComboFix-quarantined-files.txt 2010-08-04 20:44
Před spuštěním: Volných bajtů: 29 833 764 864
Po spuštění: Volných bajtů: 30 157 246 464
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - 191BF04573D3DC9D6AB456C61EDF26AE
Re: Prosím o kontrolu logu-zpomalené PC
Otestuj na http://www.virustotal.com
d:\windows\system32\winlogon.exe
d:\windows\system32\comctl32.dll
d:\windows\system32\ntkrnlpa.exe
d:\windows\system32\ctfmon.exe
d:\windows\system32\ntoskrnl.exe
d:\windows\system32\user32.dll
d:\windows\explorer.exe
d:\windows\system32\sfcfiles.dll
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
d:\windows\system32\winlogon.exe
d:\windows\system32\comctl32.dll
d:\windows\system32\ntkrnlpa.exe
d:\windows\system32\ctfmon.exe
d:\windows\system32\ntoskrnl.exe
d:\windows\system32\user32.dll
d:\windows\explorer.exe
d:\windows\system32\sfcfiles.dll
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 109 hostů