Dobrý den mohl bych požádat prosím o kontrolu logu
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:40:04, on 11.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\WINNT\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4573 bytes
děkuji
Prosím o kontrolu logu Vyřešeno
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Ahoj,
Co máš za problémy s počítačem?
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
**********************
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
*********************
Stahni Mbam http://download.cnet.com/3001-8022_4-10 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
Co máš za problémy s počítačem?
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
**********************
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
*********************
Stahni Mbam http://download.cnet.com/3001-8022_4-10 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Děkuji bohužel můj počítač díky tomu že mám windows 2000 profesional nepodporuje Mban proto jsem se u tohoto bodu zasekl.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:26:13, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4630 bytes
Tady je můj log po použití C ceaneru jak jste doporučil.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:26:13, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4630 bytes
Tady je můj log po použití C ceaneru jak jste doporučil.
Re: Prosím o kontrolu logu
Zkus udělat ten rsit, ten by měl jít
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Rsit mi napsal
Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-12 13:12:20
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 10 GB (54%) free of 19 GB
Total RAM: 254 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:31, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\System32\browseui.dll
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4856 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\1-Click Maintenance.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Rádio - C:\WINNT\system32\msdxm.ocx [2005-06-03 849168]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINNT\System32\igfxtray.exe [2001-10-12 143360]
"PROMon.exe"=C:\WINNT\system32\PROMon.exe [2002-04-18 73728]
"HotKeysCmds"=C:\WINNT\System32\hkcmd.exe [2001-10-12 90112]
"Synchronization Manager"=mobsync.exe /logon []
"NPSStartup"= []
"ShowWnd"=C:\WINNT\ShowWnd.exe [2003-09-18 36864]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [2001-02-12 65588]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TL-WN321G Wireless Utility.lnk - C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\nwprovau]
C:\WINNT\system32\nwprovau.dll [2006-09-01 140048]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2010-08-12 10:24:24 ----D---- C:\Program Files\trend micro
2010-08-12 10:24:23 ----D---- C:\rsit
2010-08-11 23:17:58 ----D---- C:\WINNT\pss
2010-08-11 18:47:50 ----A---- C:\WINNT\system32\hidserv.exe
2010-08-11 13:33:31 ----A---- C:\WINNT\system32\drivers\USBAUDIO.sys
2010-08-08 03:36:14 ----A---- C:\WINNT\system32\drivers\AegisP.sys
2010-08-08 03:36:10 ----D---- C:\Program Files\TP-LINK
2010-08-08 03:35:41 ----A---- C:\WINNT\system32\drivers\rt73.sys
2010-08-08 03:35:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK Driver
2010-08-04 18:59:09 ----A---- C:\WINNT\zHotkey.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\ShowWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\PIC.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\PatchWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\HKNTDLL.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\HIDMNT.dll
2010-08-04 18:58:45 ----D---- C:\Documents and Settings\Administrator\Data aplikací\InstallShield
2010-08-02 23:54:38 ----D---- C:\Program Files\Conduit
2010-07-30 16:57:00 ----D---- C:\Program Files\Valve
2010-07-30 03:07:58 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Ventrilo
2010-07-29 22:35:48 ----D---- C:\Asphalt_4
2010-07-29 20:19:17 ----D---- C:\WINNT\PCHEALTH
2010-07-29 04:56:23 ----D---- C:\Program Files\TrackMania Nations ESWC
2010-07-27 22:14:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2010-07-27 22:14:26 ----D---- C:\Documents and Settings\Administrator\Data aplikací\PC Suite
2010-07-27 21:39:39 ----A---- C:\WINNT\system32\mp43dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mpg4dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mp4sdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmvdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmspdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmsdmod.dll
2010-07-27 21:39:36 ----A---- C:\WINNT\system32\wmadmod.dll
2010-07-27 21:39:35 ----A---- C:\WINNT\system32\wmvdmoe2.dll
2010-07-27 21:39:34 ----A---- C:\WINNT\system32\wmspdmoe.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmsdmoe2.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmadmoe.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmnetmgr.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmidx.dll
2010-07-27 21:39:29 ----A---- C:\WINNT\system32\wmvcore.dll
2010-07-27 21:39:28 ----A---- C:\WINNT\system32\wmasf.dll
2010-07-27 21:39:26 ----A---- C:\WINNT\system32\msnetobj.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmv2clt.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmstor.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\blackbox.dll
2010-07-27 21:39:24 ----A---- C:\WINNT\system32\drmclien.dll
2010-07-27 21:38:34 ----A---- C:\WINNT\system32\nmwcdcls.dll
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcmnt.sys
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwhnt.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwh.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdfl.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bbus.sys
2010-07-27 21:36:50 ----D---- C:\WINNT\system32\Samsung_USB_Drivers
2010-07-27 21:36:47 ----D---- C:\Program Files\DIFX
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExService.Exe
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDisk.Sys
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDevice.Dll
2010-07-27 21:35:25 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Samsung
2010-07-27 21:34:23 ----D---- C:\Program Files\MarkAny
2010-07-27 21:34:20 ----D---- C:\Program Files\PC Connectivity Solution
2010-07-27 21:32:46 ----D---- C:\Program Files\Samsung
2010-07-27 21:31:54 ----A---- C:\WINNT\system32\sqlsrv32.dll
2010-07-27 21:31:53 ----A---- C:\WINNT\system32\odbcbcp.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsvinn.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsrpcn.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\sqlunirl.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsgnet.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsadsn.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnmpntw.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnetlib.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.exe
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.dll
2010-07-27 21:31:29 ----A---- C:\WINNT\system32\msxml3r.dll
2010-07-27 21:31:28 ----A---- C:\WINNT\system32\msxml3.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\msorc32r.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\mscpxl32.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\ds16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\odbc16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\msorcl32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccr32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccp32.dll
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbcad32.exe
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbc32gt.dll
2010-07-27 21:29:29 ----A---- C:\WINNT\system32\odbc32.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\odbctrac.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\msdart.dll
2010-07-27 21:29:24 ----A---- C:\WINNT\system32\odbcint.dll
2010-07-27 21:29:23 ----A---- C:\WINNT\system32\odbccu32.dll
2010-07-27 21:29:22 ----A---- C:\WINNT\system32\ds32gt.dll
2010-07-27 21:19:19 ----D---- C:\Program Files\Common Files\Adobe
======List of files/folders modified in the last 1 months======
2010-08-12 11:10:48 ----AD---- C:\WINNT\security
2010-08-12 10:24:24 ----RAD---- C:\Program Files
2010-08-12 10:24:24 ----AD---- C:\WINNT\system32
2010-08-12 09:48:28 ----AD---- C:\WINNT
2010-08-12 09:48:26 ----D---- C:\WINNT\system32\LogFiles
2010-08-12 09:38:43 ----D---- C:\WINNT\system32\NtmsData
2010-08-12 09:37:51 ----AD---- C:\WINNT\Debug
2010-08-12 00:39:35 ----N---- C:\WINNT\SchedLgU.Txt
2010-08-12 00:33:45 ----AD---- C:\Documents and Settings
2010-08-11 23:27:51 ----D---- C:\WINNT\Minidump
2010-08-11 23:27:50 ----AD---- C:\WINNT\Temp
2010-08-11 19:36:37 ----AD---- C:\WINNT\system32\appmgmt
2010-08-11 18:47:57 ----RASHDC---- C:\WINNT\system32\dllcache
2010-08-11 14:13:43 ----HD---- C:\WINNT\inf
2010-08-11 13:33:31 ----AD---- C:\WINNT\system32\drivers
2010-08-11 01:59:57 ----SHD---- C:\WINNT\CSC
2010-08-11 01:28:54 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-09 13:36:13 ----ASD---- C:\WINNT\Tasks
2010-08-08 21:01:32 ----SHD---- C:\WINNT\Installer
2010-08-08 21:01:28 ----D---- C:\Program Files\Outlook Express
2010-08-08 21:01:28 ----D---- C:\Program Files\Common Files\System
2010-08-08 20:40:04 ----A---- C:\WINNT\win.ini
2010-08-08 20:33:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-08-08 05:02:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-08 04:57:16 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-08-08 04:00:24 ----D---- C:\Program Files\Mozilla Firefox
2010-08-08 03:59:21 ----D---- C:\Program Files\AskBarDis
2010-08-08 03:54:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-08-08 03:51:55 ----D---- C:\Program Files\Internet Explorer
2010-08-08 03:35:41 ----DC---- C:\WINNT\system32\DRVSTORE
2010-08-08 03:35:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-29 20:31:32 ----RSD---- C:\WINNT\assembly
2010-07-29 20:31:32 ----D---- C:\WINNT\Microsoft.NET
2010-07-29 20:27:51 ----A---- C:\WINNT\system32\PerfStringBackup.INI
2010-07-29 20:22:49 ----D---- C:\WINNT\Registration
2010-07-29 20:19:40 ----AD---- C:\WINNT\system32\wbem
2010-07-29 20:19:40 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2010-07-29 20:19:38 ----D---- C:\WINNT\winsxs
2010-07-27 21:39:24 ----D---- C:\Program Files\Windows Media Player
2010-07-27 21:32:21 ----HD---- C:\Program Files\Uninstall Information
2010-07-27 21:32:13 ----D---- C:\WINNT\RegisteredPackages
2010-07-27 21:32:03 ----A---- C:\WINNT\ODBC.INI
2010-07-27 21:31:57 ----A---- C:\WINNT\ODBCINST.INI
2010-07-27 21:29:36 ----AD---- C:\WINNT\Help
2010-07-27 21:19:19 ----AD---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\System32\DRIVERS\ACPI.sys [2003-06-19 163152]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\System32\DRIVERS\atapi.sys [2003-06-19 86672]
R0 Disk;Ovladač disku; C:\WINNT\System32\DRIVERS\disk.sys [2003-06-19 30768]
R0 Diskperf;Diskperf; C:\WINNT\system32\drivers\Diskperf.sys [2003-06-19 7728]
R0 dmio;Ovladač správce logických disků; C:\WINNT\System32\drivers\dmio.sys [2003-06-19 137936]
R0 dmload;dmload; C:\WINNT\System32\drivers\dmload.sys [2003-06-19 7312]
R0 FltMgr;FltMgr; C:\WINNT\system32\drivers\fltmgr.sys [2006-08-22 136912]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\System32\DRIVERS\ftdisk.sys [2005-06-03 116528]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\System32\DRIVERS\isapnp.sys [2003-06-19 46992]
R0 KSecDD;KSecDD; C:\WINNT\system32\drivers\KSecDD.sys [2003-09-20 71888]
R0 MountMgr;MountMgr; C:\WINNT\system32\drivers\MountMgr.sys [2005-08-16 30160]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\system32\drivers\Mup.sys [2004-12-02 89328]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\system32\drivers\NDIS.sys [2003-06-19 170928]
R0 PartMgr;PartMgr; C:\WINNT\system32\drivers\PartMgr.sys [2003-06-19 11792]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\System32\DRIVERS\pci.sys [2003-06-19 59888]
R0 sptd;sptd; C:\WINNT\System32\Drivers\sptd.sys [2010-07-04 691696]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINNT\system32\DRIVERS\AegisP.sys [2010-08-08 19969]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\System32\DRIVERS\hidusb.sys [1999-10-05 13904]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINNT\System32\DRIVERS\nwlnkipx.sys [2003-06-19 91408]
R2 NwlnkNb;NWLink NetBIOS; C:\WINNT\System32\DRIVERS\nwlnknb.sys [2003-06-19 65520]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINNT\System32\DRIVERS\nwlnkspx.sys [2000-03-20 58480]
R3 aeaudio;aeaudio; C:\WINNT\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINNT\System32\DRIVERS\e100bnt5.sys [2002-02-25 139536]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINNT\system32\FsUsbExDisk.SYS []
R3 i81x;i81x; C:\WINNT\System32\DRIVERS\i81xnt5.sys [2001-10-30 159772]
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\System32\DRIVERS\mouhid.sys [2003-06-19 11632]
R3 NMSCFG;NIC Management Service Configuration Driver; \??\C:\WINNT\system32\drivers\NMSCFG.SYS []
R3 NWRDR;NetWare Rdr; C:\WINNT\System32\DRIVERS\nwrdr.sys [2006-09-01 161520]
R3 RT73;TL-WN321G USB Wireless Adapter; C:\WINNT\system32\DRIVERS\rt73.sys [2008-10-21 465152]
R3 smwdm;smwdm; C:\WINNT\system32\drivers\smwdm.sys [2002-04-11 466568]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\System32\DRIVERS\uhcd.sys [2003-06-19 32848]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\System32\DRIVERS\usbhub.sys [2003-06-19 40176]
S0 Lbd;Lbd; C:\WINNT\system32\DRIVERS\Lbd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINNT\System32\DRIVERS\kbdhid.sys [2000-03-08 13744]
S3 ah5v09v0;ah5v09v0; C:\WINNT\system32\drivers\ah5v09v0.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINNT\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 ichaud;Služba pro ovladač AC'97 (WDM); C:\WINNT\system32\drivers\ichaud.sys [1999-10-22 32592]
S3 MPE;BDA MPE Filter; C:\WINNT\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 N100;Compaq Ethernet or Fast Ethernet NIC NT Driver; C:\WINNT\System32\DRIVERS\n100nt5.sys [2000-03-08 88336]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 ne2000;Novell/Eagle NE2000 Adapter Driver; C:\WINNT\System32\DRIVERS\ne2000.sys [1999-10-01 16016]
S3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\System32\DRIVERS\RTL8139.SYS [1999-09-25 18704]
S3 Secdrv;Secdrv; \??\C:\WINNT\system32\drivers\SECDRV.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINNT\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINNT\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINNT\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINNT\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINNT\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINNT\system32\drivers\usbaudio.sys [1999-10-12 68912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\System32\DRIVERS\USBSTOR.SYS [2003-06-19 21552]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S4 IntelIde;IntelIde; C:\WINNT\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 FsUsbExService;FsUsbExService; C:\WINNT\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 HidServ;HID Input Service; C:\WINNT\system32\hidserv.exe [2003-06-19 19728]
R2 NMSSvc;Intel(R) NMS; C:\WINNT\System32\NMSSvc.exe [2002-05-03 1118208]
R2 NWCWorkstation;Služba Client Service for NetWare; C:\WINNT\System32\services.exe [2005-06-03 92944]
R2 PnkBstrA;PnkBstrA; C:\WINNT\system32\PnkBstrA.exe [2010-06-07 75064]
R2 PnkBstrB;PnkBstrB; C:\WINNT\system32\PnkBstrB.exe [2010-06-17 214816]
S2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe [2009-01-05 69632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINNT\System32\TuneUpDefragService.exe [2008-09-01 306432]
S4 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-12 13:12:20
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 10 GB (54%) free of 19 GB
Total RAM: 254 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:31, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\System32\browseui.dll
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4856 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\1-Click Maintenance.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Rádio - C:\WINNT\system32\msdxm.ocx [2005-06-03 849168]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINNT\System32\igfxtray.exe [2001-10-12 143360]
"PROMon.exe"=C:\WINNT\system32\PROMon.exe [2002-04-18 73728]
"HotKeysCmds"=C:\WINNT\System32\hkcmd.exe [2001-10-12 90112]
"Synchronization Manager"=mobsync.exe /logon []
"NPSStartup"= []
"ShowWnd"=C:\WINNT\ShowWnd.exe [2003-09-18 36864]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [2001-02-12 65588]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TL-WN321G Wireless Utility.lnk - C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\nwprovau]
C:\WINNT\system32\nwprovau.dll [2006-09-01 140048]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2010-08-12 10:24:24 ----D---- C:\Program Files\trend micro
2010-08-12 10:24:23 ----D---- C:\rsit
2010-08-11 23:17:58 ----D---- C:\WINNT\pss
2010-08-11 18:47:50 ----A---- C:\WINNT\system32\hidserv.exe
2010-08-11 13:33:31 ----A---- C:\WINNT\system32\drivers\USBAUDIO.sys
2010-08-08 03:36:14 ----A---- C:\WINNT\system32\drivers\AegisP.sys
2010-08-08 03:36:10 ----D---- C:\Program Files\TP-LINK
2010-08-08 03:35:41 ----A---- C:\WINNT\system32\drivers\rt73.sys
2010-08-08 03:35:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK Driver
2010-08-04 18:59:09 ----A---- C:\WINNT\zHotkey.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\ShowWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\PIC.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\PatchWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\HKNTDLL.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\HIDMNT.dll
2010-08-04 18:58:45 ----D---- C:\Documents and Settings\Administrator\Data aplikací\InstallShield
2010-08-02 23:54:38 ----D---- C:\Program Files\Conduit
2010-07-30 16:57:00 ----D---- C:\Program Files\Valve
2010-07-30 03:07:58 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Ventrilo
2010-07-29 22:35:48 ----D---- C:\Asphalt_4
2010-07-29 20:19:17 ----D---- C:\WINNT\PCHEALTH
2010-07-29 04:56:23 ----D---- C:\Program Files\TrackMania Nations ESWC
2010-07-27 22:14:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2010-07-27 22:14:26 ----D---- C:\Documents and Settings\Administrator\Data aplikací\PC Suite
2010-07-27 21:39:39 ----A---- C:\WINNT\system32\mp43dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mpg4dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mp4sdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmvdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmspdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmsdmod.dll
2010-07-27 21:39:36 ----A---- C:\WINNT\system32\wmadmod.dll
2010-07-27 21:39:35 ----A---- C:\WINNT\system32\wmvdmoe2.dll
2010-07-27 21:39:34 ----A---- C:\WINNT\system32\wmspdmoe.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmsdmoe2.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmadmoe.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmnetmgr.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmidx.dll
2010-07-27 21:39:29 ----A---- C:\WINNT\system32\wmvcore.dll
2010-07-27 21:39:28 ----A---- C:\WINNT\system32\wmasf.dll
2010-07-27 21:39:26 ----A---- C:\WINNT\system32\msnetobj.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmv2clt.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmstor.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\blackbox.dll
2010-07-27 21:39:24 ----A---- C:\WINNT\system32\drmclien.dll
2010-07-27 21:38:34 ----A---- C:\WINNT\system32\nmwcdcls.dll
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcmnt.sys
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwhnt.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwh.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdfl.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bbus.sys
2010-07-27 21:36:50 ----D---- C:\WINNT\system32\Samsung_USB_Drivers
2010-07-27 21:36:47 ----D---- C:\Program Files\DIFX
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExService.Exe
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDisk.Sys
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDevice.Dll
2010-07-27 21:35:25 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Samsung
2010-07-27 21:34:23 ----D---- C:\Program Files\MarkAny
2010-07-27 21:34:20 ----D---- C:\Program Files\PC Connectivity Solution
2010-07-27 21:32:46 ----D---- C:\Program Files\Samsung
2010-07-27 21:31:54 ----A---- C:\WINNT\system32\sqlsrv32.dll
2010-07-27 21:31:53 ----A---- C:\WINNT\system32\odbcbcp.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsvinn.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsrpcn.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\sqlunirl.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsgnet.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsadsn.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnmpntw.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnetlib.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.exe
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.dll
2010-07-27 21:31:29 ----A---- C:\WINNT\system32\msxml3r.dll
2010-07-27 21:31:28 ----A---- C:\WINNT\system32\msxml3.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\msorc32r.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\mscpxl32.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\ds16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\odbc16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\msorcl32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccr32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccp32.dll
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbcad32.exe
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbc32gt.dll
2010-07-27 21:29:29 ----A---- C:\WINNT\system32\odbc32.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\odbctrac.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\msdart.dll
2010-07-27 21:29:24 ----A---- C:\WINNT\system32\odbcint.dll
2010-07-27 21:29:23 ----A---- C:\WINNT\system32\odbccu32.dll
2010-07-27 21:29:22 ----A---- C:\WINNT\system32\ds32gt.dll
2010-07-27 21:19:19 ----D---- C:\Program Files\Common Files\Adobe
======List of files/folders modified in the last 1 months======
2010-08-12 11:10:48 ----AD---- C:\WINNT\security
2010-08-12 10:24:24 ----RAD---- C:\Program Files
2010-08-12 10:24:24 ----AD---- C:\WINNT\system32
2010-08-12 09:48:28 ----AD---- C:\WINNT
2010-08-12 09:48:26 ----D---- C:\WINNT\system32\LogFiles
2010-08-12 09:38:43 ----D---- C:\WINNT\system32\NtmsData
2010-08-12 09:37:51 ----AD---- C:\WINNT\Debug
2010-08-12 00:39:35 ----N---- C:\WINNT\SchedLgU.Txt
2010-08-12 00:33:45 ----AD---- C:\Documents and Settings
2010-08-11 23:27:51 ----D---- C:\WINNT\Minidump
2010-08-11 23:27:50 ----AD---- C:\WINNT\Temp
2010-08-11 19:36:37 ----AD---- C:\WINNT\system32\appmgmt
2010-08-11 18:47:57 ----RASHDC---- C:\WINNT\system32\dllcache
2010-08-11 14:13:43 ----HD---- C:\WINNT\inf
2010-08-11 13:33:31 ----AD---- C:\WINNT\system32\drivers
2010-08-11 01:59:57 ----SHD---- C:\WINNT\CSC
2010-08-11 01:28:54 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-09 13:36:13 ----ASD---- C:\WINNT\Tasks
2010-08-08 21:01:32 ----SHD---- C:\WINNT\Installer
2010-08-08 21:01:28 ----D---- C:\Program Files\Outlook Express
2010-08-08 21:01:28 ----D---- C:\Program Files\Common Files\System
2010-08-08 20:40:04 ----A---- C:\WINNT\win.ini
2010-08-08 20:33:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-08-08 05:02:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-08 04:57:16 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-08-08 04:00:24 ----D---- C:\Program Files\Mozilla Firefox
2010-08-08 03:59:21 ----D---- C:\Program Files\AskBarDis
2010-08-08 03:54:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-08-08 03:51:55 ----D---- C:\Program Files\Internet Explorer
2010-08-08 03:35:41 ----DC---- C:\WINNT\system32\DRVSTORE
2010-08-08 03:35:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-29 20:31:32 ----RSD---- C:\WINNT\assembly
2010-07-29 20:31:32 ----D---- C:\WINNT\Microsoft.NET
2010-07-29 20:27:51 ----A---- C:\WINNT\system32\PerfStringBackup.INI
2010-07-29 20:22:49 ----D---- C:\WINNT\Registration
2010-07-29 20:19:40 ----AD---- C:\WINNT\system32\wbem
2010-07-29 20:19:40 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2010-07-29 20:19:38 ----D---- C:\WINNT\winsxs
2010-07-27 21:39:24 ----D---- C:\Program Files\Windows Media Player
2010-07-27 21:32:21 ----HD---- C:\Program Files\Uninstall Information
2010-07-27 21:32:13 ----D---- C:\WINNT\RegisteredPackages
2010-07-27 21:32:03 ----A---- C:\WINNT\ODBC.INI
2010-07-27 21:31:57 ----A---- C:\WINNT\ODBCINST.INI
2010-07-27 21:29:36 ----AD---- C:\WINNT\Help
2010-07-27 21:19:19 ----AD---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\System32\DRIVERS\ACPI.sys [2003-06-19 163152]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\System32\DRIVERS\atapi.sys [2003-06-19 86672]
R0 Disk;Ovladač disku; C:\WINNT\System32\DRIVERS\disk.sys [2003-06-19 30768]
R0 Diskperf;Diskperf; C:\WINNT\system32\drivers\Diskperf.sys [2003-06-19 7728]
R0 dmio;Ovladač správce logických disků; C:\WINNT\System32\drivers\dmio.sys [2003-06-19 137936]
R0 dmload;dmload; C:\WINNT\System32\drivers\dmload.sys [2003-06-19 7312]
R0 FltMgr;FltMgr; C:\WINNT\system32\drivers\fltmgr.sys [2006-08-22 136912]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\System32\DRIVERS\ftdisk.sys [2005-06-03 116528]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\System32\DRIVERS\isapnp.sys [2003-06-19 46992]
R0 KSecDD;KSecDD; C:\WINNT\system32\drivers\KSecDD.sys [2003-09-20 71888]
R0 MountMgr;MountMgr; C:\WINNT\system32\drivers\MountMgr.sys [2005-08-16 30160]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\system32\drivers\Mup.sys [2004-12-02 89328]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\system32\drivers\NDIS.sys [2003-06-19 170928]
R0 PartMgr;PartMgr; C:\WINNT\system32\drivers\PartMgr.sys [2003-06-19 11792]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\System32\DRIVERS\pci.sys [2003-06-19 59888]
R0 sptd;sptd; C:\WINNT\System32\Drivers\sptd.sys [2010-07-04 691696]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINNT\system32\DRIVERS\AegisP.sys [2010-08-08 19969]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\System32\DRIVERS\hidusb.sys [1999-10-05 13904]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINNT\System32\DRIVERS\nwlnkipx.sys [2003-06-19 91408]
R2 NwlnkNb;NWLink NetBIOS; C:\WINNT\System32\DRIVERS\nwlnknb.sys [2003-06-19 65520]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINNT\System32\DRIVERS\nwlnkspx.sys [2000-03-20 58480]
R3 aeaudio;aeaudio; C:\WINNT\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINNT\System32\DRIVERS\e100bnt5.sys [2002-02-25 139536]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINNT\system32\FsUsbExDisk.SYS []
R3 i81x;i81x; C:\WINNT\System32\DRIVERS\i81xnt5.sys [2001-10-30 159772]
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\System32\DRIVERS\mouhid.sys [2003-06-19 11632]
R3 NMSCFG;NIC Management Service Configuration Driver; \??\C:\WINNT\system32\drivers\NMSCFG.SYS []
R3 NWRDR;NetWare Rdr; C:\WINNT\System32\DRIVERS\nwrdr.sys [2006-09-01 161520]
R3 RT73;TL-WN321G USB Wireless Adapter; C:\WINNT\system32\DRIVERS\rt73.sys [2008-10-21 465152]
R3 smwdm;smwdm; C:\WINNT\system32\drivers\smwdm.sys [2002-04-11 466568]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\System32\DRIVERS\uhcd.sys [2003-06-19 32848]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\System32\DRIVERS\usbhub.sys [2003-06-19 40176]
S0 Lbd;Lbd; C:\WINNT\system32\DRIVERS\Lbd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINNT\System32\DRIVERS\kbdhid.sys [2000-03-08 13744]
S3 ah5v09v0;ah5v09v0; C:\WINNT\system32\drivers\ah5v09v0.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINNT\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 ichaud;Služba pro ovladač AC'97 (WDM); C:\WINNT\system32\drivers\ichaud.sys [1999-10-22 32592]
S3 MPE;BDA MPE Filter; C:\WINNT\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 N100;Compaq Ethernet or Fast Ethernet NIC NT Driver; C:\WINNT\System32\DRIVERS\n100nt5.sys [2000-03-08 88336]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 ne2000;Novell/Eagle NE2000 Adapter Driver; C:\WINNT\System32\DRIVERS\ne2000.sys [1999-10-01 16016]
S3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\System32\DRIVERS\RTL8139.SYS [1999-09-25 18704]
S3 Secdrv;Secdrv; \??\C:\WINNT\system32\drivers\SECDRV.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINNT\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINNT\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINNT\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINNT\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINNT\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINNT\system32\drivers\usbaudio.sys [1999-10-12 68912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\System32\DRIVERS\USBSTOR.SYS [2003-06-19 21552]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S4 IntelIde;IntelIde; C:\WINNT\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 FsUsbExService;FsUsbExService; C:\WINNT\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 HidServ;HID Input Service; C:\WINNT\system32\hidserv.exe [2003-06-19 19728]
R2 NMSSvc;Intel(R) NMS; C:\WINNT\System32\NMSSvc.exe [2002-05-03 1118208]
R2 NWCWorkstation;Služba Client Service for NetWare; C:\WINNT\System32\services.exe [2005-06-03 92944]
R2 PnkBstrA;PnkBstrA; C:\WINNT\system32\PnkBstrA.exe [2010-06-07 75064]
R2 PnkBstrB;PnkBstrB; C:\WINNT\system32\PnkBstrB.exe [2010-06-17 214816]
S2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe [2009-01-05 69632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINNT\System32\TuneUpDefragService.exe [2008-09-01 306432]
S4 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
-----------------EOF-----------------
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Rsit mi napsal
Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-12 13:12:20
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 10 GB (54%) free of 19 GB
Total RAM: 254 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:31, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\System32\browseui.dll
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4856 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\1-Click Maintenance.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Rádio - C:\WINNT\system32\msdxm.ocx [2005-06-03 849168]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINNT\System32\igfxtray.exe [2001-10-12 143360]
"PROMon.exe"=C:\WINNT\system32\PROMon.exe [2002-04-18 73728]
"HotKeysCmds"=C:\WINNT\System32\hkcmd.exe [2001-10-12 90112]
"Synchronization Manager"=mobsync.exe /logon []
"NPSStartup"= []
"ShowWnd"=C:\WINNT\ShowWnd.exe [2003-09-18 36864]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [2001-02-12 65588]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TL-WN321G Wireless Utility.lnk - C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\nwprovau]
C:\WINNT\system32\nwprovau.dll [2006-09-01 140048]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2010-08-12 10:24:24 ----D---- C:\Program Files\trend micro
2010-08-12 10:24:23 ----D---- C:\rsit
2010-08-11 23:17:58 ----D---- C:\WINNT\pss
2010-08-11 18:47:50 ----A---- C:\WINNT\system32\hidserv.exe
2010-08-11 13:33:31 ----A---- C:\WINNT\system32\drivers\USBAUDIO.sys
2010-08-08 03:36:14 ----A---- C:\WINNT\system32\drivers\AegisP.sys
2010-08-08 03:36:10 ----D---- C:\Program Files\TP-LINK
2010-08-08 03:35:41 ----A---- C:\WINNT\system32\drivers\rt73.sys
2010-08-08 03:35:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK Driver
2010-08-04 18:59:09 ----A---- C:\WINNT\zHotkey.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\ShowWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\PIC.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\PatchWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\HKNTDLL.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\HIDMNT.dll
2010-08-04 18:58:45 ----D---- C:\Documents and Settings\Administrator\Data aplikací\InstallShield
2010-08-02 23:54:38 ----D---- C:\Program Files\Conduit
2010-07-30 16:57:00 ----D---- C:\Program Files\Valve
2010-07-30 03:07:58 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Ventrilo
2010-07-29 22:35:48 ----D---- C:\Asphalt_4
2010-07-29 20:19:17 ----D---- C:\WINNT\PCHEALTH
2010-07-29 04:56:23 ----D---- C:\Program Files\TrackMania Nations ESWC
2010-07-27 22:14:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2010-07-27 22:14:26 ----D---- C:\Documents and Settings\Administrator\Data aplikací\PC Suite
2010-07-27 21:39:39 ----A---- C:\WINNT\system32\mp43dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mpg4dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mp4sdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmvdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmspdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmsdmod.dll
2010-07-27 21:39:36 ----A---- C:\WINNT\system32\wmadmod.dll
2010-07-27 21:39:35 ----A---- C:\WINNT\system32\wmvdmoe2.dll
2010-07-27 21:39:34 ----A---- C:\WINNT\system32\wmspdmoe.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmsdmoe2.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmadmoe.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmnetmgr.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmidx.dll
2010-07-27 21:39:29 ----A---- C:\WINNT\system32\wmvcore.dll
2010-07-27 21:39:28 ----A---- C:\WINNT\system32\wmasf.dll
2010-07-27 21:39:26 ----A---- C:\WINNT\system32\msnetobj.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmv2clt.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmstor.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\blackbox.dll
2010-07-27 21:39:24 ----A---- C:\WINNT\system32\drmclien.dll
2010-07-27 21:38:34 ----A---- C:\WINNT\system32\nmwcdcls.dll
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcmnt.sys
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwhnt.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwh.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdfl.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bbus.sys
2010-07-27 21:36:50 ----D---- C:\WINNT\system32\Samsung_USB_Drivers
2010-07-27 21:36:47 ----D---- C:\Program Files\DIFX
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExService.Exe
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDisk.Sys
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDevice.Dll
2010-07-27 21:35:25 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Samsung
2010-07-27 21:34:23 ----D---- C:\Program Files\MarkAny
2010-07-27 21:34:20 ----D---- C:\Program Files\PC Connectivity Solution
2010-07-27 21:32:46 ----D---- C:\Program Files\Samsung
2010-07-27 21:31:54 ----A---- C:\WINNT\system32\sqlsrv32.dll
2010-07-27 21:31:53 ----A---- C:\WINNT\system32\odbcbcp.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsvinn.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsrpcn.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\sqlunirl.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsgnet.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsadsn.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnmpntw.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnetlib.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.exe
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.dll
2010-07-27 21:31:29 ----A---- C:\WINNT\system32\msxml3r.dll
2010-07-27 21:31:28 ----A---- C:\WINNT\system32\msxml3.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\msorc32r.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\mscpxl32.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\ds16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\odbc16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\msorcl32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccr32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccp32.dll
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbcad32.exe
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbc32gt.dll
2010-07-27 21:29:29 ----A---- C:\WINNT\system32\odbc32.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\odbctrac.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\msdart.dll
2010-07-27 21:29:24 ----A---- C:\WINNT\system32\odbcint.dll
2010-07-27 21:29:23 ----A---- C:\WINNT\system32\odbccu32.dll
2010-07-27 21:29:22 ----A---- C:\WINNT\system32\ds32gt.dll
2010-07-27 21:19:19 ----D---- C:\Program Files\Common Files\Adobe
======List of files/folders modified in the last 1 months======
2010-08-12 11:10:48 ----AD---- C:\WINNT\security
2010-08-12 10:24:24 ----RAD---- C:\Program Files
2010-08-12 10:24:24 ----AD---- C:\WINNT\system32
2010-08-12 09:48:28 ----AD---- C:\WINNT
2010-08-12 09:48:26 ----D---- C:\WINNT\system32\LogFiles
2010-08-12 09:38:43 ----D---- C:\WINNT\system32\NtmsData
2010-08-12 09:37:51 ----AD---- C:\WINNT\Debug
2010-08-12 00:39:35 ----N---- C:\WINNT\SchedLgU.Txt
2010-08-12 00:33:45 ----AD---- C:\Documents and Settings
2010-08-11 23:27:51 ----D---- C:\WINNT\Minidump
2010-08-11 23:27:50 ----AD---- C:\WINNT\Temp
2010-08-11 19:36:37 ----AD---- C:\WINNT\system32\appmgmt
2010-08-11 18:47:57 ----RASHDC---- C:\WINNT\system32\dllcache
2010-08-11 14:13:43 ----HD---- C:\WINNT\inf
2010-08-11 13:33:31 ----AD---- C:\WINNT\system32\drivers
2010-08-11 01:59:57 ----SHD---- C:\WINNT\CSC
2010-08-11 01:28:54 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-09 13:36:13 ----ASD---- C:\WINNT\Tasks
2010-08-08 21:01:32 ----SHD---- C:\WINNT\Installer
2010-08-08 21:01:28 ----D---- C:\Program Files\Outlook Express
2010-08-08 21:01:28 ----D---- C:\Program Files\Common Files\System
2010-08-08 20:40:04 ----A---- C:\WINNT\win.ini
2010-08-08 20:33:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-08-08 05:02:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-08 04:57:16 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-08-08 04:00:24 ----D---- C:\Program Files\Mozilla Firefox
2010-08-08 03:59:21 ----D---- C:\Program Files\AskBarDis
2010-08-08 03:54:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-08-08 03:51:55 ----D---- C:\Program Files\Internet Explorer
2010-08-08 03:35:41 ----DC---- C:\WINNT\system32\DRVSTORE
2010-08-08 03:35:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-29 20:31:32 ----RSD---- C:\WINNT\assembly
2010-07-29 20:31:32 ----D---- C:\WINNT\Microsoft.NET
2010-07-29 20:27:51 ----A---- C:\WINNT\system32\PerfStringBackup.INI
2010-07-29 20:22:49 ----D---- C:\WINNT\Registration
2010-07-29 20:19:40 ----AD---- C:\WINNT\system32\wbem
2010-07-29 20:19:40 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2010-07-29 20:19:38 ----D---- C:\WINNT\winsxs
2010-07-27 21:39:24 ----D---- C:\Program Files\Windows Media Player
2010-07-27 21:32:21 ----HD---- C:\Program Files\Uninstall Information
2010-07-27 21:32:13 ----D---- C:\WINNT\RegisteredPackages
2010-07-27 21:32:03 ----A---- C:\WINNT\ODBC.INI
2010-07-27 21:31:57 ----A---- C:\WINNT\ODBCINST.INI
2010-07-27 21:29:36 ----AD---- C:\WINNT\Help
2010-07-27 21:19:19 ----AD---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\System32\DRIVERS\ACPI.sys [2003-06-19 163152]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\System32\DRIVERS\atapi.sys [2003-06-19 86672]
R0 Disk;Ovladač disku; C:\WINNT\System32\DRIVERS\disk.sys [2003-06-19 30768]
R0 Diskperf;Diskperf; C:\WINNT\system32\drivers\Diskperf.sys [2003-06-19 7728]
R0 dmio;Ovladač správce logických disků; C:\WINNT\System32\drivers\dmio.sys [2003-06-19 137936]
R0 dmload;dmload; C:\WINNT\System32\drivers\dmload.sys [2003-06-19 7312]
R0 FltMgr;FltMgr; C:\WINNT\system32\drivers\fltmgr.sys [2006-08-22 136912]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\System32\DRIVERS\ftdisk.sys [2005-06-03 116528]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\System32\DRIVERS\isapnp.sys [2003-06-19 46992]
R0 KSecDD;KSecDD; C:\WINNT\system32\drivers\KSecDD.sys [2003-09-20 71888]
R0 MountMgr;MountMgr; C:\WINNT\system32\drivers\MountMgr.sys [2005-08-16 30160]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\system32\drivers\Mup.sys [2004-12-02 89328]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\system32\drivers\NDIS.sys [2003-06-19 170928]
R0 PartMgr;PartMgr; C:\WINNT\system32\drivers\PartMgr.sys [2003-06-19 11792]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\System32\DRIVERS\pci.sys [2003-06-19 59888]
R0 sptd;sptd; C:\WINNT\System32\Drivers\sptd.sys [2010-07-04 691696]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINNT\system32\DRIVERS\AegisP.sys [2010-08-08 19969]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\System32\DRIVERS\hidusb.sys [1999-10-05 13904]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINNT\System32\DRIVERS\nwlnkipx.sys [2003-06-19 91408]
R2 NwlnkNb;NWLink NetBIOS; C:\WINNT\System32\DRIVERS\nwlnknb.sys [2003-06-19 65520]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINNT\System32\DRIVERS\nwlnkspx.sys [2000-03-20 58480]
R3 aeaudio;aeaudio; C:\WINNT\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINNT\System32\DRIVERS\e100bnt5.sys [2002-02-25 139536]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINNT\system32\FsUsbExDisk.SYS []
R3 i81x;i81x; C:\WINNT\System32\DRIVERS\i81xnt5.sys [2001-10-30 159772]
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\System32\DRIVERS\mouhid.sys [2003-06-19 11632]
R3 NMSCFG;NIC Management Service Configuration Driver; \??\C:\WINNT\system32\drivers\NMSCFG.SYS []
R3 NWRDR;NetWare Rdr; C:\WINNT\System32\DRIVERS\nwrdr.sys [2006-09-01 161520]
R3 RT73;TL-WN321G USB Wireless Adapter; C:\WINNT\system32\DRIVERS\rt73.sys [2008-10-21 465152]
R3 smwdm;smwdm; C:\WINNT\system32\drivers\smwdm.sys [2002-04-11 466568]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\System32\DRIVERS\uhcd.sys [2003-06-19 32848]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\System32\DRIVERS\usbhub.sys [2003-06-19 40176]
S0 Lbd;Lbd; C:\WINNT\system32\DRIVERS\Lbd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINNT\System32\DRIVERS\kbdhid.sys [2000-03-08 13744]
S3 ah5v09v0;ah5v09v0; C:\WINNT\system32\drivers\ah5v09v0.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINNT\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 ichaud;Služba pro ovladač AC'97 (WDM); C:\WINNT\system32\drivers\ichaud.sys [1999-10-22 32592]
S3 MPE;BDA MPE Filter; C:\WINNT\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 N100;Compaq Ethernet or Fast Ethernet NIC NT Driver; C:\WINNT\System32\DRIVERS\n100nt5.sys [2000-03-08 88336]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 ne2000;Novell/Eagle NE2000 Adapter Driver; C:\WINNT\System32\DRIVERS\ne2000.sys [1999-10-01 16016]
S3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\System32\DRIVERS\RTL8139.SYS [1999-09-25 18704]
S3 Secdrv;Secdrv; \??\C:\WINNT\system32\drivers\SECDRV.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINNT\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINNT\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINNT\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINNT\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINNT\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINNT\system32\drivers\usbaudio.sys [1999-10-12 68912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\System32\DRIVERS\USBSTOR.SYS [2003-06-19 21552]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S4 IntelIde;IntelIde; C:\WINNT\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 FsUsbExService;FsUsbExService; C:\WINNT\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 HidServ;HID Input Service; C:\WINNT\system32\hidserv.exe [2003-06-19 19728]
R2 NMSSvc;Intel(R) NMS; C:\WINNT\System32\NMSSvc.exe [2002-05-03 1118208]
R2 NWCWorkstation;Služba Client Service for NetWare; C:\WINNT\System32\services.exe [2005-06-03 92944]
R2 PnkBstrA;PnkBstrA; C:\WINNT\system32\PnkBstrA.exe [2010-06-07 75064]
R2 PnkBstrB;PnkBstrB; C:\WINNT\system32\PnkBstrB.exe [2010-06-17 214816]
S2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe [2009-01-05 69632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINNT\System32\TuneUpDefragService.exe [2008-09-01 306432]
S4 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-12 13:12:20
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 10 GB (54%) free of 19 GB
Total RAM: 254 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:31, on 12.8.2010
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\FsUsbExService.Exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\NMSSvc.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\system32\PROMon.exe
C:\WINNT\System32\hkcmd.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://szn.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.254:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [PROMon.exe] PROMon.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrator\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\winnt\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7896561437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\System32\browseui.dll
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: FsUsbExService - Teruten - C:\WINNT\system32\FsUsbExService.Exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINNT\System32\NMSSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Unknown owner - C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINNT\System32\TuneUpDefragService.exe
O24 - Desktop Component 0: (no name) - http://z.about.com/d/homecooking/1/G/F/G/1/easter1.jpg
--
End of file - 4856 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\1-Click Maintenance.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Rádio - C:\WINNT\system32\msdxm.ocx [2005-06-03 849168]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINNT\System32\igfxtray.exe [2001-10-12 143360]
"PROMon.exe"=C:\WINNT\system32\PROMon.exe [2002-04-18 73728]
"HotKeysCmds"=C:\WINNT\System32\hkcmd.exe [2001-10-12 90112]
"Synchronization Manager"=mobsync.exe /logon []
"NPSStartup"= []
"ShowWnd"=C:\WINNT\ShowWnd.exe [2003-09-18 36864]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [2001-02-12 65588]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TL-WN321G Wireless Utility.lnk - C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\nwprovau]
C:\WINNT\system32\nwprovau.dll [2006-09-01 140048]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2010-08-12 10:24:24 ----D---- C:\Program Files\trend micro
2010-08-12 10:24:23 ----D---- C:\rsit
2010-08-11 23:17:58 ----D---- C:\WINNT\pss
2010-08-11 18:47:50 ----A---- C:\WINNT\system32\hidserv.exe
2010-08-11 13:33:31 ----A---- C:\WINNT\system32\drivers\USBAUDIO.sys
2010-08-08 03:36:14 ----A---- C:\WINNT\system32\drivers\AegisP.sys
2010-08-08 03:36:10 ----D---- C:\Program Files\TP-LINK
2010-08-08 03:35:41 ----A---- C:\WINNT\system32\drivers\rt73.sys
2010-08-08 03:35:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK Driver
2010-08-04 18:59:09 ----A---- C:\WINNT\zHotkey.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\ShowWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\PIC.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\PatchWnd.exe
2010-08-04 18:59:09 ----A---- C:\WINNT\HKNTDLL.dll
2010-08-04 18:59:09 ----A---- C:\WINNT\HIDMNT.dll
2010-08-04 18:58:45 ----D---- C:\Documents and Settings\Administrator\Data aplikací\InstallShield
2010-08-02 23:54:38 ----D---- C:\Program Files\Conduit
2010-07-30 16:57:00 ----D---- C:\Program Files\Valve
2010-07-30 03:07:58 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Ventrilo
2010-07-29 22:35:48 ----D---- C:\Asphalt_4
2010-07-29 20:19:17 ----D---- C:\WINNT\PCHEALTH
2010-07-29 04:56:23 ----D---- C:\Program Files\TrackMania Nations ESWC
2010-07-27 22:14:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2010-07-27 22:14:26 ----D---- C:\Documents and Settings\Administrator\Data aplikací\PC Suite
2010-07-27 21:39:39 ----A---- C:\WINNT\system32\mp43dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mpg4dmod.dll
2010-07-27 21:39:38 ----A---- C:\WINNT\system32\mp4sdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmvdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmspdmod.dll
2010-07-27 21:39:37 ----A---- C:\WINNT\system32\wmsdmod.dll
2010-07-27 21:39:36 ----A---- C:\WINNT\system32\wmadmod.dll
2010-07-27 21:39:35 ----A---- C:\WINNT\system32\wmvdmoe2.dll
2010-07-27 21:39:34 ----A---- C:\WINNT\system32\wmspdmoe.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmsdmoe2.dll
2010-07-27 21:39:33 ----A---- C:\WINNT\system32\wmadmoe.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmnetmgr.dll
2010-07-27 21:39:30 ----A---- C:\WINNT\system32\wmidx.dll
2010-07-27 21:39:29 ----A---- C:\WINNT\system32\wmvcore.dll
2010-07-27 21:39:28 ----A---- C:\WINNT\system32\wmasf.dll
2010-07-27 21:39:26 ----A---- C:\WINNT\system32\msnetobj.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmv2clt.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\drmstor.dll
2010-07-27 21:39:25 ----A---- C:\WINNT\system32\blackbox.dll
2010-07-27 21:39:24 ----A---- C:\WINNT\system32\drmclien.dll
2010-07-27 21:38:34 ----A---- C:\WINNT\system32\nmwcdcls.dll
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcmnt.sys
2010-07-27 21:37:25 ----A---- C:\WINNT\system32\drivers\ss_bcm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwhnt.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bwh.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdm.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bmdfl.sys
2010-07-27 21:37:24 ----A---- C:\WINNT\system32\drivers\ss_bbus.sys
2010-07-27 21:36:50 ----D---- C:\WINNT\system32\Samsung_USB_Drivers
2010-07-27 21:36:47 ----D---- C:\Program Files\DIFX
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExService.Exe
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDisk.Sys
2010-07-27 21:36:31 ----A---- C:\WINNT\system32\FsUsbExDevice.Dll
2010-07-27 21:35:25 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Samsung
2010-07-27 21:34:23 ----D---- C:\Program Files\MarkAny
2010-07-27 21:34:20 ----D---- C:\Program Files\PC Connectivity Solution
2010-07-27 21:32:46 ----D---- C:\Program Files\Samsung
2010-07-27 21:31:54 ----A---- C:\WINNT\system32\sqlsrv32.dll
2010-07-27 21:31:53 ----A---- C:\WINNT\system32\odbcbcp.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsvinn.dll
2010-07-27 21:31:43 ----A---- C:\WINNT\system32\dbmsrpcn.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\sqlunirl.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsgnet.dll
2010-07-27 21:31:42 ----A---- C:\WINNT\system32\dbmsadsn.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnmpntw.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\dbnetlib.dll
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.exe
2010-07-27 21:31:41 ----A---- C:\WINNT\system32\cliconfg.dll
2010-07-27 21:31:29 ----A---- C:\WINNT\system32\msxml3r.dll
2010-07-27 21:31:28 ----A---- C:\WINNT\system32\msxml3.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\msorc32r.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\mscpxl32.dll
2010-07-27 21:29:37 ----A---- C:\WINNT\system32\ds16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\odbc16gt.dll
2010-07-27 21:29:36 ----A---- C:\WINNT\system32\msorcl32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccr32.dll
2010-07-27 21:29:31 ----A---- C:\WINNT\system32\odbccp32.dll
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbcad32.exe
2010-07-27 21:29:30 ----A---- C:\WINNT\system32\odbc32gt.dll
2010-07-27 21:29:29 ----A---- C:\WINNT\system32\odbc32.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\odbctrac.dll
2010-07-27 21:29:28 ----A---- C:\WINNT\system32\msdart.dll
2010-07-27 21:29:24 ----A---- C:\WINNT\system32\odbcint.dll
2010-07-27 21:29:23 ----A---- C:\WINNT\system32\odbccu32.dll
2010-07-27 21:29:22 ----A---- C:\WINNT\system32\ds32gt.dll
2010-07-27 21:19:19 ----D---- C:\Program Files\Common Files\Adobe
======List of files/folders modified in the last 1 months======
2010-08-12 11:10:48 ----AD---- C:\WINNT\security
2010-08-12 10:24:24 ----RAD---- C:\Program Files
2010-08-12 10:24:24 ----AD---- C:\WINNT\system32
2010-08-12 09:48:28 ----AD---- C:\WINNT
2010-08-12 09:48:26 ----D---- C:\WINNT\system32\LogFiles
2010-08-12 09:38:43 ----D---- C:\WINNT\system32\NtmsData
2010-08-12 09:37:51 ----AD---- C:\WINNT\Debug
2010-08-12 00:39:35 ----N---- C:\WINNT\SchedLgU.Txt
2010-08-12 00:33:45 ----AD---- C:\Documents and Settings
2010-08-11 23:27:51 ----D---- C:\WINNT\Minidump
2010-08-11 23:27:50 ----AD---- C:\WINNT\Temp
2010-08-11 19:36:37 ----AD---- C:\WINNT\system32\appmgmt
2010-08-11 18:47:57 ----RASHDC---- C:\WINNT\system32\dllcache
2010-08-11 14:13:43 ----HD---- C:\WINNT\inf
2010-08-11 13:33:31 ----AD---- C:\WINNT\system32\drivers
2010-08-11 01:59:57 ----SHD---- C:\WINNT\CSC
2010-08-11 01:28:54 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-09 13:36:13 ----ASD---- C:\WINNT\Tasks
2010-08-08 21:01:32 ----SHD---- C:\WINNT\Installer
2010-08-08 21:01:28 ----D---- C:\Program Files\Outlook Express
2010-08-08 21:01:28 ----D---- C:\Program Files\Common Files\System
2010-08-08 20:40:04 ----A---- C:\WINNT\win.ini
2010-08-08 20:33:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-08-08 05:02:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-08 04:57:16 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-08-08 04:00:24 ----D---- C:\Program Files\Mozilla Firefox
2010-08-08 03:59:21 ----D---- C:\Program Files\AskBarDis
2010-08-08 03:54:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-08-08 03:51:55 ----D---- C:\Program Files\Internet Explorer
2010-08-08 03:35:41 ----DC---- C:\WINNT\system32\DRVSTORE
2010-08-08 03:35:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-29 20:31:32 ----RSD---- C:\WINNT\assembly
2010-07-29 20:31:32 ----D---- C:\WINNT\Microsoft.NET
2010-07-29 20:27:51 ----A---- C:\WINNT\system32\PerfStringBackup.INI
2010-07-29 20:22:49 ----D---- C:\WINNT\Registration
2010-07-29 20:19:40 ----AD---- C:\WINNT\system32\wbem
2010-07-29 20:19:40 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2010-07-29 20:19:38 ----D---- C:\WINNT\winsxs
2010-07-27 21:39:24 ----D---- C:\Program Files\Windows Media Player
2010-07-27 21:32:21 ----HD---- C:\Program Files\Uninstall Information
2010-07-27 21:32:13 ----D---- C:\WINNT\RegisteredPackages
2010-07-27 21:32:03 ----A---- C:\WINNT\ODBC.INI
2010-07-27 21:31:57 ----A---- C:\WINNT\ODBCINST.INI
2010-07-27 21:29:36 ----AD---- C:\WINNT\Help
2010-07-27 21:19:19 ----AD---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\System32\DRIVERS\ACPI.sys [2003-06-19 163152]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\System32\DRIVERS\atapi.sys [2003-06-19 86672]
R0 Disk;Ovladač disku; C:\WINNT\System32\DRIVERS\disk.sys [2003-06-19 30768]
R0 Diskperf;Diskperf; C:\WINNT\system32\drivers\Diskperf.sys [2003-06-19 7728]
R0 dmio;Ovladač správce logických disků; C:\WINNT\System32\drivers\dmio.sys [2003-06-19 137936]
R0 dmload;dmload; C:\WINNT\System32\drivers\dmload.sys [2003-06-19 7312]
R0 FltMgr;FltMgr; C:\WINNT\system32\drivers\fltmgr.sys [2006-08-22 136912]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\System32\DRIVERS\ftdisk.sys [2005-06-03 116528]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\System32\DRIVERS\isapnp.sys [2003-06-19 46992]
R0 KSecDD;KSecDD; C:\WINNT\system32\drivers\KSecDD.sys [2003-09-20 71888]
R0 MountMgr;MountMgr; C:\WINNT\system32\drivers\MountMgr.sys [2005-08-16 30160]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\system32\drivers\Mup.sys [2004-12-02 89328]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\system32\drivers\NDIS.sys [2003-06-19 170928]
R0 PartMgr;PartMgr; C:\WINNT\system32\drivers\PartMgr.sys [2003-06-19 11792]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\System32\DRIVERS\pci.sys [2003-06-19 59888]
R0 sptd;sptd; C:\WINNT\System32\Drivers\sptd.sys [2010-07-04 691696]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINNT\system32\DRIVERS\AegisP.sys [2010-08-08 19969]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\System32\DRIVERS\hidusb.sys [1999-10-05 13904]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINNT\System32\DRIVERS\nwlnkipx.sys [2003-06-19 91408]
R2 NwlnkNb;NWLink NetBIOS; C:\WINNT\System32\DRIVERS\nwlnknb.sys [2003-06-19 65520]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINNT\System32\DRIVERS\nwlnkspx.sys [2000-03-20 58480]
R3 aeaudio;aeaudio; C:\WINNT\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINNT\System32\DRIVERS\e100bnt5.sys [2002-02-25 139536]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINNT\system32\FsUsbExDisk.SYS []
R3 i81x;i81x; C:\WINNT\System32\DRIVERS\i81xnt5.sys [2001-10-30 159772]
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\System32\DRIVERS\mouhid.sys [2003-06-19 11632]
R3 NMSCFG;NIC Management Service Configuration Driver; \??\C:\WINNT\system32\drivers\NMSCFG.SYS []
R3 NWRDR;NetWare Rdr; C:\WINNT\System32\DRIVERS\nwrdr.sys [2006-09-01 161520]
R3 RT73;TL-WN321G USB Wireless Adapter; C:\WINNT\system32\DRIVERS\rt73.sys [2008-10-21 465152]
R3 smwdm;smwdm; C:\WINNT\system32\drivers\smwdm.sys [2002-04-11 466568]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\System32\DRIVERS\uhcd.sys [2003-06-19 32848]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\System32\DRIVERS\usbhub.sys [2003-06-19 40176]
S0 Lbd;Lbd; C:\WINNT\system32\DRIVERS\Lbd.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINNT\System32\DRIVERS\kbdhid.sys [2000-03-08 13744]
S3 ah5v09v0;ah5v09v0; C:\WINNT\system32\drivers\ah5v09v0.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINNT\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 ichaud;Služba pro ovladač AC'97 (WDM); C:\WINNT\system32\drivers\ichaud.sys [1999-10-22 32592]
S3 MPE;BDA MPE Filter; C:\WINNT\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 N100;Compaq Ethernet or Fast Ethernet NIC NT Driver; C:\WINNT\System32\DRIVERS\n100nt5.sys [2000-03-08 88336]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 ne2000;Novell/Eagle NE2000 Adapter Driver; C:\WINNT\System32\DRIVERS\ne2000.sys [1999-10-01 16016]
S3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\System32\DRIVERS\RTL8139.SYS [1999-09-25 18704]
S3 Secdrv;Secdrv; \??\C:\WINNT\system32\drivers\SECDRV.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINNT\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINNT\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINNT\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINNT\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINNT\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINNT\system32\drivers\usbaudio.sys [1999-10-12 68912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\System32\DRIVERS\USBSTOR.SYS [2003-06-19 21552]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S4 IntelIde;IntelIde; C:\WINNT\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 FsUsbExService;FsUsbExService; C:\WINNT\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 HidServ;HID Input Service; C:\WINNT\system32\hidserv.exe [2003-06-19 19728]
R2 NMSSvc;Intel(R) NMS; C:\WINNT\System32\NMSSvc.exe [2002-05-03 1118208]
R2 NWCWorkstation;Služba Client Service for NetWare; C:\WINNT\System32\services.exe [2005-06-03 92944]
R2 PnkBstrA;PnkBstrA; C:\WINNT\system32\PnkBstrA.exe [2010-06-07 75064]
R2 PnkBstrB;PnkBstrB; C:\WINNT\system32\PnkBstrB.exe [2010-06-17 214816]
S2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe [2009-01-05 69632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINNT\System32\TuneUpDefragService.exe [2008-09-01 306432]
S4 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
-----------------EOF-----------------
Re: Prosím o kontrolu logu
Tuto složku znáš?
C:\Asphalt_4
Otestuj na http://www.virustotal.com
C:\WINNT\system32\hidserv.exe
C:\WINNT\zHotkey.exe
C:\WINNT\ShowWnd.exe
C:\WINNT\PIC.dll
C:\WINNT\HKNTDLL.dll
C:\WINNT\HIDMNT.dll
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
C:\Asphalt_4
Otestuj na http://www.virustotal.com
C:\WINNT\system32\hidserv.exe
C:\WINNT\zHotkey.exe
C:\WINNT\ShowWnd.exe
C:\WINNT\PIC.dll
C:\WINNT\HKNTDLL.dll
C:\WINNT\HIDMNT.dll
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Ano nedávno sjem si jí stáhl instaloval jsem si Javu do mobilu a musel jsem vyzkoušet jestli funguje (ta java) nevspomněl jsem si však kam jsem dal tuto složku tak jsem si stáhl složku jinou je možné že tato složka je zdrojem problémů ?
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43294
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Ne , bledulka se jen ptá.
Udělej ten VirusTotal.
Udělej ten VirusTotal.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Na stránkus se mi nepodařilo připojit ani věera ani dnes projistotu jsem tu složku smazal stále je však vše špatné.
Re: Prosím o kontrolu logu
Místo virustotalu zkus tuhle stránku
viewtopic.php?f=70&t=5120
viewtopic.php?f=70&t=5120
-
FunnyBunny
- nováček
- Příspěvky: 20
- Registrován: srpen 10
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Tato stránka již funguje horší je však to že celou složku Asphalt_4 jsem smazal jelikož jsem se bál abi se nestalo něco horšího.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 108 hostů