Logfile of random's system information tool 1.06 (written by random/random)
Run by Martin Palica at 2010-01-28 21:22:01
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (6%) free of 76 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:22:03, on 28.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows SteadyState\SCTSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Dell\QuickSet\QuickSet.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\WINDOWS\system32\CNOServerLauncher.exe
C:\Program Files\Windows SteadyState\Bubble.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\AcroTray.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Martin Palica\Plocha\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Martin Palica.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe nvHotkey.dll,Start
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
O4 - HKLM\..\Run: [CnOServerLauncher] CNOServerLauncher.exe
O4 - HKLM\..\Run: [Bubble] C:\Program Files\Windows SteadyState\Bubble.exe
O4 - HKLM\..\Run: [Logoff] C:\Program Files\Windows SteadyState\SCTUINotify.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
O4 - HKCU\..\Run: [C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe] C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe /l*v "C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\msilog.txt" ProductLanguage=1033 INSTALL_TYPE=1 DB_INSTALL=1 CLOG="C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\CLOG.txt" WEB_SITE_NEW_HOST="PALICA" CM="false" UID="{FABEE630-3D2A-4B77-AB86-86FC0845B1E7}" WIN_EDITION=""
O4 - HKCU\..\Run: [C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe] C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe /l*v "C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\msilog.txt" ProductLanguage=1029 INSTALL_TYPE=1 DB_INSTALL=1 CLOG="C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\CLOG.txt" WEB_SITE_NEW_HOST="PALICA" CM="false" UID="{FABEE630-3D2A-4B77-AB86-86FC0845B1E7}"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe" /NoDialog
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 0703760781
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service (lavasoft ad-aware service) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - n.v.t. MX-3 - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
--
End of file - 15219 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Malwarebytes' Scheduled Scan for Martin Palica.job
C:\WINDOWS\tasks\Malwarebytes' Scheduled Update for Martin Palica.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{F9D71386-71BE-487A-9E36-34E1808909E8}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2005-09-23 231160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-30 41368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-30 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2005-09-23 231160]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-04-17 159744]
"SigmatelSysTrayApp"=C:\WINDOWS\\stsystra.exe [2007-02-19 303104]
"Dell QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2007-02-20 1191936]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-04-28 8429568]
"NVHotkey"=nvHotkey.dll,Start []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-04-28 81920]
"IntelZeroConfig"=C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [2007-02-21 819200]
"IntelWireless"=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2007-02-21 970752]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-30 148888]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-07-31 65536]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"IJNetworkScanUtility"=C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [2007-05-21 124512]
"ISUSScheduler"= []
"CnOServerLauncher"=C:\WINDOWS\system32\\CNOServerLauncher.exe [2009-01-08 106496]
"Bubble"=C:\Program Files\Windows SteadyState\Bubble.exe [2008-05-30 182288]
"Logoff"=C:\Program Files\Windows SteadyState\SCTUINotify.exe [2008-05-30 163856]
"ISUSPM Startup"= []
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2009-10-09 520024]
"MaxMenuMgr"=C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [2009-05-01 185640]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-10-07 1461080]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-10-02 1124352]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-08-27 247144]
"C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe"=C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe [2009-09-17 199592]
"C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe"=C:\Documents and Settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe [2009-04-30 247720]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Nokia.PCSync"=C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe [2008-06-17 1249280]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2007-12-07 21686568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acrobat assistant 7.0]
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2006-01-12 483328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /installquiet []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pc suite tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-10-02 1124352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\quicktime task]
C:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^adobe acrobat speed launcher.lnk]
C:\WINDOWS\INSTAL~1\{AC76B~1\SC_ACR~1.EXE [2008-02-10 25214]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^intervideo wincinema manager.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^lotus organizer easyclip.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^microsoft office.lnk]
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE [2001-02-13 83360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth Manager.lnk -
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lavasoft ad-aware service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\windows steadystate]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\lavasoft ad-aware service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\windows steadystate]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=0
"undockwithoutlogon"=1
"HideFastUserSwitching"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\InterVideo\DVD6\WinDVD.exe"="C:\Program Files\InterVideo\DVD6\WinDVD.exe:*:Enabled:WinDVD"
"C:\Program Files\CamGuard Security System Remote Client\MClient.exe"="C:\Program Files\CamGuard Security System Remote Client\MClient.exe:*:Enabled:MClient"
"C:\Hettich_Katalog\j2sdk1.4.2_02\jre\bin\javaw.exe"="C:\Hettich_Katalog\j2sdk1.4.2_02\jre\bin\javaw.exe:*:Enabled:Server"
"C:\Hettich_Katalog\j2sdk1.4.2_02\jre\bin\java.exe"="C:\Hettich_Katalog\j2sdk1.4.2_02\jre\bin\java.exe:*:Enabled:Server"
"C:\imos\j2sdk1.4.2_02\jre\bin\javaw.exe"="C:\imos\j2sdk1.4.2_02\jre\bin\javaw.exe:*:Enabled:Server"
"C:\imos\j2sdk1.4.2_02\jre\bin\java.exe"="C:\imos\j2sdk1.4.2_02\jre\bin\java.exe:*:Enabled:Server"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\deepinvent\MailStore Home\MailStoreLocal.exe"="C:\Program Files\deepinvent\MailStore Home\MailStoreLocal.exe:*:Enabled:MailStore Home"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dad98423-d9f7-11de-b1ca-001c23842ca2}]
shell\AutoRun\command - .\Encryption Tool\MaxtorEncryption.exe
======File associations======
.js - edit - "C:\Program Files\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
.scr - open - "%windir%\system32\notepad.exe" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2010-01-27 15:05:01 ----D---- C:\WINDOWS\LastGood
2010-01-13 18:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 18:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2009-12-29 20:20:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
2009-12-29 19:57:09 ----D---- C:\WINDOWS\RegisteredPackages
2009-12-29 19:56:16 ----A---- C:\WINDOWS\system32\psisdecd.dll
2009-12-29 19:56:13 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2009-12-29 19:10:41 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\DAEMON Tools Lite
2009-12-29 19:10:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
======List of files/folders modified in the last 1 months======
2010-01-28 21:21:38 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\uTorrent
2010-01-28 21:21:34 ----D---- C:\WINDOWS\temp
2010-01-28 21:00:48 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\Skype
2010-01-28 20:36:36 ----D---- C:\Program Files\Mozilla Firefox
2010-01-28 20:32:33 ----D---- C:\WINDOWS\Prefetch
2010-01-28 11:21:12 ----D---- C:\WINDOWS\system32
2010-01-28 06:12:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-28 00:02:54 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\skypePM
2010-01-27 16:18:33 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\Canon
2010-01-27 15:05:41 ----SHD---- C:\WINDOWS\Installer
2010-01-27 15:05:41 ----D---- C:\Config.Msi
2010-01-27 15:05:18 ----HD---- C:\WINDOWS\inf
2010-01-27 15:05:18 ----D---- C:\WINDOWS\system32\drivers
2010-01-27 15:05:01 ----D---- C:\WINDOWS
2010-01-27 15:04:00 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-26 23:13:07 ----D---- C:\WINDOWS\Minidump
2010-01-26 22:02:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-26 21:56:30 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2010-01-26 13:21:43 ----D---- C:\Program Files\Mozilla Thunderbird
2010-01-24 12:21:18 ----D---- C:\Documents and Settings\Martin Palica\Data aplikací\OpenOffice.org2
2010-01-23 03:02:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-23 03:02:48 ----D---- C:\Program Files\Internet Explorer
2010-01-23 03:02:28 ----D---- C:\WINDOWS\ie8updates
2010-01-23 03:01:14 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-19 22:14:12 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-01-19 22:11:31 ----SD---- C:\WINDOWS\Tasks
2010-01-19 14:38:26 ----A---- C:\WINDOWS\win.ini
2010-01-15 17:40:56 ----SHD---- C:\WINDOWS\CSC
2010-01-13 18:30:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-01-13 18:12:50 ----D---- C:\WINDOWS\AppPatch
2010-01-13 18:10:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-01-13 18:09:41 ----A---- C:\WINDOWS\imsins.BAK
2010-01-06 11:29:37 ----D---- C:\Program Files\DYNALOG
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2009-12-29 21:43:10 ----RD---- C:\Program Files
2009-12-29 19:58:17 ----HD---- C:\Program Files\InstallShield Installation Information
2009-12-29 19:57:59 ----RSD---- C:\WINDOWS\assembly
2009-12-29 19:55:47 ----D---- C:\WINDOWS\system32\DirectX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2005-08-12 16128]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-11 12920]
R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-11 28184]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-10-07 55256]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.6.0.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-02-01 21425]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-03-09 278728]
R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-18 35096]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-18 32472]
R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-18 9400]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-18 104472]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-18 26008]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-18 14520]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-18 97848]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-18 94648]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-11 51768]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-10-07 73760]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-03-09 25416]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 port_nt;port_nt; \??\c:\windows\system32\drivers\port_nt.sys []
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-02-21 12416]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2007-04-19 132608]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-02-16 160256]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-10-07 32072]
R3 guardian2;guardian2; C:\WINDOWS\System32\Drivers\oz776.sys [2007-02-23 56576]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-11-02 989696]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-11-02 209152]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-02-25 2203520]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-28 6727136]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-02-19 1228296]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-11-02 730112]
S1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
S2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
S3 akshasp;Aladdin HASP Key; C:\WINDOWS\system32\DRIVERS\akshasp.sys [2006-11-22 327168]
S3 aksusb;Aladdin USB Key; C:\WINDOWS\system32\DRIVERS\aksusb.sys [2006-11-22 100096]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbvm326_W;usbvm326 Wireless Camera; C:\WINDOWS\System32\Drivers\usbvm326_w.sys [2006-08-01 195200]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-10-07 472280]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [2008-04-14 81920]
R2 FreeAgentGoNext Service;Seagate Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-05-01 181544]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-30 152984]
R2 lavasoft ad-aware service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-10-09 1028432]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-01-07 236368]
R2 MSSQL$SPRINXCRM;SQL Server (SPRINXCRM); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 NICCONFIGSVC;NICCONFIGSVC; C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe [2007-02-20 475136]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-04-28 163908]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-02-28 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-02-28 189072]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-02-21 983040]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-04-12 487424]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-25 239968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 STacSV;SigmaTel Audio Service; C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe [2007-02-19 90112]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-08-27 92008]
R2 windows steadystate;Windows SteadyState Service; C:\Program Files\Windows SteadyState\SCTSvc.exe [2008-05-30 115728]
R2 WLANKEEPER;Intel(R) PROSet/Wireless SSO Service; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [2007-02-21 294912]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2008-04-14 2719744]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-08-07 575488]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-07 133104]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2009-03-14 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-10-07 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 Mx-3 B-Cup Service;MX-3 B-Cup XP; C:\WINDOWS\system32\Mx-3 B-Cup Service.exe [2008-03-29 124928]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-25 45408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomalé načítání www
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119402
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé načítání www
Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé načítání www
ComboFix 10-01-28.02 - Martin Palica 28.01.2010 22:36:00.6.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1518 [GMT 1:00]
Spuštěný z: c:\documents and settings\Martin Palica\Plocha\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezidentní štít AV je zapnutý
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Martin Palica\Dokumenty\cc_20091113_224149.reg
H:\Autorun.inf
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-28 )))))))))))))))))))))))))))))))
.
2010-01-28 21:27 . 2010-01-29 04:02 -------- d-----w- C:\32788R22FWJFW
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-28 21:36 . 2004-08-18 10:00 529726 ----a-w- c:\windows\system32\perfh005.dat
2010-01-28 21:36 . 2004-08-18 10:00 120926 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 12:21 . 2008-02-01 08:53 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-01-19 13:32 . 2008-02-01 09:26 30789 ----a-w- c:\windows\system32\nvModes.dat
2010-01-13 17:30 . 2009-11-12 17:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-07 15:07 . 2009-11-12 17:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2009-11-12 17:39 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-06 10:29 . 2008-03-27 15:48 -------- d-----w- c:\program files\DYNALOG
2009-12-29 18:58 . 2008-02-01 00:45 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-12-29 18:11 . 2009-12-29 18:11 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-12-23 22:16 . 2008-05-17 11:19 -------- d-----w- c:\program files\Google
2009-12-21 19:08 . 2006-03-04 03:35 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-20 17:11 . 2009-12-20 17:11 -------- d-----w- c:\program files\deepinvent
2009-12-20 02:10 . 2009-12-19 13:03 -------- d-----w- c:\program files\Windows Desktop Search
2009-12-19 07:15 . 2009-12-18 21:40 -------- d-----w- c:\program files\Microsoft Works
2009-12-18 21:40 . 2009-03-14 18:44 -------- d-----w- c:\program files\MSBuild
2009-12-18 21:38 . 2009-10-01 13:45 -------- d-----w- c:\program files\Microsoft.NET
2009-12-18 21:35 . 2009-12-18 21:35 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-12-18 19:46 . 2009-12-18 19:46 -------- d-----w- c:\program files\Seagate
2009-12-10 23:01 . 2008-02-01 09:03 -------- d-----w- c:\program files\ROZ
2009-12-10 23:01 . 2008-02-01 08:54 -------- d-----w- c:\program files\PRO100
2009-12-02 09:35 . 2009-10-01 13:33 -------- d-----w- c:\program files\Microsoft SQL Server
2009-11-30 08:30 . 2009-11-30 08:30 -------- d-----w- c:\program files\ParallelGraphics
2009-11-30 08:29 . 2009-11-30 08:29 -------- d-----w- c:\program files\TeamViewer
2009-11-30 08:15 . 2009-03-14 18:47 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2009-11-30 08:08 . 2009-11-30 08:08 -------- d-----w- c:\program files\Common Files\ParallelGraphics
2009-11-21 16:03 . 2004-08-18 10:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-05 23:09 . 2004-08-18 10:00 1034240 ------w- c:\windows\explorer.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-10-02 1124352]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2009-08-27 247144]
"c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe"="c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe" [2009-09-17 199592]
"c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe"="c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe" [2009-04-30 247720]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 7\PcSync2.exe" [2008-06-17 1249280]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2007-12-07 21686568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2007-04-17 159744]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"Dell QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2007-02-20 1191936]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-28 81920]
"IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2007-02-21 819200]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-02-21 970752]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-30 148888]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"IJNetworkScanUtility"="c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE" [2007-05-20 124512]
"CnOServerLauncher"="CNOServerLauncher.exe" [2009-01-08 106496]
"Bubble"="c:\program files\Windows SteadyState\Bubble.exe" [2008-05-30 182288]
"Logoff"="c:\program files\Windows SteadyState\SCTUINotify.exe" [2008-05-30 163856]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-10-09 520024]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-05-01 185640]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-01-07 429392]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-10-07 1461080]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"HideFastUserSwitching"= 1 (0x1)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lavasoft ad-aware service]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\windows steadystate]
@="Service"
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^adobe acrobat speed launcher.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
backup=c:\windows\pss\Adobe Acrobat Speed Launcher.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^intervideo wincinema manager.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^lotus organizer easyclip.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Lotus Organizer EasyClip.lnk
backup=c:\windows\pss\Lotus Organizer EasyClip.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^microsoft office.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acrobat assistant 7.0]
2006-01-12 19:52 483328 ----a-w- c:\program files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-04-28 18:05 1626112 ----a-w- c:\windows\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pc suite tray]
2008-10-02 06:00 1124352 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\quicktime task]
2008-03-28 21:37 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\InterVideo\\DVD6\\WinDVD.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\deepinvent\\MailStore Home\\MailStoreLocal.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 DRVMCDB;DRVMCDB;c:\windows\system32\drivers\DRVMCDB.SYS [7.2.2008 18:05 99176]
R0 lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [25.6.2009 16:55 64160]
R1 APPDRV;APPDRV;c:\windows\system32\drivers\APPDRV.SYS [1.2.2008 02:03 16128]
R1 DLACDBHM;DLACDBHM;c:\windows\system32\drivers\DLACDBHM.SYS [7.2.2008 18:05 12920]
R1 DLARTL_M;DLARTL_M;c:\windows\system32\drivers\DLARTL_M.SYS [7.2.2008 18:05 28184]
R1 easdrv;easdrv;c:\windows\system32\drivers\easdrv.sys [18.8.2008 12:19 54184]
R1 epfwtdi;epfwtdi;c:\windows\system32\drivers\epfwtdi.sys [18.8.2008 12:27 55256]
R1 Tosrfcom;Bluetooth RFCOMM;c:\windows\system32\drivers\tosrfcom.sys [6.2.2008 19:59 64000]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI;c:\windows\system32\drivers\wmiacpi.sys [25.6.2009 20:46 8832]
R2 Apple Mobile Device;Apple Mobile Device;c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [18.2.2008 10:16 110592]
R2 atksgt;atksgt;c:\windows\system32\drivers\atksgt.sys [9.3.2009 22:06 278728]
R2 DLABMFSM;DLABMFSM;c:\windows\system32\DLA\DLABMFSM.SYS [7.2.2008 18:05 35096]
R2 DLABOIOM;DLABOIOM;c:\windows\system32\DLA\DLABOIOM.SYS [7.2.2008 18:05 32472]
R2 DLADResM;DLADResM;c:\windows\system32\DLA\DLADResM.SYS [7.2.2008 18:05 9400]
R2 DLAIFS_M;DLAIFS_M;c:\windows\system32\DLA\DLAIFS_M.SYS [7.2.2008 18:05 104472]
R2 DLAOPIOM;DLAOPIOM;c:\windows\system32\DLA\DLAOPIOM.SYS [7.2.2008 18:05 26008]
R2 DLAPoolM;DLAPoolM;c:\windows\system32\DLA\DLAPoolM.SYS [7.2.2008 18:05 14520]
R2 DLAUDF_M;DLAUDF_M;c:\windows\system32\DLA\DLAUDF_M.SYS [7.2.2008 18:05 97848]
R2 DLAUDFAM;DLAUDFAM;c:\windows\system32\DLA\DLAUDFAM.SYS [7.2.2008 18:05 94648]
R2 DRVNDDM;DRVNDDM;c:\windows\system32\drivers\DRVNDDM.SYS [7.2.2008 18:05 51768]
R2 eamon;EAMON;c:\windows\system32\drivers\eamon.sys [18.8.2008 12:18 40824]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [7.10.2009 09:16 472280]
R2 epfw;epfw;c:\windows\system32\drivers\epfw.sys [18.8.2008 12:27 73760]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [1.5.2009 14:35 181544]
R2 Hardlock;Hardlock;c:\windows\system32\drivers\hardlock.sys [30.11.2009 09:16 693760]
R2 JavaQuickStarterService;Java Quick Starter;c:\program files\Java\jre6\bin\jqs.exe [30.7.2009 21:38 152984]
R2 lavasoft ad-aware service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [9.3.2009 20:06 1028432]
R2 lirsgt;lirsgt;c:\windows\system32\drivers\lirsgt.sys [9.3.2009 22:06 25416]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [12.11.2009 18:39 236368]
R2 MSSQL$SPRINXCRM;SQL Server (SPRINXCRM);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [27.5.2009 02:27 29262680]
R2 NICCONFIGSVC;NICCONFIGSVC;c:\program files\Dell\QuickSet\NicConfigSvc.exe [1.2.2008 02:04 475136]
R2 NVSvc;NVIDIA Display Driver Service;c:\windows\system32\nvsvc32.exe [1.2.2008 10:26 163908]
R2 PnkBstrA;PnkBstrA;c:\windows\system32\PnkBstrA.exe [26.9.2008 18:28 75064]
R2 PnkBstrB;PnkBstrB;c:\windows\system32\PnkBstrB.exe [26.9.2008 18:28 189072]
R2 port_nt;port_nt;c:\windows\system32\drivers\port_nt.sys [1.2.2008 10:03 3608]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service;c:\program files\Intel\Wireless\Bin\RegSrvc.exe [21.2.2007 11:10 327680]
R2 s24trans;WLAN Transport;c:\windows\system32\drivers\s24trans.sys [21.2.2007 11:16 12416]
R2 SQLBrowser;SQL Server Browser;c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [25.11.2008 07:31 239968]
R2 SQLWriter;SQL Server VSS Writer;c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe [24.11.2008 21:31 87904]
R2 STacSV;SigmaTel Audio Service;c:\program files\SigmaTel\C-Major Audio\WDM\stacsv.exe [1.2.2008 01:45 90112]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [27.8.2009 16:05 92008]
R2 windows steadystate;Windows SteadyState Service;c:\program files\Windows SteadyState\SCTSvc.exe [30.5.2008 13:41 115728]
R2 WLANKEEPER;Intel(R) PROSet/Wireless SSO Service;c:\program files\Intel\Wireless\Bin\WLKEEPER.exe [21.2.2007 11:19 294912]
R2 WSearch;Windows Search;c:\windows\system32\searchindexer.exe [26.5.2008 22:18 439808]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista;c:\windows\system32\drivers\Apfiltr.sys [1.2.2008 01:42 132608]
R3 Epfwndis;Eset Personal Firewall;c:\windows\system32\drivers\epfwndis.sys [18.8.2008 12:27 32072]
R3 guardian2;guardian2;c:\windows\system32\drivers\oz776.sys [1.2.2008 11:05 56576]
R3 HSF_DPV;HSF_DPV;c:\windows\system32\drivers\HSF_DPV.sys [1.2.2008 01:47 989696]
R3 HSFHWAZL;HSFHWAZL;c:\windows\system32\drivers\HSFHWAZL.sys [1.2.2008 01:47 209152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [12.11.2009 18:39 19160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit;c:\windows\system32\drivers\NETw4x32.sys [1.2.2008 11:01 2203520]
R3 STHDA;SigmaTel High Definition Audio CODEC;c:\windows\system32\drivers\sthda.sys [1.2.2008 01:45 1228296]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port;c:\windows\system32\drivers\serscan.sys [1.2.2008 14:26 6784]
R3 tosporte;Bluetooth COM Port;c:\windows\system32\drivers\tosporte.sys [6.2.2008 19:59 41600]
S0 cercsr6;cercsr6;c:\windows\system32\drivers\cercsr6.sys [13.12.2004 22:14 39904]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [29.12.2009 19:11 691696]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [19.7.2008 20:11 81920]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [7.7.2009 21:02 133104]
S2 sp_rssrv;Spyware Terminator Realtime Shield Service;c:\program files\Spyware Terminator\sp_rsser.exe [31.12.2008 10:42 487424]
S3 akshasp;Aladdin HASP Key;c:\windows\system32\drivers\akshasp.sys [30.11.2009 09:16 327168]
S3 aksusb;Aladdin USB Key;c:\windows\system32\drivers\aksusb.sys [30.11.2009 09:16 100096]
S3 Autodesk Licensing Service;Autodesk Licensing Service;c:\program files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [14.3.2009 19:55 85096]
S3 EhttpSrv;Eset HTTP Server;c:\program files\ESET\ESET Smart Security\EHttpSrv.exe [7.10.2009 09:21 20680]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [19.7.2008 20:11 2719744]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;c:\program files\Microsoft Office\Office12\GrooveAuditService.exe [25.10.2008 11:44 65888]
S3 Mx-3 B-Cup Service;MX-3 B-Cup XP;c:\windows\system32\Mx-3 B-Cup Service.exe [29.3.2008 14:09 124928]
S3 NdisIP;Microsoft TV/Video Connection;c:\windows\system32\drivers\NdisIP.sys [7.7.2009 11:18 10880]
S3 odserv;Microsoft Office Diagnostics Service;c:\program files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [4.11.2008 01:06 441712]
S3 pccsmcfd;PCCS Mode Change Filter Driver;c:\windows\system32\drivers\pccsmcfd.sys [15.11.2008 11:05 21632]
S3 ServiceLayer;ServiceLayer;c:\program files\PC Connectivity Solution\ServiceLayer.exe [7.8.2008 11:17 575488]
S3 SLIP;BDA Slip De-Framer;c:\windows\system32\drivers\SLIP.sys [7.7.2009 11:18 11136]
S3 stllssvr;stllssvr;c:\program files\Common Files\SureThing Shared\stllssvr.exe [14.9.2006 14:54 73728]
S3 tosrfbd;Bluetooth RFBUS;c:\windows\system32\drivers\tosrfbd.sys [6.2.2008 19:59 113920]
S3 tosrfbnp;Bluetooth RFBNEP;c:\windows\system32\drivers\tosrfbnp.sys [6.2.2008 19:59 36480]
S3 Tosrfhid;Bluetooth RFHID;c:\windows\system32\drivers\Tosrfhid.sys [6.2.2008 19:59 73728]
S3 tosrfnds;Bluetooth Personal Area Network;c:\windows\system32\drivers\tosrfnds.sys [6.2.2008 19:59 18612]
S3 Tosrfusb;Bluetooth USB Controller;c:\windows\system32\drivers\tosrfusb.sys [6.2.2008 19:59 41856]
S3 UIUSys;Conexant Setup API;c:\windows\system32\DRIVERS\UIUSYS.SYS --> c:\windows\system32\DRIVERS\UIUSYS.SYS [?]
S3 usbvm326_W;usbvm326 Wireless Camera;c:\windows\system32\drivers\usbvm326_w.sys [7.7.2009 11:17 195200]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper;c:\program files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [25.11.2008 07:31 45408]
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 19:30]
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 12:57]
2010-01-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-07 20:02]
2010-01-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-07 20:02]
2010-01-28 c:\windows\Tasks\Malwarebytes' Scheduled Scan for Martin Palica.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-11-12 15:07]
2010-01-28 c:\windows\Tasks\Malwarebytes' Scheduled Update for Martin Palica.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-11-12 15:07]
2010-01-28 c:\windows\Tasks\User_Feed_Synchronization-{F9D71386-71BE-487A-9E36-34E1808909E8}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Martin Palica\Data aplikací\Mozilla\Firefox\Profiles\6gr1gw6x.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\documents and settings\Martin Palica\Data aplikací\Mozilla\Firefox\Profiles\6gr1gw6x.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\components\ipc.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npfiller.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-Run-ISUSScheduler - (no file)
HKLM-Run-ISUSPM Startup - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-28 22:48
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-776561741-1993962763-1935655697-1003\Software\SecuROM\License information*]
"datasecu"=hex:88,f0,a6,51,bb,f0,9c,64,04,87,ab,31,fb,4b,96,96,f1,59,85,b0,9e,
99,9e,47,9c,c1,8c,0b,2c,10,97,de,b5,dd,79,d0,43,db,de,d2,c8,16,6d,24,c3,27,\
"rkeysecu"=hex:8f,34,89,ef,f8,db,2a,89,fa,ae,69,e4,de,5f,7f,67
.
Celkový čas: 2010-01-28 22:54:41
ComboFix-quarantined-files.txt 2010-01-28 21:54
ComboFix2.txt 2009-11-13 20:36
Před spuštěním: 4 469 809 152
Po spuštění: 4 595 408 896
- - End Of File - - 412C8A463F9238212911A3EC283DC3F2
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1518 [GMT 1:00]
Spuštěný z: c:\documents and settings\Martin Palica\Plocha\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezidentní štít AV je zapnutý
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Martin Palica\Dokumenty\cc_20091113_224149.reg
H:\Autorun.inf
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-28 )))))))))))))))))))))))))))))))
.
2010-01-28 21:27 . 2010-01-29 04:02 -------- d-----w- C:\32788R22FWJFW
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-28 21:36 . 2004-08-18 10:00 529726 ----a-w- c:\windows\system32\perfh005.dat
2010-01-28 21:36 . 2004-08-18 10:00 120926 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 12:21 . 2008-02-01 08:53 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-01-19 13:32 . 2008-02-01 09:26 30789 ----a-w- c:\windows\system32\nvModes.dat
2010-01-13 17:30 . 2009-11-12 17:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-07 15:07 . 2009-11-12 17:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2009-11-12 17:39 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-06 10:29 . 2008-03-27 15:48 -------- d-----w- c:\program files\DYNALOG
2009-12-29 18:58 . 2008-02-01 00:45 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-12-29 18:11 . 2009-12-29 18:11 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-12-23 22:16 . 2008-05-17 11:19 -------- d-----w- c:\program files\Google
2009-12-21 19:08 . 2006-03-04 03:35 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-20 17:11 . 2009-12-20 17:11 -------- d-----w- c:\program files\deepinvent
2009-12-20 02:10 . 2009-12-19 13:03 -------- d-----w- c:\program files\Windows Desktop Search
2009-12-19 07:15 . 2009-12-18 21:40 -------- d-----w- c:\program files\Microsoft Works
2009-12-18 21:40 . 2009-03-14 18:44 -------- d-----w- c:\program files\MSBuild
2009-12-18 21:38 . 2009-10-01 13:45 -------- d-----w- c:\program files\Microsoft.NET
2009-12-18 21:35 . 2009-12-18 21:35 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-12-18 19:46 . 2009-12-18 19:46 -------- d-----w- c:\program files\Seagate
2009-12-10 23:01 . 2008-02-01 09:03 -------- d-----w- c:\program files\ROZ
2009-12-10 23:01 . 2008-02-01 08:54 -------- d-----w- c:\program files\PRO100
2009-12-02 09:35 . 2009-10-01 13:33 -------- d-----w- c:\program files\Microsoft SQL Server
2009-11-30 08:30 . 2009-11-30 08:30 -------- d-----w- c:\program files\ParallelGraphics
2009-11-30 08:29 . 2009-11-30 08:29 -------- d-----w- c:\program files\TeamViewer
2009-11-30 08:15 . 2009-03-14 18:47 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2009-11-30 08:08 . 2009-11-30 08:08 -------- d-----w- c:\program files\Common Files\ParallelGraphics
2009-11-21 16:03 . 2004-08-18 10:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-05 23:09 . 2004-08-18 10:00 1034240 ------w- c:\windows\explorer.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-10-02 1124352]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2009-08-27 247144]
"c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe"="c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe" [2009-09-17 199592]
"c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe"="c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.1.0\install.exe" [2009-04-30 247720]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 7\PcSync2.exe" [2008-06-17 1249280]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2007-12-07 21686568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2007-04-17 159744]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"Dell QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2007-02-20 1191936]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-28 81920]
"IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2007-02-21 819200]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-02-21 970752]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-30 148888]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"IJNetworkScanUtility"="c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE" [2007-05-20 124512]
"CnOServerLauncher"="CNOServerLauncher.exe" [2009-01-08 106496]
"Bubble"="c:\program files\Windows SteadyState\Bubble.exe" [2008-05-30 182288]
"Logoff"="c:\program files\Windows SteadyState\SCTUINotify.exe" [2008-05-30 163856]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-10-09 520024]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-05-01 185640]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-01-07 429392]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-10-07 1461080]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"HideFastUserSwitching"= 1 (0x1)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lavasoft ad-aware service]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\windows steadystate]
@="Service"
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^adobe acrobat speed launcher.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
backup=c:\windows\pss\Adobe Acrobat Speed Launcher.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^intervideo wincinema manager.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^lotus organizer easyclip.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Lotus Organizer EasyClip.lnk
backup=c:\windows\pss\Lotus Organizer EasyClip.lnkCommon Startup
[HKLM\~\startupfolder\c:^documents and settings^all users^nabídka start^programy^po spuštění^microsoft office.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\acrobat assistant 7.0]
2006-01-12 19:52 483328 ----a-w- c:\program files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-04-28 18:05 1626112 ----a-w- c:\windows\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pc suite tray]
2008-10-02 06:00 1124352 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\quicktime task]
2008-03-28 21:37 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\InterVideo\\DVD6\\WinDVD.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\deepinvent\\MailStore Home\\MailStoreLocal.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 DRVMCDB;DRVMCDB;c:\windows\system32\drivers\DRVMCDB.SYS [7.2.2008 18:05 99176]
R0 lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [25.6.2009 16:55 64160]
R1 APPDRV;APPDRV;c:\windows\system32\drivers\APPDRV.SYS [1.2.2008 02:03 16128]
R1 DLACDBHM;DLACDBHM;c:\windows\system32\drivers\DLACDBHM.SYS [7.2.2008 18:05 12920]
R1 DLARTL_M;DLARTL_M;c:\windows\system32\drivers\DLARTL_M.SYS [7.2.2008 18:05 28184]
R1 easdrv;easdrv;c:\windows\system32\drivers\easdrv.sys [18.8.2008 12:19 54184]
R1 epfwtdi;epfwtdi;c:\windows\system32\drivers\epfwtdi.sys [18.8.2008 12:27 55256]
R1 Tosrfcom;Bluetooth RFCOMM;c:\windows\system32\drivers\tosrfcom.sys [6.2.2008 19:59 64000]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI;c:\windows\system32\drivers\wmiacpi.sys [25.6.2009 20:46 8832]
R2 Apple Mobile Device;Apple Mobile Device;c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [18.2.2008 10:16 110592]
R2 atksgt;atksgt;c:\windows\system32\drivers\atksgt.sys [9.3.2009 22:06 278728]
R2 DLABMFSM;DLABMFSM;c:\windows\system32\DLA\DLABMFSM.SYS [7.2.2008 18:05 35096]
R2 DLABOIOM;DLABOIOM;c:\windows\system32\DLA\DLABOIOM.SYS [7.2.2008 18:05 32472]
R2 DLADResM;DLADResM;c:\windows\system32\DLA\DLADResM.SYS [7.2.2008 18:05 9400]
R2 DLAIFS_M;DLAIFS_M;c:\windows\system32\DLA\DLAIFS_M.SYS [7.2.2008 18:05 104472]
R2 DLAOPIOM;DLAOPIOM;c:\windows\system32\DLA\DLAOPIOM.SYS [7.2.2008 18:05 26008]
R2 DLAPoolM;DLAPoolM;c:\windows\system32\DLA\DLAPoolM.SYS [7.2.2008 18:05 14520]
R2 DLAUDF_M;DLAUDF_M;c:\windows\system32\DLA\DLAUDF_M.SYS [7.2.2008 18:05 97848]
R2 DLAUDFAM;DLAUDFAM;c:\windows\system32\DLA\DLAUDFAM.SYS [7.2.2008 18:05 94648]
R2 DRVNDDM;DRVNDDM;c:\windows\system32\drivers\DRVNDDM.SYS [7.2.2008 18:05 51768]
R2 eamon;EAMON;c:\windows\system32\drivers\eamon.sys [18.8.2008 12:18 40824]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [7.10.2009 09:16 472280]
R2 epfw;epfw;c:\windows\system32\drivers\epfw.sys [18.8.2008 12:27 73760]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [1.5.2009 14:35 181544]
R2 Hardlock;Hardlock;c:\windows\system32\drivers\hardlock.sys [30.11.2009 09:16 693760]
R2 JavaQuickStarterService;Java Quick Starter;c:\program files\Java\jre6\bin\jqs.exe [30.7.2009 21:38 152984]
R2 lavasoft ad-aware service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [9.3.2009 20:06 1028432]
R2 lirsgt;lirsgt;c:\windows\system32\drivers\lirsgt.sys [9.3.2009 22:06 25416]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [12.11.2009 18:39 236368]
R2 MSSQL$SPRINXCRM;SQL Server (SPRINXCRM);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [27.5.2009 02:27 29262680]
R2 NICCONFIGSVC;NICCONFIGSVC;c:\program files\Dell\QuickSet\NicConfigSvc.exe [1.2.2008 02:04 475136]
R2 NVSvc;NVIDIA Display Driver Service;c:\windows\system32\nvsvc32.exe [1.2.2008 10:26 163908]
R2 PnkBstrA;PnkBstrA;c:\windows\system32\PnkBstrA.exe [26.9.2008 18:28 75064]
R2 PnkBstrB;PnkBstrB;c:\windows\system32\PnkBstrB.exe [26.9.2008 18:28 189072]
R2 port_nt;port_nt;c:\windows\system32\drivers\port_nt.sys [1.2.2008 10:03 3608]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service;c:\program files\Intel\Wireless\Bin\RegSrvc.exe [21.2.2007 11:10 327680]
R2 s24trans;WLAN Transport;c:\windows\system32\drivers\s24trans.sys [21.2.2007 11:16 12416]
R2 SQLBrowser;SQL Server Browser;c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [25.11.2008 07:31 239968]
R2 SQLWriter;SQL Server VSS Writer;c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe [24.11.2008 21:31 87904]
R2 STacSV;SigmaTel Audio Service;c:\program files\SigmaTel\C-Major Audio\WDM\stacsv.exe [1.2.2008 01:45 90112]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [27.8.2009 16:05 92008]
R2 windows steadystate;Windows SteadyState Service;c:\program files\Windows SteadyState\SCTSvc.exe [30.5.2008 13:41 115728]
R2 WLANKEEPER;Intel(R) PROSet/Wireless SSO Service;c:\program files\Intel\Wireless\Bin\WLKEEPER.exe [21.2.2007 11:19 294912]
R2 WSearch;Windows Search;c:\windows\system32\searchindexer.exe [26.5.2008 22:18 439808]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista;c:\windows\system32\drivers\Apfiltr.sys [1.2.2008 01:42 132608]
R3 Epfwndis;Eset Personal Firewall;c:\windows\system32\drivers\epfwndis.sys [18.8.2008 12:27 32072]
R3 guardian2;guardian2;c:\windows\system32\drivers\oz776.sys [1.2.2008 11:05 56576]
R3 HSF_DPV;HSF_DPV;c:\windows\system32\drivers\HSF_DPV.sys [1.2.2008 01:47 989696]
R3 HSFHWAZL;HSFHWAZL;c:\windows\system32\drivers\HSFHWAZL.sys [1.2.2008 01:47 209152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [12.11.2009 18:39 19160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit;c:\windows\system32\drivers\NETw4x32.sys [1.2.2008 11:01 2203520]
R3 STHDA;SigmaTel High Definition Audio CODEC;c:\windows\system32\drivers\sthda.sys [1.2.2008 01:45 1228296]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port;c:\windows\system32\drivers\serscan.sys [1.2.2008 14:26 6784]
R3 tosporte;Bluetooth COM Port;c:\windows\system32\drivers\tosporte.sys [6.2.2008 19:59 41600]
S0 cercsr6;cercsr6;c:\windows\system32\drivers\cercsr6.sys [13.12.2004 22:14 39904]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [29.12.2009 19:11 691696]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [19.7.2008 20:11 81920]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [7.7.2009 21:02 133104]
S2 sp_rssrv;Spyware Terminator Realtime Shield Service;c:\program files\Spyware Terminator\sp_rsser.exe [31.12.2008 10:42 487424]
S3 akshasp;Aladdin HASP Key;c:\windows\system32\drivers\akshasp.sys [30.11.2009 09:16 327168]
S3 aksusb;Aladdin USB Key;c:\windows\system32\drivers\aksusb.sys [30.11.2009 09:16 100096]
S3 Autodesk Licensing Service;Autodesk Licensing Service;c:\program files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [14.3.2009 19:55 85096]
S3 EhttpSrv;Eset HTTP Server;c:\program files\ESET\ESET Smart Security\EHttpSrv.exe [7.10.2009 09:21 20680]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [19.7.2008 20:11 2719744]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;c:\program files\Microsoft Office\Office12\GrooveAuditService.exe [25.10.2008 11:44 65888]
S3 Mx-3 B-Cup Service;MX-3 B-Cup XP;c:\windows\system32\Mx-3 B-Cup Service.exe [29.3.2008 14:09 124928]
S3 NdisIP;Microsoft TV/Video Connection;c:\windows\system32\drivers\NdisIP.sys [7.7.2009 11:18 10880]
S3 odserv;Microsoft Office Diagnostics Service;c:\program files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [4.11.2008 01:06 441712]
S3 pccsmcfd;PCCS Mode Change Filter Driver;c:\windows\system32\drivers\pccsmcfd.sys [15.11.2008 11:05 21632]
S3 ServiceLayer;ServiceLayer;c:\program files\PC Connectivity Solution\ServiceLayer.exe [7.8.2008 11:17 575488]
S3 SLIP;BDA Slip De-Framer;c:\windows\system32\drivers\SLIP.sys [7.7.2009 11:18 11136]
S3 stllssvr;stllssvr;c:\program files\Common Files\SureThing Shared\stllssvr.exe [14.9.2006 14:54 73728]
S3 tosrfbd;Bluetooth RFBUS;c:\windows\system32\drivers\tosrfbd.sys [6.2.2008 19:59 113920]
S3 tosrfbnp;Bluetooth RFBNEP;c:\windows\system32\drivers\tosrfbnp.sys [6.2.2008 19:59 36480]
S3 Tosrfhid;Bluetooth RFHID;c:\windows\system32\drivers\Tosrfhid.sys [6.2.2008 19:59 73728]
S3 tosrfnds;Bluetooth Personal Area Network;c:\windows\system32\drivers\tosrfnds.sys [6.2.2008 19:59 18612]
S3 Tosrfusb;Bluetooth USB Controller;c:\windows\system32\drivers\tosrfusb.sys [6.2.2008 19:59 41856]
S3 UIUSys;Conexant Setup API;c:\windows\system32\DRIVERS\UIUSYS.SYS --> c:\windows\system32\DRIVERS\UIUSYS.SYS [?]
S3 usbvm326_W;usbvm326 Wireless Camera;c:\windows\system32\drivers\usbvm326_w.sys [7.7.2009 11:17 195200]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper;c:\program files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [25.11.2008 07:31 45408]
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 19:30]
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 12:57]
2010-01-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-07 20:02]
2010-01-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-07 20:02]
2010-01-28 c:\windows\Tasks\Malwarebytes' Scheduled Scan for Martin Palica.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-11-12 15:07]
2010-01-28 c:\windows\Tasks\Malwarebytes' Scheduled Update for Martin Palica.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-11-12 15:07]
2010-01-28 c:\windows\Tasks\User_Feed_Synchronization-{F9D71386-71BE-487A-9E36-34E1808909E8}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Martin Palica\Data aplikací\Mozilla\Firefox\Profiles\6gr1gw6x.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\documents and settings\Martin Palica\Data aplikací\Mozilla\Firefox\Profiles\6gr1gw6x.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\components\ipc.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npfiller.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-Run-ISUSScheduler - (no file)
HKLM-Run-ISUSPM Startup - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-28 22:48
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-776561741-1993962763-1935655697-1003\Software\SecuROM\License information*]
"datasecu"=hex:88,f0,a6,51,bb,f0,9c,64,04,87,ab,31,fb,4b,96,96,f1,59,85,b0,9e,
99,9e,47,9c,c1,8c,0b,2c,10,97,de,b5,dd,79,d0,43,db,de,d2,c8,16,6d,24,c3,27,\
"rkeysecu"=hex:8f,34,89,ef,f8,db,2a,89,fa,ae,69,e4,de,5f,7f,67
.
Celkový čas: 2010-01-28 22:54:41
ComboFix-quarantined-files.txt 2010-01-28 21:54
ComboFix2.txt 2009-11-13 20:36
Před spuštěním: 4 469 809 152
Po spuštění: 4 595 408 896
- - End Of File - - 412C8A463F9238212911A3EC283DC3F2
-
Rudy
- Site Admin
- Příspěvky: 119402
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé načítání www
2 položky smazány. Tohle znáte: c:\documents and settings\Martin Palica\Data aplikací\Sprinx Systems\SprinxCRM 6.1.3.0\install.exe ?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé načítání www
to byla nějaká demo verze programu - nepotřebuji to
co teď?
co teď?
-
Rudy
- Site Admin
- Příspěvky: 119402
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé načítání www
OK. Můžete to smazat. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé načítání www
děkuji, budu to sledovat, vypadá to že je to lepší.
-
Rudy
- Site Admin
- Příspěvky: 119402
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé načítání www
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?