na přenosných discích se mi začaly objevovat soubory autorun.inf s obsahem:
Kód: Vybrat vše
[autorun]
shell=verb
open=windows.exe
action=Open folder to view files
shell\open=Open
icon=%SystemRoot%\system32\SHELL32.dll,4
Mám NOD32, bohužel nepomáhá. Ad-Aware také ne. Neuměl by prosím někdo poradit?
Po smazání souborů se při práci s diskem objeví znovu.
Logfile of random's system information tool 1.07 (written by random/random)
Run by KARAS at 2010-05-11 16:50:13
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 648 MB (3%) free of 20 GB
Total RAM: 2271 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:50:58, on 11.5.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Cisco Systems\SSL VPN Client\agent.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lkads.exe
C:\WINDOWS\system32\lktsrv.exe
D:\PROGRAMY\PADSINSTAL\9.1PADS\SDD_HOME\iCDB\win32\bin\iCDBNetLauncher.exe
C:\Program Files\National Instruments\MAX\nimxs.exe
C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
C:\WINDOWS\system32\nisvcloc.exe
C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Documents and Settings\KARAS\Data aplikací\Microsoft\windows.exe
C:\WINDOWS\system32\wuauclt.exe
D:\PROGRAMY\TOTALCMD\TOTALCMD.EXE
D:\PROGRAMY\_IMAGES\ALTIUM_SUMMER_09\Altium Designer Summer 09.exe
D:\PROGRAMY\Psi\psi.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\KARAS\Plocha\ZÁPLATA\RSIT.exe
C:\Program Files\trend micro\KARAS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neobux.com/?u=v
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [VSPDXP] C:\Program Files\VSPD XP\vspdconfig.exe /quiet
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [365dni] C:\Program Files\365dníNET\365dniNET.exe
O4 - HKCU\..\Run: [windows.exe] C:\Documents and Settings\KARAS\Data aplikací\Microsoft\windows.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: CyMiniProg3Service - Cypress Semiconductor - C:\Program Files\Cypress\Programmer\3.11\Service\CyMiniProg3Service.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\WINDOWS\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\WINDOWS\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\WINDOWS\system32\lktsrv.exe
O23 - Service: Remote Server Configuration Manager 2007.8 (MGC.SDD.RSCM.2007.8) - Mentor Graphics Corporation - D:\PROGRAMY\PADSINSTAL\9.1PADS\SDD_HOME\iCDB\win32\bin\iCDBNetLauncher.exe
O23 - Service: NI Configuration Manager (mxssvr) - National Instruments Corporation - C:\Program Files\National Instruments\MAX\nimxs.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NILM License Manager - Macrovision Corporation - C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\WINDOWS\system32\nisvcloc.exe
O23 - Service: National Instruments Variable Engine (NITaggerService) - National Instruments Corporation - C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
O23 - Service: OpcEnum - OPC Foundation - C:\WINDOWS\system32\OpcEnum.exe
O23 - Service: Cisco Systems, Inc. STC Agent (STCAgent) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\SSL VPN Client\agent.exe
--
End of file - 7779 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\CypressUpdateManager.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-19 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-02-19 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-10-24 1451264]
"VSPDXP"=C:\Program Files\VSPD XP\vspdconfig.exe [2003-11-13 974848]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-02-15 417792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
"365dni"=C:\Program Files\365dníNET\365dniNET.exe [2007-01-06 753664]
"windows.exe"=C:\Documents and Settings\KARAS\Data aplikací\Microsoft\windows.exe [2010-01-21 192512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Meebo Notifier]
C:\Documents and Settings\KARAS\Local Settings\Data aplikací\Meebo\Meebo Notifier\MeeboNotifier.exe [2009-06-06 790528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe /background []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\WINDOWS\system32\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\pdfforge Toolbar\SearchSettings.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-08-07 573440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2009-04-10 37888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wireless Console 2]
C:\Program Files\Wireless Console 2\wcourier.exe [2006-11-29 1011712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Update Scheduler for Proteus Professional 7.lnk]
C:\PROGRA~1\LABCEN~1\PROTEU~1\BIN\UDSCHED.EXE Proteus Professional 7 []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-07-04 118784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\PROGRAMY\Psi\psi.exe"="D:\PROGRAMY\Psi\psi.exe:*:Enabled:psi"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"D:\PROGRAMY\TOTALCMD\TOTALCMD.EXE"="D:\PROGRAMY\TOTALCMD\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\PROGRAMY\_IMAGES\ALTIUM_SUMMER_09\Altium Designer Summer 09.exe"="D:\PROGRAMY\_IMAGES\ALTIUM_SUMMER_09\Altium Designer Summer 09.exe:*:Enabled:Altium Designer Summer 09"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{704ff5cd-b307-11de-879e-0015af2f0ad2}]
shell\AutoRun\command - WDSetup.exe
======File associations======
.scr - open - "C:\WINDOWS\notepad.exe" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2010-05-11 16:50:17 ----D---- C:\Program Files\trend micro
2010-05-11 16:50:13 ----D---- C:\rsit
2010-05-11 15:45:10 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2010-05-11 15:44:42 ----D---- C:\Program Files\Lavasoft
2010-05-11 15:44:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-05-10 22:47:46 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2010-05-10 22:46:52 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-05-03 15:37:12 ----A---- C:\WINDOWS\DAINA.INI
2010-05-03 15:37:11 ----D---- C:\CARMS
2010-04-27 15:31:47 ----D---- C:\DO~QTNB9
2010-04-21 22:34:47 ----D---- C:\Program Files\Cherry Dolls
2010-04-17 19:00:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\pads
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\w95inf32.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\w95inf16.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\odbctl32.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\msxbse35.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\mstext35.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\msrepl35.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\msrd2x35.dll
2010-04-17 18:54:15 ----RA---- C:\WINDOWS\system32\mspdox35.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\VBAR332.DLL
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\vb5db.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2l2000.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fxls.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fwordw.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fwks.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2ftext.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fsepv.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2frtf.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2frec.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2frdef.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fhtml.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fdif.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2fcr.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2dvim.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2dpost.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2dnotes.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2dmapi.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2ddisk.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\u2dapp.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\sscsdk32.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\msjter35.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\msjint35.dll
2010-04-17 18:54:14 ----RA---- C:\WINDOWS\system32\dao350.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\pg32.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\p2sodbc.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\p2irdao.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\p2ctdao.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\p2bdao.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\p2bbnd.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\oc30.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\msexcl35.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\implode.dll
2010-04-17 18:54:13 ----RA---- C:\WINDOWS\system32\gswdll32.dll
2010-04-17 18:54:13 ----A---- C:\WINDOWS\system32\msjet35.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\gsw32.exe
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\dzactx.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\duzactx.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\crpe32.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\crpaig32.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\co2c40en.dll
2010-04-17 18:54:12 ----RA---- C:\WINDOWS\system32\ccsdk32.dll
2010-04-17 18:54:10 ----RA---- C:\WINDOWS\system32\Dwspy32.dll
2010-04-17 18:54:10 ----RA---- C:\WINDOWS\system32\CMDLGD6.dll
2010-04-17 18:53:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\mgc
2010-04-17 18:17:29 ----D---- C:\temp
2010-04-17 18:16:49 ----D---- C:\MentorGraphics
======List of files/folders modified in the last 1 months======
2010-05-11 16:50:18 ----D---- C:\WINDOWS\Temp
2010-05-11 16:50:17 ----RD---- C:\Program Files
2010-05-11 16:50:14 ----D---- C:\WINDOWS\Prefetch
2010-05-11 16:21:21 ----D---- C:\Program Files\Mozilla Thunderbird
2010-05-11 16:00:45 ----D---- C:\WINDOWS\system32\CatRoot2
2010-05-11 15:57:48 ----SD---- C:\WINDOWS\Tasks
2010-05-11 15:53:00 ----A---- C:\WINDOWS\WINCMD.INI
2010-05-11 15:51:57 ----D---- C:\Documents and Settings\KARAS\Data aplikací\365dni
2010-05-11 15:51:12 ----D---- C:\WINDOWS
2010-05-11 15:49:41 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-05-11 15:49:00 ----D---- C:\WINDOWS\system32\drivers
2010-05-11 15:48:58 ----HD---- C:\WINDOWS\inf
2010-05-11 15:48:36 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-05-11 15:45:15 ----SHD---- C:\WINDOWS\Installer
2010-05-11 15:44:35 ----D---- C:\WINDOWS\WinSxS
2010-05-10 22:49:37 ----D---- C:\WINDOWS\system32
2010-05-10 22:48:25 ----D---- C:\Documents and Settings\KARAS\Data aplikací\uTorrent
2010-05-10 22:47:56 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-05-10 22:47:43 ----HD---- C:\WINDOWS\$hf_mig$
2010-05-10 22:47:30 ----D---- C:\WINDOWS\system32\CatRoot
2010-05-10 22:47:14 ----A---- C:\WINDOWS\imsins.BAK
2010-05-10 21:19:21 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-05-10 21:19:17 ----D---- C:\Program Files\ESET
2010-05-10 21:03:55 ----SD---- C:\Documents and Settings\KARAS\Data aplikací\Microsoft
2010-05-09 21:03:03 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-05-06 19:16:30 ----D---- C:\WINDOWS\Minidump
2010-05-06 18:51:43 ----A---- C:\moduleName.txt
2010-05-01 19:40:53 ----A---- C:\WINDOWS\NeroDigital.ini
2010-05-01 19:21:36 ----HD---- C:\Program Files\InstallShield Installation Information
2010-05-01 19:13:39 ----D---- C:\Program Files\Cypress
2010-04-19 20:42:51 ----D---- C:\Program Files\Mozilla Firefox
2010-04-17 18:54:10 ----RSD---- C:\WINDOWS\Fonts
2010-04-17 18:54:10 ----D---- C:\Program Files\Mentor Graphics
2010-04-17 18:51:39 ----D---- C:\WINDOWS\Downloaded Installations
2010-04-17 16:23:16 ----RSD---- C:\WINDOWS\assembly
2010-04-17 16:23:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-17 16:23:12 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-17 16:23:06 ----A---- C:\WINDOWS\vbaddin.ini
2010-04-17 16:22:08 ----A---- C:\WINDOWS\ODBC.INI
2010-04-13 17:39:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-10-24 53256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-10-24 34824]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 39936]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-06-12 56108]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CDAC15BA.SYS []
R2 cvintdrv;cvintdrv; C:\WINDOWS\system32\drivers\cvintdrv.sys [2008-04-07 4096]
R2 DS1410D;DS1410D; C:\WINDOWS\SYSTEM32\drivers\DS1410D.SYS [2004-03-24 6689]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2008-10-24 39944]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 Haspnt;Haspnt; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2002-12-17 76288]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2006-12-05 529344]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS []
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-07-04 2304000]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 evserial;Virtual Serial Ports Driver (Eltima Softwate); C:\WINDOWS\System32\DRIVERS\evserial.sys [2007-06-22 51616]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-08-07 980608]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-03-02 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-03-02 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-03-02 17024]
R3 VSBC;Virtual Serial Bus Enumerator (Eltima Software); C:\WINDOWS\system32\DRIVERS\evsbc.sys [2007-06-22 25120]
R3 vsbus;Virtual Serial Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vsb.sys [2003-10-07 18167]
S2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
S2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
S2 SSIPDDP;SSIPDDP; \??\C:\WINDOWS\system32\drivers\SSIPDDP.SYS []
S3 AltiumUSBJtag;AltiumUSBJtag; C:\WINDOWS\System32\Drivers\AltiumUSBJtag.sys [2009-08-16 29184]
S3 CSVirtA;Cisco Systems SSL VPN Adapter; C:\WINDOWS\system32\DRIVERS\CSVirtA.sys [2009-05-18 22136]
S3 DKRtWrt;DKRtWrt; C:\WINDOWS\system32\DRIVERS\DKRtWrt.sys [2009-10-21 45232]
S3 FTDIBUS;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2009-10-22 57800]
S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2009-10-22 72520]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
S3 MCHPUSB;MCHPUSB; C:\WINDOWS\system32\DRIVERS\iqrfusb.sys [2007-12-19 53760]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
S3 PSoCUSB;USB Driver for MiniProg1; C:\WINDOWS\System32\Drivers\Cypress\Mprog1\PSoCUSB.sys [2009-10-16 39480]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2006-03-02 67584]
S3 Ser2pl;Prolific2 Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2009-01-14 50176]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 Sntnlusb;Rainbow USB SuperPro; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2002-12-17 26120]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 usbser;USB RS-232 Emulation Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2004-08-03 25600]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 VSerial;ELTIMA Virtual Serial Ports Driver; C:\WINDOWS\System32\DRIVERS\vserial.sys [2003-11-12 47104]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-07-04 483328]
R2 C-DillaCdaC11BA;C-DillaCdaC11BA; C:\WINDOWS\system32\drivers\CDAC11BA.EXE [2009-05-31 54784]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2009-10-23 1732960]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-10-24 468224]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-02-19 153376]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-05-11 1291544]
R2 lkClassAds;National Instruments PSP Server Locator; C:\WINDOWS\system32\lkads.exe [2009-06-18 42544]
R2 lkTimeSync;National Instruments Time Synchronization; C:\WINDOWS\system32\lktsrv.exe [2009-06-18 53296]
R2 MGC.SDD.RSCM.2007.8;Remote Server Configuration Manager 2007.8; D:\PROGRAMY\PADSINSTAL\9.1PADS\SDD_HOME\iCDB\win32\bin\iCDBNetLauncher.exe [2009-12-16 1445888]
R2 mxssvr;NI Configuration Manager; C:\Program Files\National Instruments\MAX\nimxs.exe [2009-06-15 12696]
R2 NIDomainService;National Instruments Domain Service; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [2009-06-18 356912]
R2 niSvcLoc;NI Service Locator; C:\WINDOWS\system32\nisvcloc.exe [2009-06-04 13896]
R2 NITaggerService;National Instruments Variable Engine; C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe [2009-06-23 740968]
R2 STCAgent;Cisco Systems, Inc. STC Agent; C:\Program Files\Cisco Systems\SSL VPN Client\agent.exe [2009-05-18 259128]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S2 NOD32FiXTemDono;Eset Nod32 Boot; C:\WINDOWS\system32\regedt32.exe [2006-03-02 3584]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 CyMiniProg3Service;CyMiniProg3Service; C:\Program Files\Cypress\Programmer\3.11\Service\CyMiniProg3Service.exe [2010-03-19 94208]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-10-24 19200]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LkCitadelServer;Lookout Citadel Server; C:\WINDOWS\system32\lkcitdl.exe [2008-10-31 695136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NILM License Manager;NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2009-09-18 1007616]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 OpcEnum;OpcEnum; C:\WINDOWS\system32\OpcEnum.exe [2009-06-03 98304]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Vložte do PC všechny flash disky, které používáte.
Přispějete na provoz fóra?