mam problem s jiz zminenym programkem win 7 home security, jedna se o nejaky falseny antivirus pocitat je strasne pomaly a nedostanu se na zadne webove stranky. Nasel sem ruzne navody take jsem zkousel treba spydoctor, ktery si stim udajne umi poradit coz jak sem zjistil bohuzel neni pravda. Uz nevim jak dal, zadam proto o nejakou radu
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:28:56, on 18.4.2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Free Download Manager\fdm.exe
C:\Users\filuta\AppData\Local\hfy.exe
C:\Program Files (x86)\PC Tools Security\pctsGui.exe
C:\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files (x86)\PC Tools Security\pctsGui.exe" /hideGUI
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files (x86)\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: *.qword.com
O16 - DPF: {55963676-2F5E-4BAF-AC28-CF26AA587566} (Cisco AnyConnect VPN Client Web Control) - https://vpn.upce.cz/CACHE/stc/1/binaries/vpnweb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{170622EF-420E-4E7F-A5CB-5A2002E90A67}: NameServer = 8.8.8.8,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{170622EF-420E-4E7F-A5CB-5A2002E90A67}: NameServer = 8.8.8.8,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\..\{170622EF-420E-4E7F-A5CB-5A2002E90A67}: NameServer = 8.8.8.8,208.67.222.222
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\PC Tools Security\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\PC Tools Security\pctsSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8150 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Update (Weekly).job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-18 43520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
Free Download Manager - C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2011-02-03 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-02-18 41760]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-29 1815848]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-04-07 2839840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Free Download Manager"=C:\Program Files (x86)\Free Download Manager\fdm.exe [2011-02-03 3797039]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2009-07-14 9728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
C:\Users\filuta\AppData\Roaming\QipGuard\QipGuard.exe [2010-06-09 187904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\Steam.exe [2010-11-03 1242448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Java\jre6\bin\jusched.exe [2010-02-18 149280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Canon LBP2900 Status Window.lnk]
C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE [2010-01-13 60384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-03-17 421888]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"ISTray"=C:\Program Files (x86)\PC Tools Security\pctsGui.exe [2010-12-01 1589208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"HideSCAHealth"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.exe - open - "C:\Users\filuta\AppData\Local\hfy.exe" -a "%1" %*
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2011-04-18 21:19:34 ----A---- C:\Windows\system32\drivers\pctEFA64.sys
2011-04-18 21:19:34 ----A---- C:\Windows\system32\drivers\pctDS64.sys
2011-04-18 21:19:33 ----A---- C:\Windows\system32\drivers\pctwfpfilter64.sys
2011-04-18 21:19:33 ----A---- C:\Windows\system32\drivers\pctgntdi64.sys
2011-04-18 21:19:19 ----A---- C:\Windows\system32\drivers\PCTCore64.sys
2011-04-18 21:19:10 ----A---- C:\Windows\system32\drivers\pctplsg64.sys
2011-04-18 21:18:52 ----D---- C:\Users\filuta\AppData\Roaming\PC Tools
2011-04-18 21:18:52 ----D---- C:\ProgramData\PC Tools
2011-04-18 21:18:52 ----D---- C:\Program Files (x86)\PC Tools Security
2011-04-18 20:35:14 ----AD---- C:\ProgramData\TEMP
2011-04-18 19:38:16 ----D---- C:\sh4ldr
2011-04-13 12:55:49 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-04-13 12:55:29 ----A---- C:\Windows\system32\jscript.dll
2011-04-13 12:55:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-04-13 12:55:28 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-04-13 12:55:28 ----A---- C:\Windows\system32\vbscript.dll
2011-04-13 12:55:27 ----A---- C:\Windows\system32\win32k.sys
2011-04-13 12:55:25 ----A---- C:\Windows\system32\mfc42u.dll
2011-04-13 12:55:25 ----A---- C:\Windows\system32\mfc42.dll
2011-04-13 12:55:24 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-04-13 12:55:23 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-04-13 12:55:22 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-04-13 12:55:22 ----A---- C:\Windows\system32\drivers\srv.sys
2011-04-13 12:55:21 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-04-13 12:55:21 ----A---- C:\Windows\system32\atmfd.dll
2011-04-13 12:55:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-04-13 12:55:20 ----A---- C:\Windows\system32\atmlib.dll
2011-04-13 12:55:19 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-04-13 12:55:17 ----A---- C:\Windows\system32\mshtml.dll
2011-04-13 12:55:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-04-13 12:55:16 ----A---- C:\Windows\system32\ieframe.dll
2011-04-13 12:55:10 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-04-13 12:55:05 ----A---- C:\Windows\system32\urlmon.dll
2011-04-13 12:55:03 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-04-13 12:55:03 ----A---- C:\Windows\system32\wininet.dll
2011-04-13 12:54:59 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-04-13 12:54:59 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-04-13 12:54:59 ----A---- C:\Windows\system32\iedkcs32.dll
2011-04-13 12:54:58 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-04-13 12:54:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-04-13 12:54:58 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-04-13 12:54:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-04-13 12:54:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\mstime.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\mshtmled.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\msfeeds.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\ieui.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\iertutil.dll
2011-04-13 12:54:58 ----A---- C:\Windows\system32\iepeers.dll
2011-04-13 12:54:57 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-04-13 12:54:57 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-04-13 12:54:57 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-04-13 12:54:57 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-04-13 12:54:57 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-04-13 12:54:57 ----A---- C:\Windows\system32\msfeedssync.exe
2011-04-13 12:54:57 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-04-13 12:54:57 ----A---- C:\Windows\system32\licmgr10.dll
2011-04-13 12:54:57 ----A---- C:\Windows\system32\jsproxy.dll
2011-04-13 12:54:43 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-04-13 12:54:43 ----A---- C:\Windows\system32\dnsapi.dll
2011-04-13 12:54:42 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-04-13 12:54:42 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-04-13 12:54:42 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-04-13 12:54:40 ----A---- C:\Windows\system32\winresume.exe
2011-04-13 12:54:40 ----A---- C:\Windows\system32\winload.exe
2011-04-13 12:54:39 ----A---- C:\Windows\system32\kdusb.dll
2011-04-13 12:54:39 ----A---- C:\Windows\system32\kdcom.dll
2011-04-13 12:54:39 ----A---- C:\Windows\system32\kd1394.dll
2011-04-13 12:54:37 ----A---- C:\Windows\system32\inetcomm.dll
2011-04-13 12:54:36 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-04-13 12:54:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-04-13 12:54:34 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-04-13 12:54:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-04-13 12:54:34 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-04-12 19:24:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-04-12 19:05:28 ----D---- C:\Program Files\CCleaner
2011-04-12 18:50:12 ----D---- C:\Program Files (x86)\Trend Micro
2011-04-12 18:41:44 ----D---- C:\Program Files\trend micro
2011-04-12 18:41:43 ----D---- C:\rsit
2011-04-12 14:34:03 ----D---- C:\ProgramData\ICQ
2011-03-28 23:27:54 ----A---- C:\Windows\FRED2.INI
2011-03-28 23:18:00 ----A---- C:\Windows\IsUninst.exe
2011-03-28 16:51:44 ----D---- C:\Users\filuta\AppData\Roaming\Free Download Manager
2011-03-28 16:51:42 ----D---- C:\ProgramData\FreeDownloadManager.ORG
======List of files/folders modified in the last 1 months======
2011-04-18 23:08:52 ----D---- C:\Windows\Temp
2011-04-18 23:02:01 ----D---- C:\Windows\system32\config
2011-04-18 21:19:35 ----SHD---- C:\System Volume Information
2011-04-18 21:19:34 ----D---- C:\Windows\system32\drivers
2011-04-18 21:19:02 ----SHD---- C:\Windows\Installer
2011-04-18 21:19:01 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-04-18 21:18:52 ----RD---- C:\Program Files (x86)
2011-04-18 21:18:52 ----HD---- C:\ProgramData
2011-04-18 21:18:52 ----D---- C:\Program Files (x86)\Common Files
2011-04-18 21:17:35 ----D---- C:\Windows
2011-04-18 20:51:39 ----D---- C:\Windows\system32\Tasks
2011-04-18 20:34:55 ----D---- C:\Windows\Prefetch
2011-04-18 20:07:56 ----RD---- C:\Users
2011-04-18 19:38:19 ----D---- C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2011-04-18 19:37:04 ----D---- C:\Windows\debug
2011-04-18 18:47:36 ----D---- C:\Windows\SysWOW64
2011-04-18 18:47:32 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2011-04-18 16:10:52 ----D---- C:\Users\filuta\AppData\Roaming\vlc
2011-04-18 10:30:21 ----D---- C:\Users\filuta\AppData\Roaming\dvdcss
2011-04-17 10:24:03 ----D---- C:\Windows\system32\NDF
2011-04-13 20:43:58 ----D---- C:\Windows\pss
2011-04-13 15:57:27 ----D---- C:\Windows\Microsoft.NET
2011-04-13 15:57:19 ----RSD---- C:\Windows\assembly
2011-04-13 15:06:12 ----D---- C:\Windows\winsxs
2011-04-13 15:04:31 ----D---- C:\Windows\System32
2011-04-13 15:04:30 ----D---- C:\Windows\SYSWOW64\migration
2011-04-13 15:04:30 ----D---- C:\Windows\system32\migration
2011-04-13 15:04:30 ----D---- C:\Windows\system32\Boot
2011-04-13 15:04:30 ----D---- C:\Program Files\Internet Explorer
2011-04-13 15:04:30 ----D---- C:\Program Files (x86)\Internet Explorer
2011-04-13 15:02:03 ----D---- C:\Windows\system32\catroot
2011-04-13 14:58:55 ----A---- C:\Windows\system32\MRT.exe
2011-04-13 12:54:31 ----D---- C:\Windows\system32\catroot2
2011-04-13 09:49:05 ----D---- C:\Windows\inf
2011-04-13 09:49:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-12 19:24:34 ----D---- C:\Users\filuta\AppData\Roaming\Mozilla
2011-04-12 19:05:28 ----RD---- C:\Program Files
2011-04-12 18:55:00 ----D---- C:\Program Files (x86)\Steam
2011-04-12 18:54:49 ----D---- C:\Windows\Minidump
2011-04-12 14:34:05 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-04-10 17:34:50 ----SD---- C:\Users\filuta\AppData\Roaming\Microsoft
2011-04-06 20:55:47 ----D---- C:\Users\filuta\AppData\Roaming\SQL Developer
2011-03-28 16:51:43 ----D---- C:\Program Files (x86)\Free Download Manager
2011-03-23 13:56:46 ----D---- C:\Users\filuta\AppData\Roaming\BITS
2011-03-20 23:55:04 ----D---- C:\Program Files\NetBeans 6.7.1
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]
R0 PCTCore;PCTools KDS; C:\Windows\system32\drivers\PCTCore64.sys [2010-11-25 257232]
R0 pctDS;PC Tools Data Store; C:\Windows\system32\drivers\pctDS64.sys [2010-06-29 452872]
R0 pctEFA;PC Tools Extended File Attributes; C:\Windows\system32\drivers\pctEFA64.sys [2010-07-16 816016]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a); C:\Windows\System32\drivers\sfdrv01a.sys [2009-02-03 77432]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\Windows\System32\drivers\sfhlp02.sys [2006-06-14 14192]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\Windows\System32\drivers\sfvfs02.sys [2007-02-08 107384]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-02-18 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-04-07 139704]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 85424]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2010-10-08 203024]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2010-10-08 53968]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-04-07 163888]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-04-07 124760]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-29 274480]
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2010-10-08 164304]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 vflt;Shrew Soft Lightweight Filter; C:\Windows\system32\DRIVERS\vfilter.sys [2010-09-02 21504]
S3 ay2bag16;ay2bag16; C:\Windows\system32\drivers\ay2bag16.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 esgiguard;esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [2010-01-27 5248]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-12-29 34120]
S3 kvpndev;Kerio VPN adapter; C:\Windows\system32\DRIVERS\kvpndrv.sys [2008-01-16 73216]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35344]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2010-10-08 144784]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 vnet;Shrew Soft Virtual Adapter; C:\Windows\system32\DRIVERS\virtualnet.sys [2010-09-02 17408]
S3 vpnva;Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64; C:\Windows\system32\DRIVERS\vpnva64.sys [2009-12-18 24248]
S3 WINIO;WINIO; \??\C:\Windows\syswow64\winio.sys [2001-11-13 41324]
S3 zebratap;NeoRouter Network Interface; C:\Windows\system32\DRIVERS\zebratap.sys [2009-03-29 29696]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-04-07 810120]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-15 75136]
R2 sdAuxService;PC Tools Auxiliary Service; C:\Program Files (x86)\PC Tools Security\pctsAuxs.exe [2010-03-15 366840]
R2 sdCoreService;PC Tools Security Service; C:\Program Files (x86)\PC Tools Security\pctsSvc.exe [2010-11-19 1150936]
R2 SpyHunter 4 Service;SpyHunter 4 Service; C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [2010-05-18 327064]
R2 vpnagent;Cisco AnyConnect VPN Agent; C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2009-12-18 497856]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-04-07 42336]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2009-07-16 316664]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-07 4466688]
-----------------EOF-----------------
Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit
Přispějete na provoz fóra?