Re: Zmrzne PC
Napsal: 15 čer 2012 17:20
No tak som to spravil ale ta chyba stale pretrvava tak ze neboli dalsie instrukcie tak posielam log.
Inac dakujem za trpezlivost,len uz zacinam pochybovat ci ten hlavny problem vyriešime.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2012-06-15 18:16:50
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 12 GB (47%) free of 25 GB
Total RAM: 511 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:16:56, on 15. 6. 2012
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\cisvc.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\UAService7.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\msdtc.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINNT\system32\internat.exe
D:\Program Files\Hudba 2\Acount 8.7\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ig?hl=sk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=proxy-01-03:8080;gopher=proxy-01-03:8080;http=proxy-01-03:8080;https=proxy-01-03:8080
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [Style] D:\ICQ 5.4 build2321\ICQLite\IM In Style\Style.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [wcmdmgr] C:\WINNT\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Startup: HDDlife.lnk = D:\Program Files\HDD live\HDDlife.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Download All Links with IDM - D:\Programy\Internet Download Manager 5.03\Idm\Crack\IEGetAll.htm
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: Download vybraný programom Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download with IDM - D:\Programy\Internet Download Manager 5.03\Idm\Crack\IEExt.htm
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Stiahnuť programom FDM - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stiahnuť všetko programom FDM - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINNT\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINNT\system32\shdocvw.dll
O9 - Extra button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra 'Tools' menuitem: Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - D:\Program Files\Graficke editory\Novy prezerač\Ebay\Ebay.htm (file missing)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 9724568906
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINNT\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINNT\system32\ati2sgag.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINNT\System32\UAService7.exe
O24 - Desktop Component 0: (no name) - C:\Documents and Settings\Administrator\Dokumenty\Obrázky\___13.jpg
--
End of file - 8491 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\Ad-Aware Update (Weekly).job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdmcks.dll [2006-08-10 81920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-03-30 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-03-30 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Synchronization Manager"=mobsync.exe /logon []
"NeroFilterCheck"=C:\WINNT\s [2008-06-15 34]
""= []
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2006-04-10 921600]
"Style"=D:\ICQ 5.4 build2321\ICQLite\IM In Style\Style.exe []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-01 282624]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe [2007-09-04 54576]
"LVCOMSX"=C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe [2007-02-06 252704]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"wcmdmgr"=C:\WINNT\wt\updater\wcmdmgrl.exe -launch []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-03 37296]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-04-04 462408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"internat.exe"=C:\WINNT\system32\internat.exe [2000-03-20 20752]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2004-09-22 1871872]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe /background []
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2007-09-04 95536]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
InterVideo WinCinema Manager.lnk - C:\Common\Bin\WinCinemaMgr.exe
ATI CATALYST System Tray.lnk - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
HDDlife.lnk - D:\Program Files\HDD live\HDDlife.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINNT\system32\Ati2evxx.dll [2004-11-24 94208]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wavemapper"=msacm32.drv
"msacm.lhacm"=lhacm.acm
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"VIDC.I420"=msh263.drv
"msacm.iac2"=C:\WINNT\System32\iac25_32.ax
"aux"=mmdrv.dll
"wave1"=
"wave2"=
"wave3"=
"wave4"=
"wave5"=
"wave6"=
"wave7"=
"wave8"=
"wave9"=
"midi1"=
"midi2"=
"midi3"=
"midi4"=
"midi5"=
"midi6"=
"midi7"=
"midi8"=
"midi9"=
"aux1"=
"aux2"=
"aux3"=
"aux4"=
"aux5"=
"aux6"=
"aux7"=
"aux8"=
"aux9"=
"mixer1"=
"mixer2"=
"mixer3"=
"mixer4"=
"mixer5"=
"mixer6"=
"mixer7"=
"mixer8"=
"mixer9"=
"wdmaud.drv"=wdmaud.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.l3acm"=C:\WINNT\system32\l3codeca.acm
"msacm.msaudio1"=msaud32.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"VIDC.IV41"=IR41_32.AX
"VIDC.VDOM"=vdowave.drv
"msacm.sl_anet"=sl_anet.acm
"vidc.xvid"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.VP60"=C:\WINNT\system32\vp6vfw.dll
"vidc.VP61"=C:\WINNT\system32\vp6vfw.dll
"vidc.vp31"=vp31vfw.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.WMV3"=C:\PROGRA~1\COMBIN~1\Filters\wmv9vcm.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=tsccvid.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.ffds"=C:\PROGRA~1\COMBIN~1\Filters\ff_vfw.dll
======File associations======
.js - edit - C:\WINNT\System32\Notepad.exe %1
.js - open - C:\WINNT\System32\WScript.exe "%1" %*
.vbs - edit - C:\WINNT\System32\Notepad.exe %1
.vbs - open - C:\WINNT\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-06-15 18:16:50 ----AT---- C:\WINNT\system32\Perflib_Perfdata_3ec.dat
2012-06-15 18:14:02 ----AT---- C:\WINNT\system32\Perflib_Perfdata_264.dat
2012-06-15 14:42:28 ----D---- C:\_OTM
2012-06-15 12:24:50 ----D---- C:\Avenger
2012-06-15 12:24:50 ----A---- C:\avenger.txt
2012-06-15 09:18:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Malwarebytes
2012-06-15 09:18:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2012-06-15 09:18:03 ----A---- C:\WINNT\system32\drivers\mbam.sys
2012-06-15 09:18:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-06-14 13:41:07 ----D---- C:\Program Files\trend micro
2012-06-14 13:41:07 ----A---- C:\WINNT\system32\Perflib_Perfdata_3dc.dat
2012-06-14 13:41:05 ----D---- C:\rsit
======List of files/folders modified in the last 1 month======
2012-06-15 18:11:44 ----A---- C:\WINNT\SchedLgU.Txt
2012-06-15 17:07:04 ----A---- C:\WINNT\wincmd.ini
2012-06-15 16:47:42 ----A---- C:\WINNT\msicpl.ini
2012-06-15 08:24:22 ----A---- C:\WINNT\Opera.INI
2012-06-11 19:50:40 ----A---- C:\WINNT\NeroDigital.ini
2012-06-11 10:33:44 ----A---- C:\test.txt
2012-06-07 21:14:02 ----A---- C:\WINNT\system32\dfrg.msc
2012-06-05 21:33:52 ----A---- C:\WINNT\QTW.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\S [2008-06-15 34]
R0 agp440;Intel AGP Bus Filter; C:\WINNT\S [2008-06-15 34]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\S [2008-06-15 34]
R0 d347bus;d347bus; C:\WINNT\S [2008-06-15 34]
R0 d347prt;d347prt; C:\WINNT\S [2008-06-15 34]
R0 Disk;Ovladač disku; C:\WINNT\S [2008-06-15 34]
R0 Diskperf;Diskperf; C:\WINNT\s [2008-06-15 34]
R0 dmio;Ovladač správce logických disků; C:\WINNT\S [2008-06-15 34]
R0 dmload;dmload; C:\WINNT\S [2008-06-15 34]
R0 FltMgr;FltMgr; C:\WINNT\s [2008-06-15 34]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\S [2008-06-15 34]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\S [2008-06-15 34]
R0 KSecDD;KSecDD; C:\WINNT\s [2008-06-15 34]
R0 Lbd;Lbd; C:\WINNT\s [2008-06-15 34]
R0 MountMgr;MountMgr; C:\WINNT\s [2008-06-15 34]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\s [2008-06-15 34]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\s [2008-06-15 34]
R0 PartMgr;PartMgr; C:\WINNT\s [2008-06-15 34]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\S [2008-06-15 34]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINNT\S [2008-06-15 34]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINNT\S [2008-06-15 34]
R0 PxHelp20;PxHelp20; C:\WINNT\S [2008-06-15 34]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINNT\S [2008-06-15 34]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINNT\S [2008-06-15 34]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINNT\S [2008-06-15 34]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINNT\S [2008-06-15 34]
R0x01000000 papycpu2;papycpu2; C:\WINNT\S [2008-06-15 34]
R0x01000000 papyjoy;papyjoy; C:\WINNT\S [2008-06-15 34]
R1 Cdr4_2K;Cdr4_2K; C:\WINNT\s [2008-06-15 34]
R1 Cdralw2k;Cdralw2k; C:\WINNT\s [2008-06-15 34]
R1 fwdrv;Firewall Driver; C:\WINNT\s [2008-06-15 34]
R1 khips;Kerio HIPS Driver; C:\WINNT\s [2008-06-15 34]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINNT\S [2008-06-15 34]
R2 AMON;AMON; \??\C:\WINNT\system32\drivers\amon.sys []
R2 enodpl;enodpl; C:\WINNT\S [2008-06-15 34]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\s [2008-06-15 34]
R2 SecDrv;SecDrv; \??\C:\WINNT\System32\drivers\SECDRV.SYS []
R2 tandpl;tandpl; C:\WINNT\S [2008-06-15 34]
R2 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINNT\S [2008-06-15 34]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINNT\s [2008-06-15 34]
R3 ati2mtag;ati2mtag; C:\WINNT\s [2008-06-15 34]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINNT\s [2008-06-15 34]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINNT\s [2008-06-15 34]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINNT\s [2008-06-15 34]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINNT\s [2008-06-15 34]
R3 MBAMProtector;MBAMProtector; \??\C:\WINNT\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\s [2008-06-15 34]
R3 pfc;Padus ASPI Shell; C:\WINNT\s [2008-06-15 34]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINNT\s [2008-06-15 34]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINNT\S [2008-06-15 34]
R3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\S [2008-06-15 34]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\S [2008-06-15 34]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINNT\S [2008-06-15 34]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\S [2008-06-15 34]
R3 usbhub20;USB 2.0 Root Hub Support; C:\WINNT\S [2008-06-15 34]
S0 pexhcmu;pexhcmu; C:\WINNT\S [2008-06-15 34]
S1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\S [2008-06-15 34]
S3 DCamUSBSQTECH;Dual-Mode DSC(2770); C:\WINNT\S [2008-06-15 34]
S3 ENTECH;ENTECH; \??\C:\WINNT\System32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINNT\S [2008-06-15 34]
S3 LVcKap;Logitech AEC Driver; C:\WINNT\s [2008-06-15 34]
S3 mga64;mga64; C:\WINNT\S [2008-06-15 34]
S3 MPE;BDA MPE Filter; C:\WINNT\S [2008-06-15 34]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\s [2008-06-15 34]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\S [2008-06-15 34]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINNT\S [2008-06-15 34]
S3 SLIP;BDA Slip De-Framer; C:\WINNT\S [2008-06-15 34]
S3 sony_ssm.sys;sony_ssm.sys; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sony_ssm.sys []
S3 streamip;BDA IPSink; C:\WINNT\S [2008-06-15 34]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\S [2008-06-15 34]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\S [2008-06-15 34]
S4 IntelIde;IntelIde; C:\WINNT\s [2008-06-15 34]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINNT\s [2008-06-15 34]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-03-30 153376]
R2 LVPrcSrv;Process Monitor; c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2007-02-06 109344]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2006-04-10 507904]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-04-26 1234480]
R2 StiSvc;Still Image Service; C:\WINNT\s [2008-06-15 34]
R2 UserAccess7;SecuROM User Access Service (V7); C:\WINNT\S [2008-06-15 34]
S2 ATI Smart;ATI Smart; C:\WINNT\s [2008-06-15 34]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S3 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2003-02-20 32768]
S3 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-14 1028432]
S3 WmdmPmSN;Služba sériového čísla přenosného zařízení; C:\WINNT\S [2008-06-15 34]
-----------------EOF-----------------
Inac dakujem za trpezlivost,len uz zacinam pochybovat ci ten hlavny problem vyriešime.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2012-06-15 18:16:50
Microsoft Windows 2000 Professional Service Pack 4
System drive C: has 12 GB (47%) free of 25 GB
Total RAM: 511 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:16:56, on 15. 6. 2012
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\cisvc.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\UAService7.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\msdtc.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINNT\system32\internat.exe
D:\Program Files\Hudba 2\Acount 8.7\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ig?hl=sk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=proxy-01-03:8080;gopher=proxy-01-03:8080;http=proxy-01-03:8080;https=proxy-01-03:8080
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [Style] D:\ICQ 5.4 build2321\ICQLite\IM In Style\Style.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [wcmdmgr] C:\WINNT\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Startup: HDDlife.lnk = D:\Program Files\HDD live\HDDlife.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Download All Links with IDM - D:\Programy\Internet Download Manager 5.03\Idm\Crack\IEGetAll.htm
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: Download vybraný programom Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download with IDM - D:\Programy\Internet Download Manager 5.03\Idm\Crack\IEExt.htm
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Stiahnuť programom FDM - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stiahnuť všetko programom FDM - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINNT\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINNT\system32\shdocvw.dll
O9 - Extra button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra 'Tools' menuitem: Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - D:\Program Files\Graficke editory\Novy prezerač\Ebay\Ebay.htm (file missing)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 9724568906
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINNT\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINNT\system32\ati2sgag.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINNT\System32\UAService7.exe
O24 - Desktop Component 0: (no name) - C:\Documents and Settings\Administrator\Dokumenty\Obrázky\___13.jpg
--
End of file - 8491 bytes
======Scheduled tasks folder======
C:\WINNT\tasks\Ad-Aware Update (Weekly).job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdmcks.dll [2006-08-10 81920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-03-30 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-03-30 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Synchronization Manager"=mobsync.exe /logon []
"NeroFilterCheck"=C:\WINNT\s [2008-06-15 34]
""= []
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2006-04-10 921600]
"Style"=D:\ICQ 5.4 build2321\ICQLite\IM In Style\Style.exe []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-01 282624]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe [2007-09-04 54576]
"LVCOMSX"=C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe [2007-02-06 252704]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"wcmdmgr"=C:\WINNT\wt\updater\wcmdmgrl.exe -launch []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-03 37296]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-04-04 462408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"internat.exe"=C:\WINNT\system32\internat.exe [2000-03-20 20752]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2004-09-22 1871872]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe /background []
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2007-09-04 95536]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
InterVideo WinCinema Manager.lnk - C:\Common\Bin\WinCinemaMgr.exe
ATI CATALYST System Tray.lnk - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
HDDlife.lnk - D:\Program Files\HDD live\HDDlife.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINNT\system32\Ati2evxx.dll [2004-11-24 94208]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wavemapper"=msacm32.drv
"msacm.lhacm"=lhacm.acm
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"VIDC.I420"=msh263.drv
"msacm.iac2"=C:\WINNT\System32\iac25_32.ax
"aux"=mmdrv.dll
"wave1"=
"wave2"=
"wave3"=
"wave4"=
"wave5"=
"wave6"=
"wave7"=
"wave8"=
"wave9"=
"midi1"=
"midi2"=
"midi3"=
"midi4"=
"midi5"=
"midi6"=
"midi7"=
"midi8"=
"midi9"=
"aux1"=
"aux2"=
"aux3"=
"aux4"=
"aux5"=
"aux6"=
"aux7"=
"aux8"=
"aux9"=
"mixer1"=
"mixer2"=
"mixer3"=
"mixer4"=
"mixer5"=
"mixer6"=
"mixer7"=
"mixer8"=
"mixer9"=
"wdmaud.drv"=wdmaud.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.l3acm"=C:\WINNT\system32\l3codeca.acm
"msacm.msaudio1"=msaud32.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"VIDC.IV41"=IR41_32.AX
"VIDC.VDOM"=vdowave.drv
"msacm.sl_anet"=sl_anet.acm
"vidc.xvid"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.VP60"=C:\WINNT\system32\vp6vfw.dll
"vidc.VP61"=C:\WINNT\system32\vp6vfw.dll
"vidc.vp31"=vp31vfw.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.WMV3"=C:\PROGRA~1\COMBIN~1\Filters\wmv9vcm.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=tsccvid.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.ffds"=C:\PROGRA~1\COMBIN~1\Filters\ff_vfw.dll
======File associations======
.js - edit - C:\WINNT\System32\Notepad.exe %1
.js - open - C:\WINNT\System32\WScript.exe "%1" %*
.vbs - edit - C:\WINNT\System32\Notepad.exe %1
.vbs - open - C:\WINNT\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-06-15 18:16:50 ----AT---- C:\WINNT\system32\Perflib_Perfdata_3ec.dat
2012-06-15 18:14:02 ----AT---- C:\WINNT\system32\Perflib_Perfdata_264.dat
2012-06-15 14:42:28 ----D---- C:\_OTM
2012-06-15 12:24:50 ----D---- C:\Avenger
2012-06-15 12:24:50 ----A---- C:\avenger.txt
2012-06-15 09:18:30 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Malwarebytes
2012-06-15 09:18:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2012-06-15 09:18:03 ----A---- C:\WINNT\system32\drivers\mbam.sys
2012-06-15 09:18:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-06-14 13:41:07 ----D---- C:\Program Files\trend micro
2012-06-14 13:41:07 ----A---- C:\WINNT\system32\Perflib_Perfdata_3dc.dat
2012-06-14 13:41:05 ----D---- C:\rsit
======List of files/folders modified in the last 1 month======
2012-06-15 18:11:44 ----A---- C:\WINNT\SchedLgU.Txt
2012-06-15 17:07:04 ----A---- C:\WINNT\wincmd.ini
2012-06-15 16:47:42 ----A---- C:\WINNT\msicpl.ini
2012-06-15 08:24:22 ----A---- C:\WINNT\Opera.INI
2012-06-11 19:50:40 ----A---- C:\WINNT\NeroDigital.ini
2012-06-11 10:33:44 ----A---- C:\test.txt
2012-06-07 21:14:02 ----A---- C:\WINNT\system32\dfrg.msc
2012-06-05 21:33:52 ----A---- C:\WINNT\QTW.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Microsoft ACPI Driver; C:\WINNT\S [2008-06-15 34]
R0 agp440;Intel AGP Bus Filter; C:\WINNT\S [2008-06-15 34]
R0 atapi;Standardní řadič disku IDE či ESDI; C:\WINNT\S [2008-06-15 34]
R0 d347bus;d347bus; C:\WINNT\S [2008-06-15 34]
R0 d347prt;d347prt; C:\WINNT\S [2008-06-15 34]
R0 Disk;Ovladač disku; C:\WINNT\S [2008-06-15 34]
R0 Diskperf;Diskperf; C:\WINNT\s [2008-06-15 34]
R0 dmio;Ovladač správce logických disků; C:\WINNT\S [2008-06-15 34]
R0 dmload;dmload; C:\WINNT\S [2008-06-15 34]
R0 FltMgr;FltMgr; C:\WINNT\s [2008-06-15 34]
R0 Ftdisk;Ovladač správce svazků; C:\WINNT\S [2008-06-15 34]
R0 isapnp;Řadič Plug and Play sběrnice ISA/EISA; C:\WINNT\S [2008-06-15 34]
R0 KSecDD;KSecDD; C:\WINNT\s [2008-06-15 34]
R0 Lbd;Lbd; C:\WINNT\s [2008-06-15 34]
R0 MountMgr;MountMgr; C:\WINNT\s [2008-06-15 34]
R0 Mup;Služba Multiple UNC Provider; C:\WINNT\s [2008-06-15 34]
R0 NDIS;Systémový ovladač NDIS; C:\WINNT\s [2008-06-15 34]
R0 PartMgr;PartMgr; C:\WINNT\s [2008-06-15 34]
R0 PCI;Řadič sběrnice PCI; C:\WINNT\S [2008-06-15 34]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINNT\S [2008-06-15 34]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINNT\S [2008-06-15 34]
R0 PxHelp20;PxHelp20; C:\WINNT\S [2008-06-15 34]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINNT\S [2008-06-15 34]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINNT\S [2008-06-15 34]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINNT\S [2008-06-15 34]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINNT\S [2008-06-15 34]
R0x01000000 papycpu2;papycpu2; C:\WINNT\S [2008-06-15 34]
R0x01000000 papyjoy;papyjoy; C:\WINNT\S [2008-06-15 34]
R1 Cdr4_2K;Cdr4_2K; C:\WINNT\s [2008-06-15 34]
R1 Cdralw2k;Cdralw2k; C:\WINNT\s [2008-06-15 34]
R1 fwdrv;Firewall Driver; C:\WINNT\s [2008-06-15 34]
R1 khips;Kerio HIPS Driver; C:\WINNT\s [2008-06-15 34]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINNT\S [2008-06-15 34]
R2 AMON;AMON; \??\C:\WINNT\system32\drivers\amon.sys []
R2 enodpl;enodpl; C:\WINNT\S [2008-06-15 34]
R2 HidUsb;Ovladač třídy standardu HID; C:\WINNT\s [2008-06-15 34]
R2 SecDrv;SecDrv; \??\C:\WINNT\System32\drivers\SECDRV.SYS []
R2 tandpl;tandpl; C:\WINNT\S [2008-06-15 34]
R2 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINNT\S [2008-06-15 34]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINNT\s [2008-06-15 34]
R3 ati2mtag;ati2mtag; C:\WINNT\s [2008-06-15 34]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINNT\s [2008-06-15 34]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINNT\s [2008-06-15 34]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINNT\s [2008-06-15 34]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINNT\s [2008-06-15 34]
R3 MBAMProtector;MBAMProtector; \??\C:\WINNT\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINNT\s [2008-06-15 34]
R3 pfc;Padus ASPI Shell; C:\WINNT\s [2008-06-15 34]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINNT\s [2008-06-15 34]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINNT\S [2008-06-15 34]
R3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; C:\WINNT\S [2008-06-15 34]
R3 uhcd;Ovladač univerzálního hostitelského řadiče USB; C:\WINNT\S [2008-06-15 34]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINNT\S [2008-06-15 34]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINNT\S [2008-06-15 34]
R3 usbhub20;USB 2.0 Root Hub Support; C:\WINNT\S [2008-06-15 34]
S0 pexhcmu;pexhcmu; C:\WINNT\S [2008-06-15 34]
S1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINNT\S [2008-06-15 34]
S3 DCamUSBSQTECH;Dual-Mode DSC(2770); C:\WINNT\S [2008-06-15 34]
S3 ENTECH;ENTECH; \??\C:\WINNT\System32\DRIVERS\ENTECH.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINNT\S [2008-06-15 34]
S3 LVcKap;Logitech AEC Driver; C:\WINNT\s [2008-06-15 34]
S3 mga64;mga64; C:\WINNT\S [2008-06-15 34]
S3 MPE;BDA MPE Filter; C:\WINNT\S [2008-06-15 34]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINNT\s [2008-06-15 34]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINNT\S [2008-06-15 34]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINNT\S [2008-06-15 34]
S3 SLIP;BDA Slip De-Framer; C:\WINNT\S [2008-06-15 34]
S3 sony_ssm.sys;sony_ssm.sys; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sony_ssm.sys []
S3 streamip;BDA IPSink; C:\WINNT\S [2008-06-15 34]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINNT\S [2008-06-15 34]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINNT\S [2008-06-15 34]
S4 IntelIde;IntelIde; C:\WINNT\s [2008-06-15 34]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINNT\s [2008-06-15 34]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-03-30 153376]
R2 LVPrcSrv;Process Monitor; c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2007-02-06 109344]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2006-04-10 507904]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-04-26 1234480]
R2 StiSvc;Still Image Service; C:\WINNT\s [2008-06-15 34]
R2 UserAccess7;SecuROM User Access Service (V7); C:\WINNT\S [2008-06-15 34]
S2 ATI Smart;ATI Smart; C:\WINNT\s [2008-06-15 34]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S3 aspnet_state;ASP.NET State Service; C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2003-02-20 32768]
S3 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-14 1028432]
S3 WmdmPmSN;Služba sériového čísla přenosného zařízení; C:\WINNT\S [2008-06-15 34]
-----------------EOF-----------------