Zkuste obnovu systému k datu, než jste to povypínal.
Co máte za typ monitoru?
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
MWAV vyhadzuje chyby
Moderátoři: james008, JaRon, Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Re: MWAV vyhadzuje chyby
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
prestigio LCD P372
Re: MWAV vyhadzuje chyby
Pomohla Vám ta obnova systému?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
Zdravim, bol som dlho mimo...
no nepomohla, lebosom si pred casom, v ramci setrenia systemovych prostriedkov obnovu systemu vypol...
Takze teraz neviem.
Strat windows je nekonecne dlhy a aj ked mi nabehnu, firefox trva asi 4 minuty nez sa rozbehne. Windows stale nieco robi alwe podla swchost nezistim co...
no nepomohla, lebosom si pred casom, v ramci setrenia systemovych prostriedkov obnovu systemu vypol...
Takze teraz neviem.
Strat windows je nekonecne dlhy a aj ked mi nabehnu, firefox trva asi 4 minuty nez sa rozbehne. Windows stale nieco robi alwe podla swchost nezistim co...
Re: MWAV vyhadzuje chyby
Poprosím o nový log ze Rsitu.
Opravu přes winxp manager jste zkoušel?
Opravu přes winxp manager jste zkoušel?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2010-02-15 21:05:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 92 GB (60%) free of 153 GB
Total RAM: 511 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:05:44, on 15.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\365dnkNET\365dniNET.exe
C:\Documents and Settings\Administrator\My Documents\Downloads\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - c:\lotus\organize\bandobjs.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\WINDOWS\SYSTEM32\astsrv.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4028 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Advanced System Optimizer Scheduler.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-1563985344-725345543-500Core.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-04-09 2029640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dni]
C:\Program Files\365dníNET\365dniNET.exe [2007-01-06 753664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-09-23 1657448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-06-23 847872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WmdmPmSN"=3
"Themes"=3
"mnmsrvc"=3
"CiSvc"=3
"Adobe LM Service"=3
"TapiSrv"=3
"sp_rssrv"=2
"SENS"=2
"Schedule"=2
"ASTSRV"=2
"WMPNetworkSvc"=3
"ose"=3
"MDM"=2
"Kingsoft Antivirus WebShield Service"=3
"iPod Service"=3
"idsvc"=3
"IDriverT"=3
"FLEXnet Licensing Service"=3
"ASO3DiskOptimizer"=2
"Apple Mobile Device"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
"NoDriveTypeAutoRun"=145
"NoDesktopCleanupWizard"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Sierra\Empire Earth\Empire Earth.exe"="C:\Sierra\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
"C:\Program Files\NOVOMATIC Gaminator CF1 Final\game.exe"="C:\Program Files\NOVOMATIC Gaminator CF1 Final\game.exe:*:Enabled:game"
"C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgcn_548.exe"="C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgcn_548.exe:*:Enabled:fg_ol_silent"
"C:\Program Files\Participatory Culture Foundation\Miro\Miro_Downloader.exe"="C:\Program Files\Participatory Culture Foundation\Miro\Miro_Downloader.exe:*:Enabled:Miro_Downloader"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
"C:\Program Files\PPLive\PPLive.exe"="C:\Program Files\PPLive\PPLive.exe:*:Enabled:PPLive"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\ProgDVB\ProgDvbNet.exe"="C:\Program Files\ProgDVB\ProgDvbNet.exe:*:Enabled:ProgDvbNet"
"C:\Program Files\PPLiveVA\FlvPick.exe"="C:\Program Files\PPLiveVA\FlvPick.exe:*:Enabled:FlvPick"
"C:\Program Files\PPLiveVA\PPLiveVA.exe"="C:\Program Files\PPLiveVA\PPLiveVA.exe:*:Enabled:PPLiveVA"
"C:\Program Files\PPLiveVA\CrashUpload.exe"="C:\Program Files\PPLiveVA\CrashUpload.exe:*:Enabled:CrashUpload"
"C:\Program Files\PPLiveVA\Download.exe"="C:\Program Files\PPLiveVA\Download.exe:*:Enabled:Download"
"C:\Program Files\PPLiveVA\DownloadProgress.exe"="C:\Program Files\PPLiveVA\DownloadProgress.exe:*:Enabled:DownloadProgress"
"C:\Documents and Settings\All Users\Application Data\PPLiveVA\Application\PPAP.exe"="C:\Documents and Settings\All Users\Application Data\PPLiveVA\Application\PPAP.exe:*:Enabled:PPAP"
"C:\lotus\organize\org6.exe"="C:\lotus\organize\org6.exe:*:Enabled:Lotus Organizer"
"C:\Program Files\Smokin' Guns\smokinguns.exe"="C:\Program Files\Smokin' Guns\smokinguns.exe:*:Enabled:smokinguns"
"C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-02-15 15:24:41 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2010-02-15 13:20:47 ----D---- C:\Documents and Settings\Administrator\Application Data\ESET
2010-02-15 13:20:02 ----D---- C:\WINDOWS\LastGood
2010-02-15 13:19:37 ----D---- C:\Program Files\ESET
2010-02-14 01:46:37 ----D---- C:\WINDOWS\system32\Adobe
2010-02-13 16:47:09 ----D---- C:\Program Files\Elcom
2010-02-13 16:46:39 ----A---- C:\WINDOWS\system32\POS.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\ECR.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\CommTX.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\Comm32.dll
2010-02-13 16:41:46 ----D---- C:\Program Files\Common Files\BUSINESS OBJECTS
2010-02-13 16:41:42 ----D---- C:\Omega
2010-02-13 16:38:58 ----D---- C:\OmegaIns
2010-02-13 14:23:01 ----A---- C:\WINDOWS\system32\TubeFinder.exe
2010-02-13 14:22:45 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2010-02-13 14:22:45 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2010-02-13 14:22:44 ----A---- C:\WINDOWS\system32\PCCLPFR.DLL
2010-02-13 14:22:43 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2010-02-13 14:22:40 ----A---- C:\WINDOWS\system32\CMDLGFR.DLL
2010-02-13 14:22:37 ----D---- C:\Program Files\Free FLV Converter
2010-02-13 14:22:37 ----D---- C:\Documents and Settings\Administrator\Application Data\FreeFLVConverter
2010-02-12 18:38:05 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-02-11 01:17:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-02-11 01:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-02-11 01:14:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-02-11 01:13:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-02-11 01:13:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-02-11 01:13:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-02-11 01:13:25 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-02-11 01:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-02-11 01:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\zts2.exe
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\vcmgcd32.dll
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\systems.txt
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\iifgfgf.dll
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\rundl132.dll
2010-01-31 20:53:25 ----D---- C:\Program Files\PDF Editor 2
2010-01-31 20:53:25 ----A---- C:\WINDOWS\cadkasdeinst01e.exe
2010-01-30 12:57:23 ----A---- C:\WINDOWS\system32\defragboot.ini
2010-01-30 12:57:05 ----D---- C:\Documents and Settings\All Users\Application Data\Systweak
2010-01-30 12:51:30 ----D---- C:\Documents and Settings\Administrator\Application Data\Systweak
2010-01-30 12:51:10 ----D---- C:\Documents and Settings\All Users\Application Data\MyDefrag
2010-01-30 12:24:45 ----D---- C:\Program Files\DiskInternals
2010-01-28 12:21:54 ----D---- C:\Documents and Settings\Administrator\Application Data\ABBYY
2010-01-27 14:33:43 ----D---- C:\Program Files\ABBYY FineReader 10
2010-01-27 14:33:42 ----D---- C:\Documents and Settings\All Users\Application Data\ABBYY
2010-01-26 16:51:41 ----D---- C:\Program Files\LizardTech
2010-01-24 13:17:25 ----D---- C:\Documents and Settings\Administrator\Application Data\MyNotesKeeper
2010-01-20 11:16:19 ----D---- C:\Program Files\ConvertHelper
======List of files/folders modified in the last 1 months======
2010-02-15 21:05:44 ----D---- C:\Program Files\trend micro
2010-02-15 21:05:20 ----D---- C:\Documents and Settings\Administrator\Application Data\LimeWire
2010-02-15 20:41:45 ----D---- C:\Documents and Settings\Administrator\Application Data\365dni
2010-02-15 17:47:46 ----D---- C:\Program Files\Mozilla Firefox
2010-02-15 13:20:29 ----SHD---- C:\WINDOWS\Installer
2010-02-15 13:20:27 ----D---- C:\Config.Msi
2010-02-15 13:20:18 ----D---- C:\WINDOWS\system32\drivers
2010-02-15 13:20:18 ----D---- C:\WINDOWS\inf
2010-02-15 13:20:02 ----AD---- C:\WINDOWS
2010-02-15 13:20:01 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-15 13:19:37 ----RD---- C:\Program Files
2010-02-14 01:50:12 ----D---- C:\WINDOWS\system32\Macromed
2010-02-14 01:46:37 ----D---- C:\WINDOWS\system32
2010-02-13 20:27:51 ----D---- C:\WINDOWS\WinSxS
2010-02-13 19:21:26 ----D---- C:\Program Files\Common Files\DESIGNER
2010-02-13 19:20:03 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-02-13 17:19:47 ----A---- C:\WINDOWS\ODBC.INI
2010-02-13 16:42:50 ----RSD---- C:\WINDOWS\Fonts
2010-02-13 16:41:46 ----D---- C:\Program Files\Common Files
2010-02-13 15:38:24 ----D---- C:\Program Files\Images Index Creator
2010-02-13 14:04:25 ----D---- C:\WINDOWS\temp
2010-02-13 13:34:03 ----D---- C:\Program Files\Windows Media Player
2010-02-13 13:28:58 ----D---- C:\Program Files\Pinnacle
2010-02-13 13:23:53 ----D---- C:\Program Files\Common Files\Nikon
2010-02-13 13:20:35 ----D---- C:\Program Files\Image Grabber II
2010-02-13 13:14:45 ----RASH---- C:\boot.ini
2010-02-13 13:14:45 ----A---- C:\WINDOWS\win.ini
2010-02-13 13:14:45 ----A---- C:\WINDOWS\system.ini
2010-02-13 11:45:15 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2010-02-12 19:52:51 ----DC---- C:\WINDOWS\system32\dllcache
2010-02-11 13:33:38 ----D---- C:\Program Files\Spyware Terminator
2010-02-11 13:33:38 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-02-11 13:29:23 ----D---- C:\Documents and Settings\Administrator\Application Data\Spyware Terminator
2010-02-11 01:17:47 ----D---- C:\WINDOWS\$hf_mig$
2010-02-10 12:22:33 ----D---- C:\Documents and Settings\Administrator\Application Data\Skype
2010-02-10 11:12:31 ----D---- C:\Documents and Settings\Administrator\Application Data\skypePM
2010-02-05 18:53:32 ----D---- C:\Documents and Settings\Administrator\Application Data\Adobe
2010-02-01 20:26:20 ----A---- C:\WINDOWS\system32\MRT.exe
2010-02-01 00:19:36 ----D---- C:\WINDOWS\Minidump
2010-01-31 20:39:11 ----D---- C:\Program Files\Foxit Software
2010-01-31 19:25:44 ----D---- C:\WINDOWS\system32\config
2010-01-31 16:21:57 ----D---- C:\Documents and Settings\Administrator\Application Data\uTorrent
2010-01-31 13:47:44 ----D---- C:\Documents and Settings\Administrator\Application Data\FlashgetSetup
2010-01-30 16:34:56 ----SD---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2010-01-30 12:52:00 ----SD---- C:\WINDOWS\Tasks
2010-01-30 12:51:32 ----D---- C:\WINDOWS\repair
2010-01-28 13:22:52 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-01-28 13:17:29 ----D---- C:\Program Files\Common Files\Adobe
2010-01-28 13:16:57 ----D---- C:\Program Files\Adobe
2010-01-28 11:58:30 ----D---- C:\Program Files\Your Webcam Watcher Program
2010-01-27 14:29:23 ----D---- C:\Temp
2010-01-26 16:51:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-22 17:37:00 ----D---- C:\WINDOWS\system32\en-US
2010-01-22 17:37:00 ----D---- C:\Program Files\Internet Explorer
2010-01-22 17:36:44 ----D---- C:\WINDOWS\ie7updates
2010-01-20 18:39:48 ----D---- C:\Program Files\Microsoft Silverlight
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2005-12-22 5685]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2005-10-18 11008]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-04-09 107256]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-04-09 55768]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-04-09 113960]
R2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-04-09 133000]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-06-27 245760]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 Cap7134;Philips SAA7134 WDM Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2004-11-05 334816]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-04-09 33096]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-07 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-09-27 7655872]
R3 PhTVTune;Philips FM1216 MK3 TV Tuner; C:\WINDOWS\system32\DRIVERS\phtvtune.sys [2004-11-05 19904]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-04-06 81664]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S2 713xTVCard;SAA7134 TV Card; C:\WINDOWS\system32\DRIVERS\SAA713x.sys [2005-03-15 277504]
S3 ADASPROT;SYSTWEAKASO; \??\C:\Program Files\Advanced System Optimizer 3\adasprot32.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 FlyPCI;FlyPCI; \??\C:\WINDOWS\system32\drivers\FlyPCI.sys []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;System Restore Filter Driver; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-13 73472]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2005-10-18 241152]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-04-09 731840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 astcc;AST Service; C:\WINDOWS\SYSTEM32\astsrv.exe [2008-05-19 57344]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-04-09 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-10-26 72704]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
S4 ASTSRV;Nalpeiron Licensing Service; C:\WINDOWS\system32\ASTSRV.EXE [2008-05-19 57344]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-10-03 655624]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 Kingsoft Antivirus WebShield Service;Kingsoft Antivirus WebShield Service; C:\Program Files\Maxthon2\Modules\MxKWS\KSWebShield.exe [2009-10-26 202136]
S4 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-09-27 172100]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-11-11 487936]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
-----------------EOF-----------------
Run by Administrator at 2010-02-15 21:05:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 92 GB (60%) free of 153 GB
Total RAM: 511 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:05:44, on 15.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\365dnkNET\365dniNET.exe
C:\Documents and Settings\Administrator\My Documents\Downloads\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - c:\lotus\organize\bandobjs.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\WINDOWS\SYSTEM32\astsrv.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4028 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Advanced System Optimizer Scheduler.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-1563985344-725345543-500Core.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-04-09 2029640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dni]
C:\Program Files\365dníNET\365dniNET.exe [2007-01-06 753664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-09-23 1657448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-06-23 847872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WmdmPmSN"=3
"Themes"=3
"mnmsrvc"=3
"CiSvc"=3
"Adobe LM Service"=3
"TapiSrv"=3
"sp_rssrv"=2
"SENS"=2
"Schedule"=2
"ASTSRV"=2
"WMPNetworkSvc"=3
"ose"=3
"MDM"=2
"Kingsoft Antivirus WebShield Service"=3
"iPod Service"=3
"idsvc"=3
"IDriverT"=3
"FLEXnet Licensing Service"=3
"ASO3DiskOptimizer"=2
"Apple Mobile Device"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
"NoDriveTypeAutoRun"=145
"NoDesktopCleanupWizard"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Sierra\Empire Earth\Empire Earth.exe"="C:\Sierra\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
"C:\Program Files\NOVOMATIC Gaminator CF1 Final\game.exe"="C:\Program Files\NOVOMATIC Gaminator CF1 Final\game.exe:*:Enabled:game"
"C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgcn_548.exe"="C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgcn_548.exe:*:Enabled:fg_ol_silent"
"C:\Program Files\Participatory Culture Foundation\Miro\Miro_Downloader.exe"="C:\Program Files\Participatory Culture Foundation\Miro\Miro_Downloader.exe:*:Enabled:Miro_Downloader"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
"C:\Program Files\PPLive\PPLive.exe"="C:\Program Files\PPLive\PPLive.exe:*:Enabled:PPLive"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\ProgDVB\ProgDvbNet.exe"="C:\Program Files\ProgDVB\ProgDvbNet.exe:*:Enabled:ProgDvbNet"
"C:\Program Files\PPLiveVA\FlvPick.exe"="C:\Program Files\PPLiveVA\FlvPick.exe:*:Enabled:FlvPick"
"C:\Program Files\PPLiveVA\PPLiveVA.exe"="C:\Program Files\PPLiveVA\PPLiveVA.exe:*:Enabled:PPLiveVA"
"C:\Program Files\PPLiveVA\CrashUpload.exe"="C:\Program Files\PPLiveVA\CrashUpload.exe:*:Enabled:CrashUpload"
"C:\Program Files\PPLiveVA\Download.exe"="C:\Program Files\PPLiveVA\Download.exe:*:Enabled:Download"
"C:\Program Files\PPLiveVA\DownloadProgress.exe"="C:\Program Files\PPLiveVA\DownloadProgress.exe:*:Enabled:DownloadProgress"
"C:\Documents and Settings\All Users\Application Data\PPLiveVA\Application\PPAP.exe"="C:\Documents and Settings\All Users\Application Data\PPLiveVA\Application\PPAP.exe:*:Enabled:PPAP"
"C:\lotus\organize\org6.exe"="C:\lotus\organize\org6.exe:*:Enabled:Lotus Organizer"
"C:\Program Files\Smokin' Guns\smokinguns.exe"="C:\Program Files\Smokin' Guns\smokinguns.exe:*:Enabled:smokinguns"
"C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-02-15 15:24:41 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2010-02-15 13:20:47 ----D---- C:\Documents and Settings\Administrator\Application Data\ESET
2010-02-15 13:20:02 ----D---- C:\WINDOWS\LastGood
2010-02-15 13:19:37 ----D---- C:\Program Files\ESET
2010-02-14 01:46:37 ----D---- C:\WINDOWS\system32\Adobe
2010-02-13 16:47:09 ----D---- C:\Program Files\Elcom
2010-02-13 16:46:39 ----A---- C:\WINDOWS\system32\POS.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\ECR.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\CommTX.dll
2010-02-13 16:46:36 ----A---- C:\WINDOWS\system32\Comm32.dll
2010-02-13 16:41:46 ----D---- C:\Program Files\Common Files\BUSINESS OBJECTS
2010-02-13 16:41:42 ----D---- C:\Omega
2010-02-13 16:38:58 ----D---- C:\OmegaIns
2010-02-13 14:23:01 ----A---- C:\WINDOWS\system32\TubeFinder.exe
2010-02-13 14:22:45 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2010-02-13 14:22:45 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2010-02-13 14:22:44 ----A---- C:\WINDOWS\system32\PCCLPFR.DLL
2010-02-13 14:22:43 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2010-02-13 14:22:40 ----A---- C:\WINDOWS\system32\CMDLGFR.DLL
2010-02-13 14:22:37 ----D---- C:\Program Files\Free FLV Converter
2010-02-13 14:22:37 ----D---- C:\Documents and Settings\Administrator\Application Data\FreeFLVConverter
2010-02-12 18:38:05 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-02-11 01:17:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-02-11 01:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-02-11 01:14:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-02-11 01:13:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-02-11 01:13:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-02-11 01:13:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-02-11 01:13:25 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-02-11 01:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-02-11 01:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\zts2.exe
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\vcmgcd32.dll
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\systems.txt
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\system32\iifgfgf.dll
2010-02-09 08:43:44 ----AD---- C:\WINDOWS\rundl132.dll
2010-01-31 20:53:25 ----D---- C:\Program Files\PDF Editor 2
2010-01-31 20:53:25 ----A---- C:\WINDOWS\cadkasdeinst01e.exe
2010-01-30 12:57:23 ----A---- C:\WINDOWS\system32\defragboot.ini
2010-01-30 12:57:05 ----D---- C:\Documents and Settings\All Users\Application Data\Systweak
2010-01-30 12:51:30 ----D---- C:\Documents and Settings\Administrator\Application Data\Systweak
2010-01-30 12:51:10 ----D---- C:\Documents and Settings\All Users\Application Data\MyDefrag
2010-01-30 12:24:45 ----D---- C:\Program Files\DiskInternals
2010-01-28 12:21:54 ----D---- C:\Documents and Settings\Administrator\Application Data\ABBYY
2010-01-27 14:33:43 ----D---- C:\Program Files\ABBYY FineReader 10
2010-01-27 14:33:42 ----D---- C:\Documents and Settings\All Users\Application Data\ABBYY
2010-01-26 16:51:41 ----D---- C:\Program Files\LizardTech
2010-01-24 13:17:25 ----D---- C:\Documents and Settings\Administrator\Application Data\MyNotesKeeper
2010-01-20 11:16:19 ----D---- C:\Program Files\ConvertHelper
======List of files/folders modified in the last 1 months======
2010-02-15 21:05:44 ----D---- C:\Program Files\trend micro
2010-02-15 21:05:20 ----D---- C:\Documents and Settings\Administrator\Application Data\LimeWire
2010-02-15 20:41:45 ----D---- C:\Documents and Settings\Administrator\Application Data\365dni
2010-02-15 17:47:46 ----D---- C:\Program Files\Mozilla Firefox
2010-02-15 13:20:29 ----SHD---- C:\WINDOWS\Installer
2010-02-15 13:20:27 ----D---- C:\Config.Msi
2010-02-15 13:20:18 ----D---- C:\WINDOWS\system32\drivers
2010-02-15 13:20:18 ----D---- C:\WINDOWS\inf
2010-02-15 13:20:02 ----AD---- C:\WINDOWS
2010-02-15 13:20:01 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-15 13:19:37 ----RD---- C:\Program Files
2010-02-14 01:50:12 ----D---- C:\WINDOWS\system32\Macromed
2010-02-14 01:46:37 ----D---- C:\WINDOWS\system32
2010-02-13 20:27:51 ----D---- C:\WINDOWS\WinSxS
2010-02-13 19:21:26 ----D---- C:\Program Files\Common Files\DESIGNER
2010-02-13 19:20:03 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-02-13 17:19:47 ----A---- C:\WINDOWS\ODBC.INI
2010-02-13 16:42:50 ----RSD---- C:\WINDOWS\Fonts
2010-02-13 16:41:46 ----D---- C:\Program Files\Common Files
2010-02-13 15:38:24 ----D---- C:\Program Files\Images Index Creator
2010-02-13 14:04:25 ----D---- C:\WINDOWS\temp
2010-02-13 13:34:03 ----D---- C:\Program Files\Windows Media Player
2010-02-13 13:28:58 ----D---- C:\Program Files\Pinnacle
2010-02-13 13:23:53 ----D---- C:\Program Files\Common Files\Nikon
2010-02-13 13:20:35 ----D---- C:\Program Files\Image Grabber II
2010-02-13 13:14:45 ----RASH---- C:\boot.ini
2010-02-13 13:14:45 ----A---- C:\WINDOWS\win.ini
2010-02-13 13:14:45 ----A---- C:\WINDOWS\system.ini
2010-02-13 11:45:15 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2010-02-12 19:52:51 ----DC---- C:\WINDOWS\system32\dllcache
2010-02-11 13:33:38 ----D---- C:\Program Files\Spyware Terminator
2010-02-11 13:33:38 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-02-11 13:29:23 ----D---- C:\Documents and Settings\Administrator\Application Data\Spyware Terminator
2010-02-11 01:17:47 ----D---- C:\WINDOWS\$hf_mig$
2010-02-10 12:22:33 ----D---- C:\Documents and Settings\Administrator\Application Data\Skype
2010-02-10 11:12:31 ----D---- C:\Documents and Settings\Administrator\Application Data\skypePM
2010-02-05 18:53:32 ----D---- C:\Documents and Settings\Administrator\Application Data\Adobe
2010-02-01 20:26:20 ----A---- C:\WINDOWS\system32\MRT.exe
2010-02-01 00:19:36 ----D---- C:\WINDOWS\Minidump
2010-01-31 20:39:11 ----D---- C:\Program Files\Foxit Software
2010-01-31 19:25:44 ----D---- C:\WINDOWS\system32\config
2010-01-31 16:21:57 ----D---- C:\Documents and Settings\Administrator\Application Data\uTorrent
2010-01-31 13:47:44 ----D---- C:\Documents and Settings\Administrator\Application Data\FlashgetSetup
2010-01-30 16:34:56 ----SD---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2010-01-30 12:52:00 ----SD---- C:\WINDOWS\Tasks
2010-01-30 12:51:32 ----D---- C:\WINDOWS\repair
2010-01-28 13:22:52 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-01-28 13:17:29 ----D---- C:\Program Files\Common Files\Adobe
2010-01-28 13:16:57 ----D---- C:\Program Files\Adobe
2010-01-28 11:58:30 ----D---- C:\Program Files\Your Webcam Watcher Program
2010-01-27 14:29:23 ----D---- C:\Temp
2010-01-26 16:51:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-22 17:37:00 ----D---- C:\WINDOWS\system32\en-US
2010-01-22 17:37:00 ----D---- C:\Program Files\Internet Explorer
2010-01-22 17:36:44 ----D---- C:\WINDOWS\ie7updates
2010-01-20 18:39:48 ----D---- C:\Program Files\Microsoft Silverlight
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2005-12-22 5685]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2005-10-18 11008]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-04-09 107256]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-04-09 55768]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-04-09 113960]
R2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-04-09 133000]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-06-27 245760]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 Cap7134;Philips SAA7134 WDM Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2004-11-05 334816]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-04-09 33096]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-07 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-09-27 7655872]
R3 PhTVTune;Philips FM1216 MK3 TV Tuner; C:\WINDOWS\system32\DRIVERS\phtvtune.sys [2004-11-05 19904]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-04-06 81664]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S2 713xTVCard;SAA7134 TV Card; C:\WINDOWS\system32\DRIVERS\SAA713x.sys [2005-03-15 277504]
S3 ADASPROT;SYSTWEAKASO; \??\C:\Program Files\Advanced System Optimizer 3\adasprot32.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 FlyPCI;FlyPCI; \??\C:\WINDOWS\system32\drivers\FlyPCI.sys []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;System Restore Filter Driver; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-13 73472]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2005-10-18 241152]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-04-09 731840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 astcc;AST Service; C:\WINDOWS\SYSTEM32\astsrv.exe [2008-05-19 57344]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-04-09 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-10-26 72704]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
S4 ASTSRV;Nalpeiron Licensing Service; C:\WINDOWS\system32\ASTSRV.EXE [2008-05-19 57344]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-10-03 655624]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 Kingsoft Antivirus WebShield Service;Kingsoft Antivirus WebShield Service; C:\Program Files\Maxthon2\Modules\MxKWS\KSWebShield.exe [2009-10-26 202136]
S4 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-09-27 172100]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-11-11 487936]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
-----------------EOF-----------------
Re: MWAV vyhadzuje chyby
Otestujte na http://www.virustotal.comc:\lotus\organize\bandobjs.dll
-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe - ComboFix je třeba spustit pod účtem s právy administrátora
- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna
- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
C:\Combo-Fix
C:\Combo-Fix6792C
som nenasiel
smazani.reg som urobil
este spustim ten mwav
C:\Combo-Fix6792C
som nenasiel
smazani.reg som urobil
este spustim ten mwav
Re: MWAV vyhadzuje chyby
jesis, ja som to poplietol a urobil kroky z prvej strany...
takze znova...
takze znova...
Re: MWAV vyhadzuje chyby
vysledok z virustotal:
analisis/12216e24510c25a1d446770ae2cbe15f0d9062b70244552ae8c22c0f64d283ff-1262616480
analisis/12216e24510c25a1d446770ae2cbe15f0d9062b70244552ae8c22c0f64d283ff-1262616480
Re: MWAV vyhadzuje chyby
ComboFix 10-02-12.01 - Administrator 16.02.2010 18:39:54.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.511.290 [GMT 1:00]
Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Administrator\Application Data\BITS
c:\documents and settings\Administrator\Application Data\BITS\BITS.ini
c:\documents and settings\Administrator\Application Data\BITS\DHTTable.dat
c:\documents and settings\Administrator\Application Data\BITS\ProxyList.ini
c:\documents and settings\Administrator\Application Data\BITS\UPnP.ini
c:\documents and settings\Administrator\Application Data\FlashGetBHO
c:\documents and settings\Administrator\Application Data\FlashGetBHO\FlashGetBHO3.dll
c:\documents and settings\Administrator\Application Data\FlashGetBHO\FlashGetHook.dll
c:\documents and settings\Administrator\Application Data\FlashGetBHO\GetAllUrl.htm
c:\documents and settings\Administrator\Application Data\FlashGetBHO\GetUrl.htm
C:\LOG.TXT
c:\program files\FlashGet Network
c:\windows\regedit.com
c:\windows\system32\_000012_.tmp.dll
c:\windows\system32\Ijl11.dll
c:\windows\system32\secustat.dat
c:\windows\system32\SIntf16.dll
c:\windows\system32\skinboxer43.dll
c:\windows\system32\taskmgr.com
.
((((((((((((((((((((((((( Files Created from 2010-01-16 to 2010-02-16 )))))))))))))))))))))))))))))))
.
2010-02-15 12:20 . 2010-02-15 12:20 -------- d-----w- c:\documents and settings\Administrator\Application Data\ESET
2010-02-15 12:19 . 2010-02-15 12:19 -------- d-----w- c:\program files\ESET
2010-02-14 00:46 . 2010-02-14 00:46 -------- d-----w- c:\windows\system32\Adobe
2010-02-13 15:48 . 2010-02-13 15:48 81920 ----a-w- c:\windows\OLE2TASK.DAT
2010-02-13 15:47 . 2010-02-13 15:47 -------- d-----w- c:\program files\Elcom
2010-02-13 15:46 . 2009-09-25 11:51 101816 ----a-w- c:\windows\system32\POS.dll
2010-02-13 15:46 . 2009-11-13 10:46 524288 ----a-w- c:\windows\system32\ECR.dll
2010-02-13 15:46 . 2009-11-11 14:35 270336 ----a-w- c:\windows\system32\Comm32.dll
2010-02-13 15:46 . 2008-07-01 08:43 43152 ----a-w- c:\windows\system32\CommTX.dll
2010-02-13 15:41 . 2010-02-13 15:41 -------- d-----w- c:\program files\Common Files\BUSINESS OBJECTS
2010-02-13 15:41 . 2010-02-13 18:21 -------- d-----w- C:\Omega
2010-02-13 15:38 . 2010-02-13 15:39 -------- d-----w- C:\OmegaIns
2010-02-13 13:23 . 2009-11-11 13:50 311296 ----a-w- c:\windows\system32\TubeFinder.exe
2010-02-13 13:22 . 2009-06-19 17:51 119568 ----a-w- c:\windows\system32\VB6FR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 101888 ----a-w- c:\windows\system32\VB6STKIT.DLL
2010-02-13 13:22 . 2009-06-19 17:51 9728 ----a-w- c:\windows\system32\PCCLPFR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 141312 ----a-w- c:\windows\system32\MSCMCFR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 32768 ----a-w- c:\windows\system32\CMDLGFR.DLL
2010-02-13 13:22 . 2010-02-13 19:29 -------- d-----w- c:\documents and settings\Administrator\Application Data\FreeFLVConverter
2010-02-13 13:22 . 2010-02-13 13:23 -------- d-----w- c:\program files\Free FLV Converter
2010-02-12 17:38 . 2010-02-12 17:38 -------- d--h--w- c:\windows\system32\GroupPolicy
2010-02-09 07:44 . 2010-02-09 07:46 6072853 ----a-w- c:\windows\REGBK04.ZIP
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\zts2.exe
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\vcmgcd32.dll
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\systems.txt
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\iifgfgf.dll
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\rundl132.dll
2010-01-31 19:53 . 2010-02-13 12:21 -------- d-----w- c:\program files\PDF Editor 2
2010-01-31 19:53 . 2010-01-31 19:53 74752 ----a-w- c:\windows\cadkasdeinst01e.exe
2010-01-30 11:57 . 2010-02-13 12:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Systweak
2010-01-30 11:51 . 2010-02-13 12:09 -------- d-----w- c:\documents and settings\Administrator\Application Data\Systweak
2010-01-30 11:51 . 2010-01-30 11:51 -------- d-----w- c:\documents and settings\All Users\Application Data\MyDefrag
2010-01-30 11:24 . 2010-01-30 11:24 -------- d-----w- c:\program files\DiskInternals
2010-01-28 11:21 . 2010-01-28 11:21 -------- d-----w- c:\documents and settings\Administrator\Application Data\ABBYY
2010-01-28 11:03 . 2010-01-31 11:01 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\ABBYY
2010-01-27 13:33 . 2010-01-31 11:03 -------- d-----w- c:\program files\ABBYY FineReader 10
2010-01-27 13:33 . 2010-01-31 11:01 -------- d-----w- c:\documents and settings\All Users\Application Data\ABBYY
2010-01-27 13:29 . 2010-01-27 13:30 -------- d-----w- c:\temp\FR10PE
2010-01-26 15:51 . 2010-01-26 15:51 -------- d-----w- c:\program files\LizardTech
2010-01-24 12:17 . 2010-01-24 12:17 -------- d-----w- c:\documents and settings\Administrator\Application Data\MyNotesKeeper
2010-01-20 10:16 . 2010-01-20 10:16 -------- d-----w- c:\program files\ConvertHelper
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-15 20:05 . 2009-11-18 22:22 -------- d-----w- c:\program files\trend micro
2010-02-15 20:05 . 2009-12-21 16:40 -------- d-----w- c:\documents and settings\Administrator\Application Data\LimeWire
2010-02-15 19:41 . 2009-12-11 16:53 -------- d-----w- c:\documents and settings\Administrator\Application Data\365dni
2010-02-13 19:54 . 2009-10-03 09:06 12856 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-02-13 18:20 . 2009-10-11 09:06 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-02-13 14:38 . 2010-01-03 13:33 -------- d-----w- c:\program files\Images Index Creator
2010-02-13 12:28 . 2010-01-03 11:39 -------- d-----w- c:\program files\Pinnacle
2010-02-13 12:23 . 2009-12-25 10:38 -------- d-----w- c:\program files\Common Files\Nikon
2010-02-13 12:20 . 2009-12-06 15:11 -------- d-----w- c:\program files\Image Grabber II
2010-02-13 10:45 . 2009-10-03 23:03 -------- d-----w- c:\documents and settings\All Users\Application Data\FLEXnet
2010-02-11 12:33 . 2009-11-11 14:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-02-11 12:33 . 2009-11-11 14:28 -------- d-----w- c:\program files\Spyware Terminator
2010-02-11 12:29 . 2009-11-11 14:28 -------- d-----w- c:\documents and settings\Administrator\Application Data\Spyware Terminator
2010-02-10 11:22 . 2009-10-13 15:58 -------- d-----w- c:\documents and settings\Administrator\Application Data\Skype
2010-02-10 10:12 . 2009-10-13 16:05 -------- d-----w- c:\documents and settings\Administrator\Application Data\skypePM
2010-02-04 23:03 . 2010-02-04 23:03 52224 ----a-w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-02-04 23:02 . 2009-11-11 14:48 117760 ----a-w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-01-31 19:39 . 2009-10-18 13:38 -------- d-----w- c:\program files\Foxit Software
2010-01-31 15:21 . 2009-10-31 18:08 -------- d-----w- c:\documents and settings\Administrator\Application Data\uTorrent
2010-01-31 12:47 . 2009-11-29 15:36 -------- d-----w- c:\documents and settings\Administrator\Application Data\FlashgetSetup
2010-01-28 12:17 . 2009-10-03 22:34 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-28 10:58 . 2010-01-11 18:05 -------- d-----w- c:\program files\Your Webcam Watcher Program
2010-01-26 15:51 . 2009-10-02 09:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-24 12:30 . 2009-12-03 14:55 588 ---ha-w- C:\os652192.bin
2010-01-20 17:39 . 2009-11-28 11:32 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-13 15:03 . 2010-01-13 15:03 -------- d-----w- c:\program files\Windows Media Connect 2
2010-01-13 09:25 . 2010-01-13 09:25 -------- d-----w- c:\program files\MSECache
2010-01-11 19:08 . 2010-01-11 19:08 -------- d-----w- c:\program files\Google
2010-01-06 10:11 . 2010-01-06 10:10 5823539 ----a-w- c:\windows\REGBK03.ZIP
2010-01-05 10:00 . 2004-08-04 04:56 832512 ----a-w- c:\windows\system32\wininet.dll
2010-01-05 10:00 . 2004-08-04 04:56 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 10:00 . 2004-08-04 04:56 17408 ------w- c:\windows\system32\corpol.dll
2010-01-03 16:04 . 2010-01-03 16:04 -------- d-----w- c:\program files\Haali
2010-01-03 14:41 . 2009-12-19 12:22 -------- d-----w- c:\documents and settings\Administrator\Application Data\Apple Computer
2010-01-03 14:35 . 2010-01-03 14:34 -------- d-----w- c:\program files\iTunes
2010-01-03 14:35 . 2010-01-03 14:34 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2010-01-03 14:34 . 2010-01-03 14:34 -------- d-----w- c:\program files\iPod
2010-01-03 14:34 . 2009-12-18 22:59 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-01-03 14:34 . 2010-01-03 14:34 -------- d-----w- c:\program files\Bonjour
2010-01-03 11:44 . 2010-01-03 11:44 -------- d-----w- c:\documents and settings\Administrator\Application Data\DivX
2010-01-03 11:37 . 2010-01-03 11:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Pinnacle
2010-01-02 00:33 . 2010-01-02 00:33 -------- d-----w- c:\documents and settings\All Users\Application Data\VideoMach
2010-01-01 23:07 . 2010-01-01 23:07 -------- d-----w- c:\program files\Smallvideosoft
2009-12-31 16:50 . 2004-08-04 03:14 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-31 12:13 . 2009-10-21 16:15 2004 ----a-w- c:\windows\Registration\e10f24f0-652e-11dd-ad8b-0800200c9a66.dll
2009-12-25 14:32 . 2009-12-25 11:50 -------- d-----w- c:\documents and settings\Administrator\Application Data\Nikon
2009-12-25 13:34 . 2009-12-25 11:49 0 ---h--w- c:\documents and settings\All Users\Application Data\PKP_DLbx.DAT
2009-12-25 11:50 . 2009-12-25 10:38 -------- d-----w- c:\program files\Nikon
2009-12-25 11:49 . 2009-12-25 10:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Ultima_T15
2009-12-25 11:49 . 2009-12-25 10:38 -------- d-----w- c:\documents and settings\All Users\Application Data\EnterNHelp
2009-12-25 11:05 . 2009-12-25 11:05 -------- d-----w- c:\program files\BreezeSys
2009-12-25 10:38 . 2009-12-25 10:38 0 ----a-w- c:\documents and settings\All Users\Application Data\PKP_DLdy.DAT
2009-12-24 20:02 . 2009-11-28 17:18 -------- d-----w- c:\program files\NOVOMATIC Gaminator CF1 Final
2009-12-23 13:15 . 2009-12-23 12:32 -------- d-----w- c:\program files\FLY2000TV
2009-12-22 21:35 . 2009-11-11 14:47 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-12-22 20:43 . 2009-12-22 20:31 -------- d-----w- c:\documents and settings\Administrator\Application Data\DAEMON Tools Lite
2009-12-22 20:39 . 2009-12-22 20:31 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-12-22 20:39 . 2009-12-22 20:37 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite
2009-12-22 20:37 . 2009-12-22 20:37 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2009-12-21 17:00 . 2009-12-21 17:00 -------- d-----w- c:\program files\LimeWire
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_E9E3E8815ADBA390949375.exe
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_6FEFF9B68218417F98F549.exe
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_0276E7E570CBB4EA97FB0F.exe
2009-12-20 11:44 . 2009-11-02 13:05 -------- d-----w- c:\program files\Readon Technology
2009-12-18 23:01 . 2009-12-18 22:59 -------- d-----w- c:\program files\QuickTime
2009-12-16 18:43 . 2009-10-02 08:37 343040 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:08 . 2004-08-04 04:56 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-12-08 19:26 . 2004-08-04 03:18 2145280 ------w- c:\windows\system32\ntoskrnl.exe
2009-12-08 18:43 . 2004-08-03 22:59 2023936 ------w- c:\windows\system32\ntkrnlpa.exe
2009-12-04 18:22 . 2004-08-04 03:15 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-12-03 18:52 . 2009-12-03 18:52 65536 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{CDEBE7FF-C832-4B91-9214-A4CA610D78C9}\ARPPRODUCTICON.exe
2009-11-29 16:16 . 2009-11-29 16:16 3349872 ----a-w- c:\documents and settings\Administrator\Application Data\PPLiveVA\PPVAUpdate\PPVAUpdate.exe
2009-11-29 15:37 . 2009-11-29 15:37 305 ----a-w- c:\windows\system32\secushr.dat
2009-11-27 17:11 . 2004-08-04 04:56 1291776 ----a-w- c:\windows\system32\quartz.dll
2009-11-27 17:11 . 2004-08-04 00:56 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:07 . 2004-08-07 00:17 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:07 . 2001-08-17 22:36 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:07 . 2004-08-04 04:56 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 16:07 . 2004-08-04 04:56 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:07 . 2004-08-04 00:56 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-22 15:02 . 2009-11-22 15:02 34048 ----a-w- c:\windows\system32\eEmpty.exe
2009-11-22 10:52 . 2009-11-22 15:02 626688 ----a-w- c:\windows\system32\msvcr80.dll
2009-11-22 10:52 . 2009-11-22 15:02 548864 ----a-w- c:\windows\system32\msvcp80.dll
2009-11-21 15:51 . 2004-08-04 04:56 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-04-09 2029640]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 14:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sasnative32
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dni]
2007-01-06 17:16 753664 ----a-w- c:\program files\365dníNET\365dniNET.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
2005-01-07 15:07 61952 ------w- c:\windows\system32\HdAShCut.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2009-09-23 21:45 1657448 ----a-w- c:\program files\NVIDIA Corporation\nView\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-11-10 22:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2006-06-23 09:21 847872 ----a-r- c:\program files\Analog Devices\Core\smax4pnp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WmdmPmSN"=3 (0x3)
"Themes"=3 (0x3)
"mnmsrvc"=3 (0x3)
"CiSvc"=3 (0x3)
"Adobe LM Service"=3 (0x3)
"TapiSrv"=3 (0x3)
"sp_rssrv"=2 (0x2)
"SENS"=2 (0x2)
"Schedule"=2 (0x2)
"ASTSRV"=2 (0x2)
"WMPNetworkSvc"=3 (0x3)
"ose"=3 (0x3)
"MDM"=2 (0x2)
"Kingsoft Antivirus WebShield Service"=3 (0x3)
"iPod Service"=3 (0x3)
"idsvc"=3 (0x3)
"IDriverT"=3 (0x3)
"FLEXnet Licensing Service"=3 (0x3)
"ASO3DiskOptimizer"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Sierra\\Empire Earth\\Empire Earth.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\NOVOMATIC Gaminator CF1 Final\\game.exe"=
"$INSTDIR\\FlvDetector.exe"= c:\\Program Files\\FlashGet Network\\FlashGet 3\\FlvDetector.exe
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\lotus\\organize\\org6.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [9.4.2009 15:18 107256]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [12.10.2009 21:24 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.10.2009 21:24 74480]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [11.11.2009 15:28 142592]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [9.4.2009 15:19 731840]
R3 PhTVTune;Philips FM1216 MK3 TV Tuner;c:\windows\system32\drivers\phtvtune.sys [5.11.2004 0:45 19904]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [24.12.2009 16:42 17792]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [22.12.2009 21:31 691696]
S2 713xTVCard;SAA7134 TV Card;c:\windows\system32\drivers\SAA713x.sys [15.3.2005 11:00 277504]
S3 ADASPROT;SYSTWEAKASO;\??\c:\program files\Advanced System Optimizer 3\adasprot32.sys --> c:\program files\Advanced System Optimizer 3\adasprot32.sys [?]
S3 FlyPCI;FlyPCI;c:\windows\system32\drivers\FlyPCI.sys [23.12.2009 13:33 4134]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [12.10.2009 21:24 7408]
S4 ASTSRV;Nalpeiron Licensing Service;c:\windows\system32\ASTSRV.EXE [21.10.2009 17:18 57344]
S4 Kingsoft Antivirus WebShield Service;Kingsoft Antivirus WebShield Service;c:\program files\Maxthon2\Modules\MxKWS\KSWebShield.exe [26.10.2009 3:53 202136]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9C450606-ED24-4958-92BA-B8940C99D441}]
2009-03-04 14:32 8192 ----a-w- c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Contents of the 'Scheduled Tasks' folder
2009-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-1563985344-725345543-500Core.job
- c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-12-06 12:35]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://google.com
mStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{B4E30F61-16D9-11D3-85D1-005004229569} - {85E0B172-04FA-11D1-B7DA-00A0C90348D6} - c:\lotus\organize\bandobjs.dll
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\platform\WINNT_x86-msvc\components\SSSLauncher.dll
FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll
FF - plugin: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - plugin: c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdjvu.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHANS REMOVED - - - -
AddRemove-365dnk6.0.7 - c:\windows\365dnk\uninstall.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-16 18:46
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-1547161642-1563985344-725345543-500\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{14AC7FF2-6A27-A8E7-E230-8304256ADFF2}*]
"hahapbkdlidgpecg"=hex:69,61,6b,65,69,69,6b,6f,69,69,6b,66,6c,69,6e,62,6c,6a,
00,00
"ianajcemfgbklhpflc"=hex:69,61,6d,65,6b,6b,6f,67,69,62,69,6c,70,6d,64,6f,6a,6f,
00,00
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|˙˙˙˙Ŕ•€|ů•A~*]
"AB141C35E9F4BF344B9FC010BB17F68A"=""
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(908)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\WININET.dll
.
Completion time: 2010-02-16 18:51:02
ComboFix-quarantined-files.txt 2010-02-16 17:50
Pre-Run: 100 731 346 944 bytes free
Post-Run: Volných bajtů: 100 973 101 056
- - End Of File - - 7D6F6B5A6A1EE9926FEB66608699B77E
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.511.290 [GMT 1:00]
Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Administrator\Application Data\BITS
c:\documents and settings\Administrator\Application Data\BITS\BITS.ini
c:\documents and settings\Administrator\Application Data\BITS\DHTTable.dat
c:\documents and settings\Administrator\Application Data\BITS\ProxyList.ini
c:\documents and settings\Administrator\Application Data\BITS\UPnP.ini
c:\documents and settings\Administrator\Application Data\FlashGetBHO
c:\documents and settings\Administrator\Application Data\FlashGetBHO\FlashGetBHO3.dll
c:\documents and settings\Administrator\Application Data\FlashGetBHO\FlashGetHook.dll
c:\documents and settings\Administrator\Application Data\FlashGetBHO\GetAllUrl.htm
c:\documents and settings\Administrator\Application Data\FlashGetBHO\GetUrl.htm
C:\LOG.TXT
c:\program files\FlashGet Network
c:\windows\regedit.com
c:\windows\system32\_000012_.tmp.dll
c:\windows\system32\Ijl11.dll
c:\windows\system32\secustat.dat
c:\windows\system32\SIntf16.dll
c:\windows\system32\skinboxer43.dll
c:\windows\system32\taskmgr.com
.
((((((((((((((((((((((((( Files Created from 2010-01-16 to 2010-02-16 )))))))))))))))))))))))))))))))
.
2010-02-15 12:20 . 2010-02-15 12:20 -------- d-----w- c:\documents and settings\Administrator\Application Data\ESET
2010-02-15 12:19 . 2010-02-15 12:19 -------- d-----w- c:\program files\ESET
2010-02-14 00:46 . 2010-02-14 00:46 -------- d-----w- c:\windows\system32\Adobe
2010-02-13 15:48 . 2010-02-13 15:48 81920 ----a-w- c:\windows\OLE2TASK.DAT
2010-02-13 15:47 . 2010-02-13 15:47 -------- d-----w- c:\program files\Elcom
2010-02-13 15:46 . 2009-09-25 11:51 101816 ----a-w- c:\windows\system32\POS.dll
2010-02-13 15:46 . 2009-11-13 10:46 524288 ----a-w- c:\windows\system32\ECR.dll
2010-02-13 15:46 . 2009-11-11 14:35 270336 ----a-w- c:\windows\system32\Comm32.dll
2010-02-13 15:46 . 2008-07-01 08:43 43152 ----a-w- c:\windows\system32\CommTX.dll
2010-02-13 15:41 . 2010-02-13 15:41 -------- d-----w- c:\program files\Common Files\BUSINESS OBJECTS
2010-02-13 15:41 . 2010-02-13 18:21 -------- d-----w- C:\Omega
2010-02-13 15:38 . 2010-02-13 15:39 -------- d-----w- C:\OmegaIns
2010-02-13 13:23 . 2009-11-11 13:50 311296 ----a-w- c:\windows\system32\TubeFinder.exe
2010-02-13 13:22 . 2009-06-19 17:51 119568 ----a-w- c:\windows\system32\VB6FR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 101888 ----a-w- c:\windows\system32\VB6STKIT.DLL
2010-02-13 13:22 . 2009-06-19 17:51 9728 ----a-w- c:\windows\system32\PCCLPFR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 141312 ----a-w- c:\windows\system32\MSCMCFR.DLL
2010-02-13 13:22 . 2009-06-19 17:51 32768 ----a-w- c:\windows\system32\CMDLGFR.DLL
2010-02-13 13:22 . 2010-02-13 19:29 -------- d-----w- c:\documents and settings\Administrator\Application Data\FreeFLVConverter
2010-02-13 13:22 . 2010-02-13 13:23 -------- d-----w- c:\program files\Free FLV Converter
2010-02-12 17:38 . 2010-02-12 17:38 -------- d--h--w- c:\windows\system32\GroupPolicy
2010-02-09 07:44 . 2010-02-09 07:46 6072853 ----a-w- c:\windows\REGBK04.ZIP
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\zts2.exe
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\vcmgcd32.dll
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\systems.txt
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\system32\iifgfgf.dll
2010-02-09 07:43 . 2010-02-09 07:43 -------- d---a-w- c:\windows\rundl132.dll
2010-01-31 19:53 . 2010-02-13 12:21 -------- d-----w- c:\program files\PDF Editor 2
2010-01-31 19:53 . 2010-01-31 19:53 74752 ----a-w- c:\windows\cadkasdeinst01e.exe
2010-01-30 11:57 . 2010-02-13 12:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Systweak
2010-01-30 11:51 . 2010-02-13 12:09 -------- d-----w- c:\documents and settings\Administrator\Application Data\Systweak
2010-01-30 11:51 . 2010-01-30 11:51 -------- d-----w- c:\documents and settings\All Users\Application Data\MyDefrag
2010-01-30 11:24 . 2010-01-30 11:24 -------- d-----w- c:\program files\DiskInternals
2010-01-28 11:21 . 2010-01-28 11:21 -------- d-----w- c:\documents and settings\Administrator\Application Data\ABBYY
2010-01-28 11:03 . 2010-01-31 11:01 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\ABBYY
2010-01-27 13:33 . 2010-01-31 11:03 -------- d-----w- c:\program files\ABBYY FineReader 10
2010-01-27 13:33 . 2010-01-31 11:01 -------- d-----w- c:\documents and settings\All Users\Application Data\ABBYY
2010-01-27 13:29 . 2010-01-27 13:30 -------- d-----w- c:\temp\FR10PE
2010-01-26 15:51 . 2010-01-26 15:51 -------- d-----w- c:\program files\LizardTech
2010-01-24 12:17 . 2010-01-24 12:17 -------- d-----w- c:\documents and settings\Administrator\Application Data\MyNotesKeeper
2010-01-20 10:16 . 2010-01-20 10:16 -------- d-----w- c:\program files\ConvertHelper
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-15 20:05 . 2009-11-18 22:22 -------- d-----w- c:\program files\trend micro
2010-02-15 20:05 . 2009-12-21 16:40 -------- d-----w- c:\documents and settings\Administrator\Application Data\LimeWire
2010-02-15 19:41 . 2009-12-11 16:53 -------- d-----w- c:\documents and settings\Administrator\Application Data\365dni
2010-02-13 19:54 . 2009-10-03 09:06 12856 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-02-13 18:20 . 2009-10-11 09:06 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-02-13 14:38 . 2010-01-03 13:33 -------- d-----w- c:\program files\Images Index Creator
2010-02-13 12:28 . 2010-01-03 11:39 -------- d-----w- c:\program files\Pinnacle
2010-02-13 12:23 . 2009-12-25 10:38 -------- d-----w- c:\program files\Common Files\Nikon
2010-02-13 12:20 . 2009-12-06 15:11 -------- d-----w- c:\program files\Image Grabber II
2010-02-13 10:45 . 2009-10-03 23:03 -------- d-----w- c:\documents and settings\All Users\Application Data\FLEXnet
2010-02-11 12:33 . 2009-11-11 14:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-02-11 12:33 . 2009-11-11 14:28 -------- d-----w- c:\program files\Spyware Terminator
2010-02-11 12:29 . 2009-11-11 14:28 -------- d-----w- c:\documents and settings\Administrator\Application Data\Spyware Terminator
2010-02-10 11:22 . 2009-10-13 15:58 -------- d-----w- c:\documents and settings\Administrator\Application Data\Skype
2010-02-10 10:12 . 2009-10-13 16:05 -------- d-----w- c:\documents and settings\Administrator\Application Data\skypePM
2010-02-04 23:03 . 2010-02-04 23:03 52224 ----a-w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-02-04 23:02 . 2009-11-11 14:48 117760 ----a-w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-01-31 19:39 . 2009-10-18 13:38 -------- d-----w- c:\program files\Foxit Software
2010-01-31 15:21 . 2009-10-31 18:08 -------- d-----w- c:\documents and settings\Administrator\Application Data\uTorrent
2010-01-31 12:47 . 2009-11-29 15:36 -------- d-----w- c:\documents and settings\Administrator\Application Data\FlashgetSetup
2010-01-28 12:17 . 2009-10-03 22:34 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-28 10:58 . 2010-01-11 18:05 -------- d-----w- c:\program files\Your Webcam Watcher Program
2010-01-26 15:51 . 2009-10-02 09:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-24 12:30 . 2009-12-03 14:55 588 ---ha-w- C:\os652192.bin
2010-01-20 17:39 . 2009-11-28 11:32 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-13 15:03 . 2010-01-13 15:03 -------- d-----w- c:\program files\Windows Media Connect 2
2010-01-13 09:25 . 2010-01-13 09:25 -------- d-----w- c:\program files\MSECache
2010-01-11 19:08 . 2010-01-11 19:08 -------- d-----w- c:\program files\Google
2010-01-06 10:11 . 2010-01-06 10:10 5823539 ----a-w- c:\windows\REGBK03.ZIP
2010-01-05 10:00 . 2004-08-04 04:56 832512 ----a-w- c:\windows\system32\wininet.dll
2010-01-05 10:00 . 2004-08-04 04:56 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 10:00 . 2004-08-04 04:56 17408 ------w- c:\windows\system32\corpol.dll
2010-01-03 16:04 . 2010-01-03 16:04 -------- d-----w- c:\program files\Haali
2010-01-03 14:41 . 2009-12-19 12:22 -------- d-----w- c:\documents and settings\Administrator\Application Data\Apple Computer
2010-01-03 14:35 . 2010-01-03 14:34 -------- d-----w- c:\program files\iTunes
2010-01-03 14:35 . 2010-01-03 14:34 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2010-01-03 14:34 . 2010-01-03 14:34 -------- d-----w- c:\program files\iPod
2010-01-03 14:34 . 2009-12-18 22:59 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-01-03 14:34 . 2010-01-03 14:34 -------- d-----w- c:\program files\Bonjour
2010-01-03 11:44 . 2010-01-03 11:44 -------- d-----w- c:\documents and settings\Administrator\Application Data\DivX
2010-01-03 11:37 . 2010-01-03 11:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Pinnacle
2010-01-02 00:33 . 2010-01-02 00:33 -------- d-----w- c:\documents and settings\All Users\Application Data\VideoMach
2010-01-01 23:07 . 2010-01-01 23:07 -------- d-----w- c:\program files\Smallvideosoft
2009-12-31 16:50 . 2004-08-04 03:14 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-31 12:13 . 2009-10-21 16:15 2004 ----a-w- c:\windows\Registration\e10f24f0-652e-11dd-ad8b-0800200c9a66.dll
2009-12-25 14:32 . 2009-12-25 11:50 -------- d-----w- c:\documents and settings\Administrator\Application Data\Nikon
2009-12-25 13:34 . 2009-12-25 11:49 0 ---h--w- c:\documents and settings\All Users\Application Data\PKP_DLbx.DAT
2009-12-25 11:50 . 2009-12-25 10:38 -------- d-----w- c:\program files\Nikon
2009-12-25 11:49 . 2009-12-25 10:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Ultima_T15
2009-12-25 11:49 . 2009-12-25 10:38 -------- d-----w- c:\documents and settings\All Users\Application Data\EnterNHelp
2009-12-25 11:05 . 2009-12-25 11:05 -------- d-----w- c:\program files\BreezeSys
2009-12-25 10:38 . 2009-12-25 10:38 0 ----a-w- c:\documents and settings\All Users\Application Data\PKP_DLdy.DAT
2009-12-24 20:02 . 2009-11-28 17:18 -------- d-----w- c:\program files\NOVOMATIC Gaminator CF1 Final
2009-12-23 13:15 . 2009-12-23 12:32 -------- d-----w- c:\program files\FLY2000TV
2009-12-22 21:35 . 2009-11-11 14:47 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-12-22 20:43 . 2009-12-22 20:31 -------- d-----w- c:\documents and settings\Administrator\Application Data\DAEMON Tools Lite
2009-12-22 20:39 . 2009-12-22 20:31 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-12-22 20:39 . 2009-12-22 20:37 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite
2009-12-22 20:37 . 2009-12-22 20:37 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2009-12-21 17:00 . 2009-12-21 17:00 -------- d-----w- c:\program files\LimeWire
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_E9E3E8815ADBA390949375.exe
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_6FEFF9B68218417F98F549.exe
2009-12-20 11:44 . 2009-11-02 13:45 5430 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{846E11C7-4E39-469C-8469-569E7DE9C5CD}\_0276E7E570CBB4EA97FB0F.exe
2009-12-20 11:44 . 2009-11-02 13:05 -------- d-----w- c:\program files\Readon Technology
2009-12-18 23:01 . 2009-12-18 22:59 -------- d-----w- c:\program files\QuickTime
2009-12-16 18:43 . 2009-10-02 08:37 343040 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:08 . 2004-08-04 04:56 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-12-08 19:26 . 2004-08-04 03:18 2145280 ------w- c:\windows\system32\ntoskrnl.exe
2009-12-08 18:43 . 2004-08-03 22:59 2023936 ------w- c:\windows\system32\ntkrnlpa.exe
2009-12-04 18:22 . 2004-08-04 03:15 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-12-03 18:52 . 2009-12-03 18:52 65536 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{CDEBE7FF-C832-4B91-9214-A4CA610D78C9}\ARPPRODUCTICON.exe
2009-11-29 16:16 . 2009-11-29 16:16 3349872 ----a-w- c:\documents and settings\Administrator\Application Data\PPLiveVA\PPVAUpdate\PPVAUpdate.exe
2009-11-29 15:37 . 2009-11-29 15:37 305 ----a-w- c:\windows\system32\secushr.dat
2009-11-27 17:11 . 2004-08-04 04:56 1291776 ----a-w- c:\windows\system32\quartz.dll
2009-11-27 17:11 . 2004-08-04 00:56 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:07 . 2004-08-07 00:17 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:07 . 2001-08-17 22:36 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:07 . 2004-08-04 04:56 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 16:07 . 2004-08-04 04:56 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:07 . 2004-08-04 00:56 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-22 15:02 . 2009-11-22 15:02 34048 ----a-w- c:\windows\system32\eEmpty.exe
2009-11-22 10:52 . 2009-11-22 15:02 626688 ----a-w- c:\windows\system32\msvcr80.dll
2009-11-22 10:52 . 2009-11-22 15:02 548864 ----a-w- c:\windows\system32\msvcp80.dll
2009-11-21 15:51 . 2004-08-04 04:56 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-04-09 2029640]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 14:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sasnative32
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dni]
2007-01-06 17:16 753664 ----a-w- c:\program files\365dníNET\365dniNET.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
2005-01-07 15:07 61952 ------w- c:\windows\system32\HdAShCut.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2009-09-23 21:45 1657448 ----a-w- c:\program files\NVIDIA Corporation\nView\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-11-10 22:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2006-06-23 09:21 847872 ----a-r- c:\program files\Analog Devices\Core\smax4pnp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WmdmPmSN"=3 (0x3)
"Themes"=3 (0x3)
"mnmsrvc"=3 (0x3)
"CiSvc"=3 (0x3)
"Adobe LM Service"=3 (0x3)
"TapiSrv"=3 (0x3)
"sp_rssrv"=2 (0x2)
"SENS"=2 (0x2)
"Schedule"=2 (0x2)
"ASTSRV"=2 (0x2)
"WMPNetworkSvc"=3 (0x3)
"ose"=3 (0x3)
"MDM"=2 (0x2)
"Kingsoft Antivirus WebShield Service"=3 (0x3)
"iPod Service"=3 (0x3)
"idsvc"=3 (0x3)
"IDriverT"=3 (0x3)
"FLEXnet Licensing Service"=3 (0x3)
"ASO3DiskOptimizer"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Sierra\\Empire Earth\\Empire Earth.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\NOVOMATIC Gaminator CF1 Final\\game.exe"=
"$INSTDIR\\FlvDetector.exe"= c:\\Program Files\\FlashGet Network\\FlashGet 3\\FlvDetector.exe
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\lotus\\organize\\org6.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [9.4.2009 15:18 107256]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [12.10.2009 21:24 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.10.2009 21:24 74480]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [11.11.2009 15:28 142592]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [9.4.2009 15:19 731840]
R3 PhTVTune;Philips FM1216 MK3 TV Tuner;c:\windows\system32\drivers\phtvtune.sys [5.11.2004 0:45 19904]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [24.12.2009 16:42 17792]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [22.12.2009 21:31 691696]
S2 713xTVCard;SAA7134 TV Card;c:\windows\system32\drivers\SAA713x.sys [15.3.2005 11:00 277504]
S3 ADASPROT;SYSTWEAKASO;\??\c:\program files\Advanced System Optimizer 3\adasprot32.sys --> c:\program files\Advanced System Optimizer 3\adasprot32.sys [?]
S3 FlyPCI;FlyPCI;c:\windows\system32\drivers\FlyPCI.sys [23.12.2009 13:33 4134]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [12.10.2009 21:24 7408]
S4 ASTSRV;Nalpeiron Licensing Service;c:\windows\system32\ASTSRV.EXE [21.10.2009 17:18 57344]
S4 Kingsoft Antivirus WebShield Service;Kingsoft Antivirus WebShield Service;c:\program files\Maxthon2\Modules\MxKWS\KSWebShield.exe [26.10.2009 3:53 202136]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9C450606-ED24-4958-92BA-B8940C99D441}]
2009-03-04 14:32 8192 ----a-w- c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Contents of the 'Scheduled Tasks' folder
2009-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-1563985344-725345543-500Core.job
- c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-12-06 12:35]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://google.com
mStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{B4E30F61-16D9-11D3-85D1-005004229569} - {85E0B172-04FA-11D1-B7DA-00A0C90348D6} - c:\lotus\organize\bandobjs.dll
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\platform\WINNT_x86-msvc\components\SSSLauncher.dll
FF - component: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll
FF - plugin: c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1v0u31ok.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - plugin: c:\documents and settings\Administrator\Local Settings\Application Data\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdjvu.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHANS REMOVED - - - -
AddRemove-365dnk6.0.7 - c:\windows\365dnk\uninstall.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-16 18:46
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-1547161642-1563985344-725345543-500\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{14AC7FF2-6A27-A8E7-E230-8304256ADFF2}*]
"hahapbkdlidgpecg"=hex:69,61,6b,65,69,69,6b,6f,69,69,6b,66,6c,69,6e,62,6c,6a,
00,00
"ianajcemfgbklhpflc"=hex:69,61,6d,65,6b,6b,6f,67,69,62,69,6c,70,6d,64,6f,6a,6f,
00,00
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|˙˙˙˙Ŕ•€|ů•A~*]
"AB141C35E9F4BF344B9FC010BB17F68A"=""
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(908)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\WININET.dll
.
Completion time: 2010-02-16 18:51:02
ComboFix-quarantined-files.txt 2010-02-16 17:50
Pre-Run: 100 731 346 944 bytes free
Post-Run: Volných bajtů: 100 973 101 056
- - End Of File - - 7D6F6B5A6A1EE9926FEB66608699B77E
Re: MWAV vyhadzuje chyby
Prosím Vám otestujte ten soubor znovu, at je to ten Vás soubor.Ještě otestujte na www.virustotal.com
c:\program files\365dníNET\365dniNET.exe
Jak to vypadá s počítačem?Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
vysledok z virustotal 365dni.exe
analisis/d0c739af3661aae0519f0d7ae1c884b16de070ccca1667ab3422ecb92a7dcf7a-1246969906
pocitac - mam pocit, ze na pozadi bezi privela procesov, obcas mu trva pridlho nez vobec reaguje. Asi bude najlepsie, ak to cele znova sformatujem...
analisis/d0c739af3661aae0519f0d7ae1c884b16de070ccca1667ab3422ecb92a7dcf7a-1246969906
pocitac - mam pocit, ze na pozadi bezi privela procesov, obcas mu trva pridlho nez vobec reaguje. Asi bude najlepsie, ak to cele znova sformatujem...
Re: MWAV vyhadzuje chyby
Prosím Vás pošlete mi celý odkaz na stránku virustotalu.
Díky
Budeme dělat další testy nebo to zformátujete?
Díky
Budeme dělat další testy nebo to zformátujete?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: MWAV vyhadzuje chyby
http://www.virustotal.com/cs/analisis/d ... 1246969906
skusme este testovat ak mame sancu, ze to opravime
skusme este testovat ak mame sancu, ze to opravime
Přispějete na provoz fóra?