Dobrý den
Potřeboval bych poradit při spuštění systému se mi na přihlašovací obrazovce zobrazí můj účet ale po zadání hesla najeden jen plocha s pozadím. V nouzovém režimu z kterého právě píšu účet normálně funguje.
Než k zaseknutí došlo PC psalo že jsou problémy protože se nedalo připojit k internetu a to v tskmgr.exe, další hlášení drvtsn32, a co jsem si ještě poznamenal tak v knihovně ntdll.dll se nepodařilo nalézt vstupní bod procedury.
Za veškeré rady předem dík.
PS: Při pokusu o navrácení za pomoci konzole pro zotavení došlo k zaseknutí, to bylo ještě za chodu účtu tudíž ne v nouzovém režimu.
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nenajede účet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Nenajede účet
Dobrý den
Na počítači se potřebuji učit takže ho potřebuji mít funkční. Můžete mi poradit na koho se obrátit s tímto problémem? Děkuji.
Na počítači se potřebuji učit takže ho potřebuji mít funkční. Můžete mi poradit na koho se obrátit s tímto problémem? Děkuji.
Re: Nenajede účet
Hezké odpoledne 
pokusím se vám pomoci. Pro jistotu - máte inst.cd?
Vložte log ze Rsitu, viz můj podpis
pokusím se vám pomoci. Pro jistotu - máte inst.cd?
Vložte log ze Rsitu, viz můj podpisNepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Nenajede účet
Děkuji za pomoc, ale jak jsem psal potřebuji se učit tak jsem byl nucen využít jiných služeb pro opravu PC.
Přesto moc děkuji za ochotu pomoct.
Toto fórum je skvělé a již několikrát jste mi zde pomohli, a pokud nastanou nějaké problémy určitě se zase na vaše fórum rád obrátím.
Přeji příjemný den.
PS když už jsem tady zeptám se je možno vypnout službu ctfmon.exe při startu systému není mi jasné co je zač jinak mám vše vyplé.
Přesto moc děkuji za ochotu pomoct.
Toto fórum je skvělé a již několikrát jste mi zde pomohli, a pokud nastanou nějaké problémy určitě se zase na vaše fórum rád obrátím.
Přeji příjemný den.
PS když už jsem tady zeptám se je možno vypnout službu ctfmon.exe při startu systému není mi jasné co je zač jinak mám vše vyplé.
Re: Nenajede účet
Pokud ho chcete vypnout při startu, napište, upravíme to. Jen bych potřebovala vidět log ze Rsitu.Při spuštění libovolné aplikace sady Microsoft Office XP je spuštěn program Ctfmon.exe (Ctfmon), který zůstane spuštěný i po ukončení všech aplikací sady Office.
Program Ctfmon.exe aktivuje procesor pro zadávání textu (TIP) pomocí alternativního vstupu uživatele a panel jazyků sady Microsoft Office.
Program Ctfmon.exe sleduje aktivní okna a poskytuje podporu služeb vstupu textu pro rozpoznávání hlasu, rozpoznávání rukopisu, klávesnici, překlad a další technologie alternativního vstupu uživatele.
Odinstalovat bych Vám ho nedoporučila.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Nenajede účet
Děkuji jste velice hodná právě musím odjet mohl bych se na vás obrátit zhruba 16:15 hodin.
Re: Nenajede účet
Dobrý den tak jsem zpět a jak se tak dívám už nejste online.
pokud budete ochotna mi stále pomoci můžete mi napsat na ketez@seznam.cz
Děkuji.
pokud budete ochotna mi stále pomoci můžete mi napsat na ketez@seznam.cz
Děkuji.
Re: Nenajede účet
Zasílám ještě log.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Pater at 2010-02-11 16:50:36
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (67%) free of 49 GB
Total RAM: 1407 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:51:01, on 11.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
F:\Programy\Alwil Software\Avast4\aswUpdSv.exe
F:\Programy\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
F:\Programy\Java\jre6\bin\jqs.exe
F:\Programy\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
F:\Programy\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\svchost.exe
F:\Programy\Alwil Software\Avast4\ashMaiSv.exe
F:\Programy\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
F:\Programy\Mozilla Thunderbird\thunderbird.exe
F:\Programy\Internet Explorer\IEXPLORE.EXE
F:\Programy\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Pater\Plocha\programy\Oprava PC\RSIT.exe
F:\Programy\trend micro\Pater.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programy\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Programy\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Programy\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] F:\Programy\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Programy\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\Programy\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://F:\Programy\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - F:\Programy\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - F:\Programy\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\Programy\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programy\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programy\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programy\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programy\Messenger\msmsgs.exe
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Programy\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Programy\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Programy\Java\jre6\bin\jqs.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O24 - Desktop Component 1: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\hodiny.html
O24 - Desktop Component 2: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\hotizont.html
O24 - Desktop Component 3: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\radio.html
O24 - Desktop Component 4: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\pocasi.html
--
End of file - 8072 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - F:\Programy\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-04 263280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - F:\Programy\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2010-01-04 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Programy\Java\jre6\bin\jp2ssv.dll [2010-01-04 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - F:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-04 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-04 263280]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=F:\Programy\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=F:\Programy\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-05 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Programy\Microsoft Games\Zoo Tycoon 2\zt.exe"="F:\Programy\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"F:\Programy\Microsoft Office\Office12\ONENOTE.EXE"="F:\Programy\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"F:\Programy\Totalcomander\totalcmd\TOTALCMD.EXE"="F:\Programy\Totalcomander\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"F:\Programy\ICQ7.0\ICQ.exe"="F:\Programy\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"F:\Programy\ICQ7.0\aolload.exe"="F:\Programy\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"F:\Programy\Skype\Plugin Manager\skypePM.exe"="F:\Programy\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"F:\Programy\Pinnacle\Studio 11\programs\RM.exe"="F:\Programy\Pinnacle\Studio 11\programs\RM.exe:*:Enabled:Render Manager"
"F:\Programy\Pinnacle\Studio 11\programs\Studio.exe"="F:\Programy\Pinnacle\Studio 11\programs\Studio.exe:*:Enabled:Studio"
"F:\Programy\Pinnacle\Studio 11\programs\PMSRegisterFile.exe"="F:\Programy\Pinnacle\Studio 11\programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"F:\Programy\Pinnacle\Studio 11\programs\umi.exe"="F:\Programy\Pinnacle\Studio 11\programs\umi.exe:*:Enabled:umi"
"F:\Programy\Skype\Phone\Skype.exe"="F:\Programy\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Programy\ICQ7.0\ICQ.exe"="F:\Programy\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"F:\Programy\ICQ7.0\aolload.exe"="F:\Programy\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-02-11 13:24:54 ----D---- C:\WINDOWS\LastGood
2010-02-11 12:53:29 ----D---- C:\Documents and Settings\Pater\Data aplikací\Malwarebytes
2010-02-11 12:53:24 ----D---- F:\Programy\Malwarebytes' Anti-Malware
2010-02-11 12:53:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-02-11 12:26:38 ----D---- F:\Programy\trend micro
2010-02-11 12:26:38 ----D---- C:\rsit
2010-02-10 16:53:08 ----SHD---- C:\WINDOWS\CSC
2010-02-10 16:50:48 ----D---- C:\WINDOWS\Tasks(3)
2010-02-09 13:27:54 ----D---- F:\Programy\MozBackup
2010-02-09 01:33:33 ----SD---- C:\WINDOWS\Tasks
2010-02-08 23:43:38 ----RASHOT---- C:\WINDOWS\wininit.ini
2010-02-08 10:49:03 ----SHD---- C:\Config.Msi
2010-02-08 10:47:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-02-08 10:17:44 ----D---- C:\WINDOWS\system32\XPSViewer
2010-02-08 10:17:39 ----D---- C:\WINDOWS\system32\en-US
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-02-07 22:09:52 ----A---- C:\WINDOWS\system32\fmod.dll
2010-02-06 16:53:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\FileCure
2010-02-06 09:45:27 ----D---- F:\Programy\ESET
2010-02-04 13:01:06 ----D---- F:\Programy\Mozilla Firefox
2010-02-04 12:58:12 ----D---- C:\Documents and Settings\Pater\Data aplikací\Opera
2010-02-04 12:53:50 ----D---- F:\Programy\Opera
2010-02-02 12:11:28 ----D---- F:\Programy\Phoenix Technologies
2010-01-25 14:13:52 ----A---- C:\WINDOWS\system32\pvmjpg30.dll
2010-01-25 14:13:44 ----A---- C:\WINDOWS\system32\GDIPLUS.DLL
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\RALMain.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\MMAviAx.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\MLPagAx.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\DiskIO.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\AVIPrAx.dll
2010-01-25 14:13:13 ----A---- C:\WINDOWS\system32\cacheX.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltwvc13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltrio13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltr13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\ltkrn13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\ltfil13n.DLL
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LTCLR13s.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LTCLR13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LMUIRes.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LMLRes.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\lftga13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lftga13n.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfpsd13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\LFCMP13s.DLL
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\LFCMP13n.DLL
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfbmp13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfbmp13n.dll
2010-01-25 14:07:43 ----RSD---- C:\WINDOWS\assembly
2010-01-25 14:07:43 ----D---- C:\WINDOWS\Microsoft.NET
2010-01-25 14:07:41 ----D---- C:\WINDOWS\system32\URTTemp
2010-01-25 14:06:52 ----A---- C:\WINDOWS\system32\ATL70.DLL
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\mase32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\masd32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\mamc32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\macd32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\ma32.dll
2010-01-25 14:04:55 ----A---- C:\WINDOWS\RSETPATH.exe
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCR70.DLL
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCP70.DLL
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCI70.DLL
2010-01-25 14:04:12 ----A---- C:\WINDOWS\system32\MFC70U.DLL
2010-01-25 14:04:12 ----A---- C:\WINDOWS\system32\MFC70.DLL
2010-01-25 14:04:11 ----A---- C:\WINDOWS\system32\PCLEGetGuid.dll
2010-01-25 14:02:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio
2010-01-25 14:02:07 ----D---- F:\Programy\Pinnacle
2010-01-25 14:01:53 ----D---- C:\Documents and Settings\Pater\Data aplikací\InstallShield
2010-01-25 13:42:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
2010-01-25 11:37:26 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-25 11:36:41 ----D---- C:\Documents and Settings\Pater\Data aplikací\Ahead
2010-01-25 11:31:53 ----D---- C:\Program Files\Common Files\Ahead
2010-01-24 17:20:27 ----D---- C:\Documents and Settings\Pater\Data aplikací\skypePM
2010-01-24 17:16:55 ----D---- C:\Documents and Settings\Pater\Data aplikací\Skype
2010-01-24 17:16:22 ----D---- C:\Program Files\Common Files\Skype
2010-01-24 17:16:19 ----RD---- F:\Programy\Skype
2010-01-24 17:16:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-01-24 17:04:23 ----D---- F:\Programy\Uniblue
2010-01-24 17:04:23 ----D---- C:\Documents and Settings\Pater\Data aplikací\Uniblue
2010-01-24 17:04:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\DriverScanner
2010-01-24 17:01:25 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2010-01-23 21:57:03 ----D---- C:\WINDOWS\Minidump
2010-01-23 06:43:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macromedia
2010-01-23 06:41:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macrovision
2010-01-23 06:39:36 ----D---- C:\Program Files\Common Files\Macromedia Shared
2010-01-23 06:38:49 ----D---- C:\Program Files\Common Files\Macromedia
2010-01-23 06:37:57 ----D---- F:\Programy\Macromedia
2010-01-22 12:57:14 ----D---- C:\Program Files\Common Files\TV
2010-01-22 12:57:02 ----D---- F:\Programy\InterVideo
2010-01-22 12:57:02 ----D---- F:\Programy\AVerTV
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\Prop7134.dll
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\34com.dll
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\34api.dll
2010-01-22 12:51:43 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-01-19 11:17:36 ----D---- C:\Documents and Settings\Pater\Data aplikací\ICQ
2010-01-19 11:17:18 ----D---- F:\Programy\ICQ7.0
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\MSXML4a.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvcr70.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvcp70.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvaut32.dll
2010-01-17 00:38:41 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2010-01-16 22:07:36 ----D---- F:\Programy\HP
2010-01-13 21:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
======List of files/folders modified in the last 1 months======
2010-02-11 16:50:50 ----D---- C:\WINDOWS\Prefetch
2010-02-11 16:45:29 ----D---- F:\Programy\Mozilla Thunderbird
2010-02-11 13:47:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-02-11 13:47:02 ----D---- C:\WINDOWS
2010-02-11 13:27:18 ----D---- C:\WINDOWS\Temp
2010-02-11 13:26:06 ----HD---- C:\WINDOWS\inf
2010-02-11 13:25:33 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-11 13:24:53 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-11 13:09:28 ----D---- C:\WINDOWS\system32\drivers
2010-02-11 13:07:15 ----D---- C:\WINDOWS\system32
2010-02-11 10:06:27 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-02-10 16:53:21 ----D---- C:\Documents and Settings
2010-02-09 04:06:53 ----D---- C:\WINDOWS\system32\config
2010-02-08 10:50:20 ----SHD---- C:\WINDOWS\Installer
2010-02-08 10:50:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-08 10:49:46 ----D---- C:\WINDOWS\WinSxS
2010-02-08 10:47:27 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-08 10:47:19 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-08 10:17:37 ----RSD---- C:\WINDOWS\Fonts
2010-02-08 10:17:13 ----D---- C:\WINDOWS\system32\spool
2010-02-07 18:26:42 ----D---- C:\Program Files\Common Files\Adobe
2010-02-07 18:26:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-02-07 18:26:26 ----D---- F:\Programy\Adobe
2010-02-07 00:40:33 ----D---- C:\WINDOWS\system32\wbem
2010-02-07 00:40:32 ----D---- C:\WINDOWS\Registration
2010-02-07 00:38:02 ----D---- C:\WINDOWS\system32\Restore
2010-02-06 17:52:03 ----D---- C:\WINDOWS\Debug
2010-02-06 16:37:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-06 10:38:06 ----D---- C:\WINDOWS\system32\1025
2010-02-06 09:45:30 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-04 13:05:17 ----D---- C:\Documents and Settings\Pater\Data aplikací\Mozilla
2010-02-03 08:44:19 ----D---- F:\Programy\EasyPHP1-8
2010-01-29 08:20:26 ----A---- C:\WINDOWS\AVerTV.ini
2010-01-25 14:20:35 ----SD---- C:\Documents and Settings\Pater\Data aplikací\Microsoft
2010-01-25 14:12:48 ----HD---- F:\Programy\InstallShield Installation Information
2010-01-25 14:09:10 ----D---- C:\WINDOWS\system32\mui
2010-01-25 14:06:50 ----A---- C:\AUTOEXEC.BAT
2010-01-25 13:11:27 ----D---- F:\Programy\Nero
2010-01-24 07:36:23 ----D---- C:\Documents and Settings\Pater\Data aplikací\Adobe
2010-01-23 17:35:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-01-23 06:47:11 ----D---- C:\Documents and Settings\Pater\Data aplikací\Macromedia
2010-01-23 06:33:05 ----D---- C:\Documents and Settings\Pater\Data aplikací\Zoner
2010-01-22 12:56:59 ----D---- C:\Program Files\Common Files\InstallShield
2010-01-22 12:56:48 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-01-21 20:29:44 ----D---- F:\Programy\internet explorer
2010-01-21 20:27:22 ----D---- C:\WINDOWS\ie8updates
2010-01-16 22:03:41 ----D---- C:\WINDOWS\Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-08-11 39424]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-04-18 13059]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-05 1035776]
R3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-01-27 128256]
R3 BCM43XX;Broadcom 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-03-10 371712]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2004-12-23 1337850]
R3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camc6aud.sys [2005-04-06 38144]
R3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camc6hal.sys [2005-04-06 349312]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-01-05 51056]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-01-05 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-01-05 21488]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2005-04-18 1038336]
R3 HSFHWATI;HSFHWATI; C:\WINDOWS\system32\DRIVERS\HSFHWATI.sys [2005-04-18 200576]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-10-29 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-04-04 160768]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-04-18 703488]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 Cap7134;Cap7134 Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2010-01-22 347072]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PhTVTune;Cap7134 TVTuner; C:\WINDOWS\system32\DRIVERS\PhTVTune.sys [2010-01-22 45760]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM); C:\WINDOWS\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS); C:\WINDOWS\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM); C:\WINDOWS\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; F:\Programy\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-05 364544]
R2 avast! Antivirus;avast! Antivirus; F:\Programy\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2004-12-23 254007]
R2 JavaQuickStarterService;Java Quick Starter; F:\Programy\Java\jre6\bin\jqs.exe [2010-01-04 153376]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; F:\Programy\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; F:\Programy\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gusvc;Google Software Updater; F:\Programy\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-01-04 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2010-01-23 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; F:\Programy\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by Pater at 2010-02-11 16:50:36
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (67%) free of 49 GB
Total RAM: 1407 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:51:01, on 11.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
F:\Programy\Alwil Software\Avast4\aswUpdSv.exe
F:\Programy\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
F:\Programy\Java\jre6\bin\jqs.exe
F:\Programy\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
F:\Programy\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\svchost.exe
F:\Programy\Alwil Software\Avast4\ashMaiSv.exe
F:\Programy\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
F:\Programy\Mozilla Thunderbird\thunderbird.exe
F:\Programy\Internet Explorer\IEXPLORE.EXE
F:\Programy\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Pater\Plocha\programy\Oprava PC\RSIT.exe
F:\Programy\trend micro\Pater.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programy\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Programy\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Programy\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] F:\Programy\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Programy\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\Programy\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://F:\Programy\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - F:\Programy\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - F:\Programy\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\Programy\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programy\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\Programy\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programy\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programy\Messenger\msmsgs.exe
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Programy\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Programy\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Programy\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Programy\Java\jre6\bin\jqs.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O24 - Desktop Component 1: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\hodiny.html
O24 - Desktop Component 2: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\hotizont.html
O24 - Desktop Component 3: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\radio.html
O24 - Desktop Component 4: (no name) - C:\WINDOWS\system32\1031\plocha_ferari\pocasi.html
--
End of file - 8072 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - F:\Programy\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - F:\Programy\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-04 263280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - F:\Programy\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2010-01-04 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Programy\Java\jre6\bin\jp2ssv.dll [2010-01-04 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - F:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-04 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - F:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-04 263280]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=F:\Programy\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=F:\Programy\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-05 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Programy\Microsoft Games\Zoo Tycoon 2\zt.exe"="F:\Programy\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"F:\Programy\Microsoft Office\Office12\ONENOTE.EXE"="F:\Programy\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"F:\Programy\Totalcomander\totalcmd\TOTALCMD.EXE"="F:\Programy\Totalcomander\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"F:\Programy\ICQ7.0\ICQ.exe"="F:\Programy\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"F:\Programy\ICQ7.0\aolload.exe"="F:\Programy\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"F:\Programy\Skype\Plugin Manager\skypePM.exe"="F:\Programy\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"F:\Programy\Pinnacle\Studio 11\programs\RM.exe"="F:\Programy\Pinnacle\Studio 11\programs\RM.exe:*:Enabled:Render Manager"
"F:\Programy\Pinnacle\Studio 11\programs\Studio.exe"="F:\Programy\Pinnacle\Studio 11\programs\Studio.exe:*:Enabled:Studio"
"F:\Programy\Pinnacle\Studio 11\programs\PMSRegisterFile.exe"="F:\Programy\Pinnacle\Studio 11\programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"F:\Programy\Pinnacle\Studio 11\programs\umi.exe"="F:\Programy\Pinnacle\Studio 11\programs\umi.exe:*:Enabled:umi"
"F:\Programy\Skype\Phone\Skype.exe"="F:\Programy\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Programy\ICQ7.0\ICQ.exe"="F:\Programy\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"F:\Programy\ICQ7.0\aolload.exe"="F:\Programy\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-02-11 13:24:54 ----D---- C:\WINDOWS\LastGood
2010-02-11 12:53:29 ----D---- C:\Documents and Settings\Pater\Data aplikací\Malwarebytes
2010-02-11 12:53:24 ----D---- F:\Programy\Malwarebytes' Anti-Malware
2010-02-11 12:53:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-02-11 12:26:38 ----D---- F:\Programy\trend micro
2010-02-11 12:26:38 ----D---- C:\rsit
2010-02-10 16:53:08 ----SHD---- C:\WINDOWS\CSC
2010-02-10 16:50:48 ----D---- C:\WINDOWS\Tasks(3)
2010-02-09 13:27:54 ----D---- F:\Programy\MozBackup
2010-02-09 01:33:33 ----SD---- C:\WINDOWS\Tasks
2010-02-08 23:43:38 ----RASHOT---- C:\WINDOWS\wininit.ini
2010-02-08 10:49:03 ----SHD---- C:\Config.Msi
2010-02-08 10:47:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-02-08 10:17:44 ----D---- C:\WINDOWS\system32\XPSViewer
2010-02-08 10:17:39 ----D---- C:\WINDOWS\system32\en-US
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-08 10:16:56 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-02-07 22:09:52 ----A---- C:\WINDOWS\system32\fmod.dll
2010-02-06 16:53:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\FileCure
2010-02-06 09:45:27 ----D---- F:\Programy\ESET
2010-02-04 13:01:06 ----D---- F:\Programy\Mozilla Firefox
2010-02-04 12:58:12 ----D---- C:\Documents and Settings\Pater\Data aplikací\Opera
2010-02-04 12:53:50 ----D---- F:\Programy\Opera
2010-02-02 12:11:28 ----D---- F:\Programy\Phoenix Technologies
2010-01-25 14:13:52 ----A---- C:\WINDOWS\system32\pvmjpg30.dll
2010-01-25 14:13:44 ----A---- C:\WINDOWS\system32\GDIPLUS.DLL
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\RALMain.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\MMAviAx.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\MLPagAx.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\DiskIO.dll
2010-01-25 14:13:13 ----N---- C:\WINDOWS\system32\AVIPrAx.dll
2010-01-25 14:13:13 ----A---- C:\WINDOWS\system32\cacheX.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltwvc13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltrio13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\Ltr13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\ltkrn13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\ltfil13n.DLL
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LTCLR13s.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LTCLR13n.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LMUIRes.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\LMLRes.dll
2010-01-25 14:13:03 ----N---- C:\WINDOWS\system32\lftga13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lftga13n.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfpsd13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\LFCMP13s.DLL
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\LFCMP13n.DLL
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfbmp13s.dll
2010-01-25 14:13:02 ----N---- C:\WINDOWS\system32\lfbmp13n.dll
2010-01-25 14:07:43 ----RSD---- C:\WINDOWS\assembly
2010-01-25 14:07:43 ----D---- C:\WINDOWS\Microsoft.NET
2010-01-25 14:07:41 ----D---- C:\WINDOWS\system32\URTTemp
2010-01-25 14:06:52 ----A---- C:\WINDOWS\system32\ATL70.DLL
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\mase32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\masd32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\mamc32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\macd32.dll
2010-01-25 14:06:50 ----A---- C:\WINDOWS\system32\ma32.dll
2010-01-25 14:04:55 ----A---- C:\WINDOWS\RSETPATH.exe
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCR70.DLL
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCP70.DLL
2010-01-25 14:04:15 ----A---- C:\WINDOWS\system32\MSVCI70.DLL
2010-01-25 14:04:12 ----A---- C:\WINDOWS\system32\MFC70U.DLL
2010-01-25 14:04:12 ----A---- C:\WINDOWS\system32\MFC70.DLL
2010-01-25 14:04:11 ----A---- C:\WINDOWS\system32\PCLEGetGuid.dll
2010-01-25 14:02:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio
2010-01-25 14:02:07 ----D---- F:\Programy\Pinnacle
2010-01-25 14:01:53 ----D---- C:\Documents and Settings\Pater\Data aplikací\InstallShield
2010-01-25 13:42:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
2010-01-25 11:37:26 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-25 11:36:41 ----D---- C:\Documents and Settings\Pater\Data aplikací\Ahead
2010-01-25 11:31:53 ----D---- C:\Program Files\Common Files\Ahead
2010-01-24 17:20:27 ----D---- C:\Documents and Settings\Pater\Data aplikací\skypePM
2010-01-24 17:16:55 ----D---- C:\Documents and Settings\Pater\Data aplikací\Skype
2010-01-24 17:16:22 ----D---- C:\Program Files\Common Files\Skype
2010-01-24 17:16:19 ----RD---- F:\Programy\Skype
2010-01-24 17:16:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-01-24 17:04:23 ----D---- F:\Programy\Uniblue
2010-01-24 17:04:23 ----D---- C:\Documents and Settings\Pater\Data aplikací\Uniblue
2010-01-24 17:04:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\DriverScanner
2010-01-24 17:01:25 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2010-01-23 21:57:03 ----D---- C:\WINDOWS\Minidump
2010-01-23 06:43:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macromedia
2010-01-23 06:41:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macrovision
2010-01-23 06:39:36 ----D---- C:\Program Files\Common Files\Macromedia Shared
2010-01-23 06:38:49 ----D---- C:\Program Files\Common Files\Macromedia
2010-01-23 06:37:57 ----D---- F:\Programy\Macromedia
2010-01-22 12:57:14 ----D---- C:\Program Files\Common Files\TV
2010-01-22 12:57:02 ----D---- F:\Programy\InterVideo
2010-01-22 12:57:02 ----D---- F:\Programy\AVerTV
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\Prop7134.dll
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\34com.dll
2010-01-22 12:52:10 ----A---- C:\WINDOWS\system32\34api.dll
2010-01-22 12:51:43 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-01-19 11:17:36 ----D---- C:\Documents and Settings\Pater\Data aplikací\ICQ
2010-01-19 11:17:18 ----D---- F:\Programy\ICQ7.0
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\MSXML4a.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvcr70.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvcp70.dll
2010-01-17 00:39:00 ----RA---- C:\WINDOWS\system32\hpvaut32.dll
2010-01-17 00:38:41 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2010-01-16 22:07:36 ----D---- F:\Programy\HP
2010-01-13 21:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
======List of files/folders modified in the last 1 months======
2010-02-11 16:50:50 ----D---- C:\WINDOWS\Prefetch
2010-02-11 16:45:29 ----D---- F:\Programy\Mozilla Thunderbird
2010-02-11 13:47:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-02-11 13:47:02 ----D---- C:\WINDOWS
2010-02-11 13:27:18 ----D---- C:\WINDOWS\Temp
2010-02-11 13:26:06 ----HD---- C:\WINDOWS\inf
2010-02-11 13:25:33 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-11 13:24:53 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-11 13:09:28 ----D---- C:\WINDOWS\system32\drivers
2010-02-11 13:07:15 ----D---- C:\WINDOWS\system32
2010-02-11 10:06:27 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-02-10 16:53:21 ----D---- C:\Documents and Settings
2010-02-09 04:06:53 ----D---- C:\WINDOWS\system32\config
2010-02-08 10:50:20 ----SHD---- C:\WINDOWS\Installer
2010-02-08 10:50:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-08 10:49:46 ----D---- C:\WINDOWS\WinSxS
2010-02-08 10:47:27 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-08 10:47:19 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-08 10:17:37 ----RSD---- C:\WINDOWS\Fonts
2010-02-08 10:17:13 ----D---- C:\WINDOWS\system32\spool
2010-02-07 18:26:42 ----D---- C:\Program Files\Common Files\Adobe
2010-02-07 18:26:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-02-07 18:26:26 ----D---- F:\Programy\Adobe
2010-02-07 00:40:33 ----D---- C:\WINDOWS\system32\wbem
2010-02-07 00:40:32 ----D---- C:\WINDOWS\Registration
2010-02-07 00:38:02 ----D---- C:\WINDOWS\system32\Restore
2010-02-06 17:52:03 ----D---- C:\WINDOWS\Debug
2010-02-06 16:37:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-06 10:38:06 ----D---- C:\WINDOWS\system32\1025
2010-02-06 09:45:30 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-04 13:05:17 ----D---- C:\Documents and Settings\Pater\Data aplikací\Mozilla
2010-02-03 08:44:19 ----D---- F:\Programy\EasyPHP1-8
2010-01-29 08:20:26 ----A---- C:\WINDOWS\AVerTV.ini
2010-01-25 14:20:35 ----SD---- C:\Documents and Settings\Pater\Data aplikací\Microsoft
2010-01-25 14:12:48 ----HD---- F:\Programy\InstallShield Installation Information
2010-01-25 14:09:10 ----D---- C:\WINDOWS\system32\mui
2010-01-25 14:06:50 ----A---- C:\AUTOEXEC.BAT
2010-01-25 13:11:27 ----D---- F:\Programy\Nero
2010-01-24 07:36:23 ----D---- C:\Documents and Settings\Pater\Data aplikací\Adobe
2010-01-23 17:35:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-01-23 06:47:11 ----D---- C:\Documents and Settings\Pater\Data aplikací\Macromedia
2010-01-23 06:33:05 ----D---- C:\Documents and Settings\Pater\Data aplikací\Zoner
2010-01-22 12:56:59 ----D---- C:\Program Files\Common Files\InstallShield
2010-01-22 12:56:48 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-01-21 20:29:44 ----D---- F:\Programy\internet explorer
2010-01-21 20:27:22 ----D---- C:\WINDOWS\ie8updates
2010-01-16 22:03:41 ----D---- C:\WINDOWS\Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-08-11 39424]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-04-18 13059]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-05 1035776]
R3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-01-27 128256]
R3 BCM43XX;Broadcom 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-03-10 371712]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2004-12-23 1337850]
R3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camc6aud.sys [2005-04-06 38144]
R3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camc6hal.sys [2005-04-06 349312]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-01-05 51056]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-01-05 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-01-05 21488]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2005-04-18 1038336]
R3 HSFHWATI;HSFHWATI; C:\WINDOWS\system32\DRIVERS\HSFHWATI.sys [2005-04-18 200576]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-10-29 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-04-04 160768]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-04-18 703488]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 Cap7134;Cap7134 Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2010-01-22 347072]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PhTVTune;Cap7134 TVTuner; C:\WINDOWS\system32\DRIVERS\PhTVTune.sys [2010-01-22 45760]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM); C:\WINDOWS\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS); C:\WINDOWS\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM); C:\WINDOWS\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; F:\Programy\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-05 364544]
R2 avast! Antivirus;avast! Antivirus; F:\Programy\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2004-12-23 254007]
R2 JavaQuickStarterService;Java Quick Starter; F:\Programy\Java\jre6\bin\jqs.exe [2010-01-04 153376]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; F:\Programy\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; F:\Programy\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gusvc;Google Software Updater; F:\Programy\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-01-04 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2010-01-23 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; F:\Programy\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Nenajede účet
Omlouvám se , ale nejsem tu stále, podle času
Ctfmon budete chtít tedy vypnout? Já m yslím, že ničemu nevadí .
Prověříme pár souborů, co se mi nezdají . Můžu vědět, co Vám na tom počítači odborník opravil - co tomu bylo?
Dejte soubor otestovat na http://www.virustotal.com
C:\WINDOWS\RSETPATH.exe
C:\WINDOWS\system32\mase32.dll
Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
Sem vložte link s výsledky.
Ctfmon budete chtít tedy vypnout? Já m yslím, že ničemu nevadí
.Prověříme pár souborů, co se mi nezdají
. Můžu vědět, co Vám na tom počítači odborník opravil - co tomu bylo? Dejte soubor otestovat na http://www.virustotal.comC:\WINDOWS\RSETPATH.exe
C:\WINDOWS\system32\mase32.dll
Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
Sem vložte link s výsledky.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Nenajede účet
Dobrý večer
Nešlo spojení s internetem a byly tam nalezeny nějaké viry, ale nedělal jsem si zálohu.
Nešlo spojení s internetem a byly tam nalezeny nějaké viry, ale nedělal jsem si zálohu.
Re: Nenajede účet
Ctfmon budete chtít tedy vypnout? Já myslím, že ničemu nevadí
C:\WINDOWS\RSETPATH.exe
C:\WINDOWS\system32\mase32.dll
Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
Sem vložte link s výsledky.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Nenajede účet
Ctfmon bud chtít vypnout.
Kontrolované soubory.
mase32.dll
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.02.11 -
AhnLab-V3 5.0.0.2 2010.02.11 -
AntiVir 7.9.1.160 2010.02.11 -
Antiy-AVL 2.0.3.7 2010.02.11 -
Authentium 5.2.0.5 2010.02.11 -
Avast 4.8.1351.0 2010.02.11 -
AVG 9.0.0.730 2010.02.11 -
BitDefender 7.2 2010.02.11 -
CAT-QuickHeal 10.00 2010.02.11 -
ClamAV 0.96.0.0-git 2010.02.11 -
Comodo 3902 2010.02.11 -
DrWeb 5.0.1.12222 2010.02.11 -
eSafe 7.0.17.0 2010.02.11 -
eTrust-Vet 35.2.7296 2010.02.11 -
F-Prot 4.5.1.85 2010.02.11 -
F-Secure 9.0.15370.0 2010.02.11 -
Fortinet 4.0.14.0 2010.02.11 -
GData 19 2010.02.11 -
Ikarus T3.1.1.80.0 2010.02.11 -
Jiangmin 13.0.900 2010.02.08 -
K7AntiVirus 7.10.971 2010.02.11 -
Kaspersky 7.0.0.125 2010.02.11 -
McAfee 5889 2010.02.11 -
McAfee+Artemis 5889 2010.02.11 -
McAfee-GW-Edition 6.8.5 2010.02.11 -
Microsoft 1.5406 2010.02.11 -
NOD32 4859 2010.02.11 -
Norman 6.04.08 2010.02.11 -
nProtect 2009.1.8.0 2010.02.11 -
Panda 10.0.2.2 2010.02.11 -
PCTools 7.0.3.5 2010.02.11 -
Prevx 3.0 2010.02.11 -
Rising 22.34.01.03 2010.02.11 -
Sophos 4.50.0 2010.02.11 -
Sunbelt 3.9.2398.2 2010.02.11 -
Symantec 20091.2.0.41 2010.02.11 -
TheHacker 6.5.1.1.189 2010.02.11 -
TrendMicro 9.120.0.1004 2010.02.11 -
VBA32 3.12.12.2 2010.02.11 -
ViRobot 2010.2.11.2182 2010.02.11 -
VirusBuster 5.0.21.0 2010.02.11 -
Rozšiřující informace
File size: 138752 bytes
MD5...: 4d479b6f1473712e16d9103f6dd5361e
SHA1..: a3fc7db3f761da6f32251c0ea7cb531275cfb5ba
SHA256: 87f83193b96b87f79938641f8d8f4bd327ddc64bfe9e9b000cad17abae64cdaa
ssdeep: 1536:4MVvkzbGdFUq2GPHOQnKhda/SV4i4BX3+a3r78uzYYSDD/jXqf:4ovkzbOx
uQnKbafXu88uzYYSDD76f
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x87c4
timedatestamp.....: 0x323868ef (Thu Sep 12 19:47:59 1996)
machinetype.......: 0x14c (I386)
( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xbe21 0xc000 6.64 0c54a765c1e1c011f083da7b3e7d3706
.bss 0xd000 0x1efb8 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0x2c000 0xa288 0xa400 3.92 c4aaad92fd0f01808121216bbc955e58
.data 0x37000 0x9d78 0x9e00 4.00 763caf8cbe17382a89e498943a8ceb99
.idata 0x41000 0x5a8 0x600 4.99 4cad2228a34fceda86a7988a264d85d4
.edata 0x42000 0xc7 0x200 2.31 bfadb8eb26caf2942848aa6fa71af60a
.reloc 0x43000 0xe02 0x1000 5.34 2262695c06b168a1d643d3a36752c78a
( 2 imports )
> MA32.dll: _errCompensation, _iterative_compensation, adx_data_9, adx_data_a, ma_frameSz, object_abstraction, _matrix_coeffs, fast_operation_fixup, bdx_array_2, bdx_array_4, saved_values, fast_operation_error, cdx_table_c, bdx_array_1, dummyLoop, ddx_data3, discarded_values, edx_ptrs_z, ma_sampleRateTable, ma_totBitrateLayer2Tbl, ma_totBitrateLayer1Tbl, ddx_data4
> KERNEL32.dll: DeleteCriticalSection, InitializeCriticalSection, RaiseException, MultiByteToWideChar, GetModuleHandleA, WideCharToMultiByte, WriteFile, GetStartupInfoA, GetFileType, GetStdHandle, GetCPInfo, GetOEMCP, GetACP, GetModuleFileNameA, TlsGetValue, TlsFree, TlsAlloc, TlsSetValue, GetCurrentThreadId, GetEnvironmentStrings, GetCommandLineA, GetVersion, GetProcAddress, LoadLibraryA, GetLastError, EnterCriticalSection, LeaveCriticalSection, ExitProcess, VirtualFree, VirtualAlloc
( 6 exports )
mase_chanMapString, mase_close, mase_encode, mase_init, mase_modelString, mase_versionString
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable MS Visual C++ (generic) (65.1%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
RSETPATH.exe
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.02.11 -
AhnLab-V3 5.0.0.2 2010.02.11 -
AntiVir 7.9.1.160 2010.02.11 -
Antiy-AVL 2.0.3.7 2010.02.11 -
Authentium 5.2.0.5 2010.02.11 -
Avast 4.8.1351.0 2010.02.11 -
AVG 9.0.0.730 2010.02.11 -
BitDefender 7.2 2010.02.11 -
CAT-QuickHeal 10.00 2010.02.11 -
ClamAV 0.96.0.0-git 2010.02.11 -
Comodo 3902 2010.02.11 -
DrWeb 5.0.1.12222 2010.02.11 -
eSafe 7.0.17.0 2010.02.11 -
eTrust-Vet 35.2.7296 2010.02.11 -
F-Prot 4.5.1.85 2010.02.11 -
F-Secure 9.0.15370.0 2010.02.11 -
Fortinet 4.0.14.0 2010.02.11 -
GData 19 2010.02.11 -
Ikarus T3.1.1.80.0 2010.02.11 -
Jiangmin 13.0.900 2010.02.08 -
K7AntiVirus 7.10.971 2010.02.11 -
Kaspersky 7.0.0.125 2010.02.11 -
McAfee 5889 2010.02.11 -
McAfee+Artemis 5889 2010.02.11 -
McAfee-GW-Edition 6.8.5 2010.02.11 -
Microsoft 1.5406 2010.02.11 -
NOD32 4859 2010.02.11 -
Norman 6.04.08 2010.02.11 -
nProtect 2009.1.8.0 2010.02.11 -
Panda 10.0.2.2 2010.02.11 -
PCTools 7.0.3.5 2010.02.11 -
Prevx 3.0 2010.02.11 -
Rising 22.34.01.03 2010.02.11 -
Sophos 4.50.0 2010.02.11 -
Sunbelt 3.9.2398.2 2010.02.11 -
Symantec 20091.2.0.41 2010.02.11 -
TheHacker 6.5.1.1.189 2010.02.11 -
TrendMicro 9.120.0.1004 2010.02.11 -
VBA32 3.12.12.2 2010.02.11 -
ViRobot 2010.2.11.2182 2010.02.11 -
VirusBuster 5.0.21.0 2010.02.11 -
Rozšiřující informace
File size: 41219 bytes
MD5...: de605de82c02fa006975336cf4f71e74
SHA1..: 54ecbaf185b2dd7814b38c864235bd567a5cb3eb
SHA256: 46c7d2f6e9db07c74dc2adddea1f375448eca8d7bc868592895eb3634daade8f
ssdeep: 384:iHN+iSWUbHJCdmu7PABZsZfSCXe7ylpVrF6oZE:8+j3bQBLABOg4ptF6o6
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x11d0
timedatestamp.....: 0x3a2fa02f (Thu Dec 07 14:35:27 2000)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x377e 0x4000 6.07 e976c5c6a8707364f69e3b53ed456ce6
.rdata 0x5000 0x874 0x1000 3.43 0a61f9afda5ce95849f6817928693c67
.data 0x6000 0x2a9c 0x3000 0.52 f68687582f9c6786aaef4306b427f937
.rsrc 0x9000 0x5000 0x1103 0.93 6b0662f3db771fdfceed4045beaba53a
( 2 imports )
> ADVAPI32.dll: RegOpenKeyA, RegSetValueExA, RegCloseKey, RegFlushKey, RegDeleteValueA, RegQueryValueExA, RegOpenKeyExA
> KERNEL32.dll: GetStartupInfoA, GetCommandLineA, GetVersion, GetModuleHandleA, ExitProcess, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, GetModuleFileNameA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, SetHandleCount, GetStdHandle, GetFileType, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, HeapCreate, VirtualFree, HeapFree, RtlUnwind, WriteFile, GetCPInfo, GetACP, GetOEMCP, HeapAlloc, VirtualAlloc, HeapReAlloc, GetProcAddress, LoadLibraryA, MultiByteToWideChar, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW
( 0 exports )
RDS...: NSRL Reference Data Set
-
sigcheck:
publisher....: Pinnacle Systems
copyright....: Copyright (c) 1997-2000
product......: Pinnacle Systems RSETPATH
description..: ResetPath
original name: RSETPATH.exe
internal name: RSETPATH
file version.: 1.40
comments.....:
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
pdfid.: -
Kontrolované soubory.
mase32.dll
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.02.11 -
AhnLab-V3 5.0.0.2 2010.02.11 -
AntiVir 7.9.1.160 2010.02.11 -
Antiy-AVL 2.0.3.7 2010.02.11 -
Authentium 5.2.0.5 2010.02.11 -
Avast 4.8.1351.0 2010.02.11 -
AVG 9.0.0.730 2010.02.11 -
BitDefender 7.2 2010.02.11 -
CAT-QuickHeal 10.00 2010.02.11 -
ClamAV 0.96.0.0-git 2010.02.11 -
Comodo 3902 2010.02.11 -
DrWeb 5.0.1.12222 2010.02.11 -
eSafe 7.0.17.0 2010.02.11 -
eTrust-Vet 35.2.7296 2010.02.11 -
F-Prot 4.5.1.85 2010.02.11 -
F-Secure 9.0.15370.0 2010.02.11 -
Fortinet 4.0.14.0 2010.02.11 -
GData 19 2010.02.11 -
Ikarus T3.1.1.80.0 2010.02.11 -
Jiangmin 13.0.900 2010.02.08 -
K7AntiVirus 7.10.971 2010.02.11 -
Kaspersky 7.0.0.125 2010.02.11 -
McAfee 5889 2010.02.11 -
McAfee+Artemis 5889 2010.02.11 -
McAfee-GW-Edition 6.8.5 2010.02.11 -
Microsoft 1.5406 2010.02.11 -
NOD32 4859 2010.02.11 -
Norman 6.04.08 2010.02.11 -
nProtect 2009.1.8.0 2010.02.11 -
Panda 10.0.2.2 2010.02.11 -
PCTools 7.0.3.5 2010.02.11 -
Prevx 3.0 2010.02.11 -
Rising 22.34.01.03 2010.02.11 -
Sophos 4.50.0 2010.02.11 -
Sunbelt 3.9.2398.2 2010.02.11 -
Symantec 20091.2.0.41 2010.02.11 -
TheHacker 6.5.1.1.189 2010.02.11 -
TrendMicro 9.120.0.1004 2010.02.11 -
VBA32 3.12.12.2 2010.02.11 -
ViRobot 2010.2.11.2182 2010.02.11 -
VirusBuster 5.0.21.0 2010.02.11 -
Rozšiřující informace
File size: 138752 bytes
MD5...: 4d479b6f1473712e16d9103f6dd5361e
SHA1..: a3fc7db3f761da6f32251c0ea7cb531275cfb5ba
SHA256: 87f83193b96b87f79938641f8d8f4bd327ddc64bfe9e9b000cad17abae64cdaa
ssdeep: 1536:4MVvkzbGdFUq2GPHOQnKhda/SV4i4BX3+a3r78uzYYSDD/jXqf:4ovkzbOx
uQnKbafXu88uzYYSDD76f
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x87c4
timedatestamp.....: 0x323868ef (Thu Sep 12 19:47:59 1996)
machinetype.......: 0x14c (I386)
( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xbe21 0xc000 6.64 0c54a765c1e1c011f083da7b3e7d3706
.bss 0xd000 0x1efb8 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0x2c000 0xa288 0xa400 3.92 c4aaad92fd0f01808121216bbc955e58
.data 0x37000 0x9d78 0x9e00 4.00 763caf8cbe17382a89e498943a8ceb99
.idata 0x41000 0x5a8 0x600 4.99 4cad2228a34fceda86a7988a264d85d4
.edata 0x42000 0xc7 0x200 2.31 bfadb8eb26caf2942848aa6fa71af60a
.reloc 0x43000 0xe02 0x1000 5.34 2262695c06b168a1d643d3a36752c78a
( 2 imports )
> MA32.dll: _errCompensation, _iterative_compensation, adx_data_9, adx_data_a, ma_frameSz, object_abstraction, _matrix_coeffs, fast_operation_fixup, bdx_array_2, bdx_array_4, saved_values, fast_operation_error, cdx_table_c, bdx_array_1, dummyLoop, ddx_data3, discarded_values, edx_ptrs_z, ma_sampleRateTable, ma_totBitrateLayer2Tbl, ma_totBitrateLayer1Tbl, ddx_data4
> KERNEL32.dll: DeleteCriticalSection, InitializeCriticalSection, RaiseException, MultiByteToWideChar, GetModuleHandleA, WideCharToMultiByte, WriteFile, GetStartupInfoA, GetFileType, GetStdHandle, GetCPInfo, GetOEMCP, GetACP, GetModuleFileNameA, TlsGetValue, TlsFree, TlsAlloc, TlsSetValue, GetCurrentThreadId, GetEnvironmentStrings, GetCommandLineA, GetVersion, GetProcAddress, LoadLibraryA, GetLastError, EnterCriticalSection, LeaveCriticalSection, ExitProcess, VirtualFree, VirtualAlloc
( 6 exports )
mase_chanMapString, mase_close, mase_encode, mase_init, mase_modelString, mase_versionString
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable MS Visual C++ (generic) (65.1%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
RSETPATH.exe
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.02.11 -
AhnLab-V3 5.0.0.2 2010.02.11 -
AntiVir 7.9.1.160 2010.02.11 -
Antiy-AVL 2.0.3.7 2010.02.11 -
Authentium 5.2.0.5 2010.02.11 -
Avast 4.8.1351.0 2010.02.11 -
AVG 9.0.0.730 2010.02.11 -
BitDefender 7.2 2010.02.11 -
CAT-QuickHeal 10.00 2010.02.11 -
ClamAV 0.96.0.0-git 2010.02.11 -
Comodo 3902 2010.02.11 -
DrWeb 5.0.1.12222 2010.02.11 -
eSafe 7.0.17.0 2010.02.11 -
eTrust-Vet 35.2.7296 2010.02.11 -
F-Prot 4.5.1.85 2010.02.11 -
F-Secure 9.0.15370.0 2010.02.11 -
Fortinet 4.0.14.0 2010.02.11 -
GData 19 2010.02.11 -
Ikarus T3.1.1.80.0 2010.02.11 -
Jiangmin 13.0.900 2010.02.08 -
K7AntiVirus 7.10.971 2010.02.11 -
Kaspersky 7.0.0.125 2010.02.11 -
McAfee 5889 2010.02.11 -
McAfee+Artemis 5889 2010.02.11 -
McAfee-GW-Edition 6.8.5 2010.02.11 -
Microsoft 1.5406 2010.02.11 -
NOD32 4859 2010.02.11 -
Norman 6.04.08 2010.02.11 -
nProtect 2009.1.8.0 2010.02.11 -
Panda 10.0.2.2 2010.02.11 -
PCTools 7.0.3.5 2010.02.11 -
Prevx 3.0 2010.02.11 -
Rising 22.34.01.03 2010.02.11 -
Sophos 4.50.0 2010.02.11 -
Sunbelt 3.9.2398.2 2010.02.11 -
Symantec 20091.2.0.41 2010.02.11 -
TheHacker 6.5.1.1.189 2010.02.11 -
TrendMicro 9.120.0.1004 2010.02.11 -
VBA32 3.12.12.2 2010.02.11 -
ViRobot 2010.2.11.2182 2010.02.11 -
VirusBuster 5.0.21.0 2010.02.11 -
Rozšiřující informace
File size: 41219 bytes
MD5...: de605de82c02fa006975336cf4f71e74
SHA1..: 54ecbaf185b2dd7814b38c864235bd567a5cb3eb
SHA256: 46c7d2f6e9db07c74dc2adddea1f375448eca8d7bc868592895eb3634daade8f
ssdeep: 384:iHN+iSWUbHJCdmu7PABZsZfSCXe7ylpVrF6oZE:8+j3bQBLABOg4ptF6o6
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x11d0
timedatestamp.....: 0x3a2fa02f (Thu Dec 07 14:35:27 2000)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x377e 0x4000 6.07 e976c5c6a8707364f69e3b53ed456ce6
.rdata 0x5000 0x874 0x1000 3.43 0a61f9afda5ce95849f6817928693c67
.data 0x6000 0x2a9c 0x3000 0.52 f68687582f9c6786aaef4306b427f937
.rsrc 0x9000 0x5000 0x1103 0.93 6b0662f3db771fdfceed4045beaba53a
( 2 imports )
> ADVAPI32.dll: RegOpenKeyA, RegSetValueExA, RegCloseKey, RegFlushKey, RegDeleteValueA, RegQueryValueExA, RegOpenKeyExA
> KERNEL32.dll: GetStartupInfoA, GetCommandLineA, GetVersion, GetModuleHandleA, ExitProcess, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, GetModuleFileNameA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, SetHandleCount, GetStdHandle, GetFileType, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, HeapCreate, VirtualFree, HeapFree, RtlUnwind, WriteFile, GetCPInfo, GetACP, GetOEMCP, HeapAlloc, VirtualAlloc, HeapReAlloc, GetProcAddress, LoadLibraryA, MultiByteToWideChar, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW
( 0 exports )
RDS...: NSRL Reference Data Set
-
sigcheck:
publisher....: Pinnacle Systems
copyright....: Copyright (c) 1997-2000
product......: Pinnacle Systems RSETPATH
description..: ResetPath
original name: RSETPATH.exe
internal name: RSETPATH
file version.: 1.40
comments.....:
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
pdfid.: -
Naposledy upravil(a) ketez67 dne 11 úno 2010 21:39, celkem upraveno 1 x.
Re: Nenajede účet
S ctfmonem něco uděláme, nebo necháme ho spouštět po startu? Používáte word, excel, sadu Office?
Ted máte s počítačem nějaké problémy, na které bychom se podívali?
Ted máte s počítačem nějaké problémy, na které bychom se podívali?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Nenajede účet
Ctfmonem budu chtít vypnout a používám word, excel, sadu Office.
Problém mám je tady u vás na fóru http://www.viry.cz/forum/viewtopic.php?f=13&t=97533
Problém mám je tady u vás na fóru http://www.viry.cz/forum/viewtopic.php?f=13&t=97533
Re: Nenajede účet
Děkuji za vaší pomoc ctmfon jsem vypnul.
Příjemný den.
Příjemný den.
Přispějete na provoz fóra?