Prosím o kontrolu logu, děkuji.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Dominik at 2010-02-21 12:03:31
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 20 GB (65%) free of 31 GB
Total RAM: 1022 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:03:47, on 21.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\Dominik\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Dominik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Dominik\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Dominik\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=030710 serial=DR12CNC-8322248-NFT lang=CZ
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Přidat do Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O9 - Extra button: &Virtuální klávesnice - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: &Kontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.vexcast.com/download/vexcast.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
--
End of file - 6164 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-07-03 68112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Documents and Settings\Dominik\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll [2009-07-14 150768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-08-05 264720]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2008-12-19 83336]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-09-22 16236032]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"AzMixerSel"=C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [2005-06-12 53248]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-12-25 7581696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"CorelDRAW Graphics Suite 11b"=C:\Program Files\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe [2004-06-23 729088]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-07-03 303376]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2009-07-03 219664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"="C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-02-21 12:03:33 ----D---- C:\Program Files\trend micro
2010-02-21 12:03:31 ----D---- C:\rsit
2010-02-21 10:27:48 ----D---- C:\Program Files\Kaspersky Lab
2010-02-21 10:27:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2010-02-21 10:20:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files
2010-02-21 10:20:33 ----AD---- C:\Kaspersky Internet Security 2010 CZ
2010-02-21 10:17:35 ----A---- C:\20100220-022-v5i32.exe
2010-02-21 10:06:05 ----A---- C:\WINDOWS\vpc32.INI
2010-02-21 10:01:21 ----SHD---- C:\Config.Msi
2010-02-21 09:57:59 ----A---- C:\WINDOWS\system32\capicom.dll
2010-02-21 09:57:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2010-02-21 09:56:04 ----RAD---- C:\Symantec AntiVirus v10.1.4.4010 Corporate Edition Client
2010-02-21 09:32:24 ----D---- C:\Documents and Settings\Dominik\Data aplikací\Miranda
2010-02-20 11:36:32 ----D---- C:\Documents and Settings\Dominik\Data aplikací\Corel
2010-02-20 11:35:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2010-02-20 11:34:57 ----D---- C:\Program Files\Common Files\Corel
2010-02-20 11:34:09 ----D---- C:\Program Files\Corel
2010-02-20 10:44:07 ----D---- C:\Documents and Settings\Dominik\Data aplikací\Tific
2010-02-20 10:43:20 ----D---- C:\Program Files\Windows Sidebar
2010-02-20 10:43:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2010-02-20 10:40:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2010-02-20 10:10:18 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2010-02-20 10:10:18 ----A---- C:\WINDOWS\system32\MFC71.dll
2010-02-20 10:10:15 ----D---- C:\Program Files\Alwil Software
2010-02-20 10:09:04 ----D---- C:\Avast Antivirus 2010 Professional With Serials
2010-02-19 16:31:38 ----D---- C:\Program Files\ESET
2010-02-19 16:19:00 ----D---- C:\WINDOWS\Prefetch
2010-02-19 16:15:43 ----D---- C:\Program Files\VS Revo Group
2010-02-19 16:10:36 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-02-19 16:10:36 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-02-19 16:10:24 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-02-19 16:10:24 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-02-19 16:10:24 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-02-19 16:10:22 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-02-19 16:10:22 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2010-02-19 16:10:22 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\credssp.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\azroles.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\ati3duag.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-02-19 16:10:21 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-02-19 16:10:20 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-02-19 16:10:19 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-02-19 16:10:18 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\onex.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\napstat.exe
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-02-19 16:10:17 ----N---- C:\WINDOWS\system32\mssha.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\setupn.exe
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\qutil.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\qagent.dll
2010-02-19 16:10:16 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-02-19 16:10:15 ----N---- C:\WINDOWS\system32\slserv.exe
2010-02-19 16:10:15 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-02-19 16:10:15 ----N---- C:\WINDOWS\system32\slgen.dll
2010-02-19 16:10:15 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-02-19 16:10:14 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-02-19 16:10:11 ----N---- C:\WINDOWS\system32\xmllite.dll
2010-02-19 16:10:11 ----N---- C:\WINDOWS\slrundll.exe
2010-02-19 16:10:11 ----D---- C:\WINDOWS\system32\cs-cz
2010-02-19 16:10:10 ----D---- C:\WINDOWS\system32\cs
2010-02-19 16:10:10 ----D---- C:\WINDOWS\system32\bits
2010-02-19 16:10:10 ----D---- C:\WINDOWS\l2schemas
2010-02-19 16:07:54 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-19 16:05:34 ----D---- C:\WINDOWS\network diagnostic
2010-02-19 16:03:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-02-19 16:00:50 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-19 15:38:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-02-19 15:31:08 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-02-19 15:30:56 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-02-15 19:59:23 ----HD---- C:\VJVod_Cache
2010-02-14 22:52:53 ----D---- C:\WINDOWS\system32\nagasoft
2010-01-27 11:38:53 ----D---- C:\Program Files\QIP
======List of files/folders modified in the last 1 months======
2010-02-21 12:03:34 ----D---- C:\WINDOWS\Temp
2010-02-21 12:03:33 ----D---- C:\Program Files
2010-02-21 12:00:35 ----D---- C:\WINDOWS
2010-02-21 11:57:53 ----D---- C:\Program Files\Common Files
2010-02-21 11:46:35 ----D---- C:\Documents and Settings\Dominik\Data aplikací\uTorrent
2010-02-21 10:51:07 ----D---- C:\WINDOWS\system32
2010-02-21 10:51:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-21 10:47:12 ----D---- C:\WINDOWS\system32\ias
2010-02-21 10:45:29 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-21 10:35:25 ----D---- C:\WINDOWS\system32\drivers
2010-02-21 10:29:19 ----SHD---- C:\WINDOWS\Installer
2010-02-21 10:28:53 ----HD---- C:\WINDOWS\inf
2010-02-21 10:27:40 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-21 10:01:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-21 09:34:14 ----SHD---- C:\System Volume Information
2010-02-20 13:28:36 ----D---- C:\Documents and Settings\Dominik\Data aplikací\vlc
2010-02-20 11:35:40 ----D---- C:\WINDOWS\WinSxS
2010-02-20 11:35:04 ----RSD---- C:\WINDOWS\Fonts
2010-02-20 11:34:55 ----D---- C:\Program Files\Common Files\DESIGNER
2010-02-20 11:34:53 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-20 11:34:09 ----D---- C:\Program Files\Common Files\InstallShield
2010-02-20 10:27:23 ----D---- C:\WINDOWS\system32\config
2010-02-19 16:19:41 ----A---- C:\WINDOWS\OEWABLog.txt
2010-02-19 16:19:20 ----A---- C:\WINDOWS\setuplog.txt
2010-02-19 16:18:34 ----D---- C:\WINDOWS\system32\wbem
2010-02-19 16:18:34 ----D---- C:\WINDOWS\system32\Setup
2010-02-19 16:18:34 ----D---- C:\WINDOWS\AppPatch
2010-02-19 16:17:53 ----D---- C:\WINDOWS\security
2010-02-19 16:13:52 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-19 16:10:38 ----D---- C:\Program Files\Messenger
2010-02-19 16:10:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-19 16:10:36 ----D---- C:\Program Files\Windows Media Player
2010-02-19 16:10:35 ----D---- C:\WINDOWS\Help
2010-02-19 16:10:26 ----D---- C:\WINDOWS\ehome
2010-02-19 16:10:24 ----D---- C:\WINDOWS\system32\inetsrv
2010-02-19 16:10:24 ----D---- C:\WINDOWS\ime
2010-02-19 16:10:11 ----D---- C:\WINDOWS\system32\usmt
2010-02-19 16:10:11 ----D---- C:\Program Files\Internet Explorer
2010-02-19 16:10:09 ----D---- C:\WINDOWS\PeerNet
2010-02-19 16:10:09 ----D---- C:\Program Files\Movie Maker
2010-02-19 16:07:43 ----D---- C:\WINDOWS\system32\Restore
2010-02-19 16:07:43 ----D---- C:\WINDOWS\system32\npp
2010-02-19 16:07:42 ----D---- C:\WINDOWS\msagent
2010-02-19 16:07:41 ----D---- C:\WINDOWS\srchasst
2010-02-19 16:07:40 ----D---- C:\Program Files\NetMeeting
2010-02-19 16:07:39 ----D---- C:\WINDOWS\system32\Com
2010-02-19 16:07:36 ----D---- C:\Program Files\Windows NT
2010-02-19 16:07:36 ----D---- C:\Program Files\Outlook Express
2010-02-19 16:07:33 ----D---- C:\Program Files\Common Files\System
2010-02-19 16:07:12 ----D---- C:\WINDOWS\system32\oobe
2010-02-19 16:07:10 ----D---- C:\WINDOWS\system
2010-02-19 15:58:40 ----D---- C:\WINDOWS\Debug
2010-02-19 15:31:21 ----A---- C:\WINDOWS\imsins.BAK
2010-02-19 15:29:38 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-02-02 13:23:09 ----D---- C:\WINDOWS\SoftwareDistribution
2010-01-26 10:15:01 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-02-21 296976]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-09-22 4381696]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2009-05-13 31760]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-05-16 19472]
R3 NETw3x32;Ovladač adaptéru Intel(R) PRO/Wireless 3945ABG pro Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw3x32.sys [2006-09-27 1709696]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-12-25 3685152]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 Tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2008-10-06 137984]
R3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2009-03-05 74368]
R3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2009-05-20 43392]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2006-08-07 248832]
S3 a08rbrz6;a08rbrz6; C:\WINDOWS\system32\drivers\a08rbrz6.sys []
S3 ASFWHide;ASFWHide; \??\C:\DOCUME~1\Dominik\LOCALS~1\Temp\ASFWHide []
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 Tosrfcom;Tosrfcom; C:\WINDOWS\system32\drivers\Tosrfcom.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-07-03 303376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-12-25 143426]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2009-06-19 144752]
S2 vvdsvc;VJVodClientServices; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119393
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Log vypadá čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?