Prosím o kontrolu - padá explorer.exe

[motji]

smažte ty zdravé věci

Poprosím o nový log ze rsitu a napište, co dělá počítač

[Kolcek93]

Počítač se chová už celou dobu co jsem nenapsal dobře. Mám podezžení, že to shazovaly samy windows(nebo KMPlayer), kvůli názvům souborů ve složce.
Ty soubory - spoustu z nich jsem použil a PC se netvářilo "nakople" A celkem mě překvapuje, že MBAM hlásí viry i v souborech z MASM32 Jak velká je pravděpodobnost, že jsou soubory označeny chybně? S těmy keygeny a patchery co tu mám jsem počítal, že budou označeny(to samé NetCat, Brutus, Cain, ... ). Každopádně odstraněno
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4590

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11.9.2010 10:02:20
mbam-log-2010-09-11 (10-02-20).txt

Typ skenu: Úplný sken (C:\|D:\|E:\|H:\|)
Skenované objekty: 422910
Uplynulý čas: 59 minuta(y), 24 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 56

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Documents and Settings\Kubik\Plocha\mafia.2.no.time.limit.patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
D:\Hack\IE Passviewer\iepv.exe (Malware.Tool) -> Quarantined and deleted successfully.
D:\Hack\Netcat\nc.exe (Backdoor.NetCat) -> Quarantined and deleted successfully.
D:\jd\downloads\VMware Workstation 6.0.3 Build 80004\keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{41F9A19F-CC13-41F3-A993-2B3BC9394873}\RP434\A0168386.exe (Trojan.Bancos) -> Quarantined and deleted successfully.
D:\Upload\AAE\Adobe After Effects CS3 Pro\AlphaStar v1.0.2 for AE\Panopticum.AlphaStar.v1.x.for.AE.keygen.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
D:\Upload\Adobe AFter Effects CS4\AAECS4-byKolcek93\Adobe CS4\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
D:\Upload\Adobe AFter Effects CS4\AAECS4-byKolcek93\Adobe.All.Products.v1.01.Keymaker.Only-CORE\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
D:\Upload\Adobe AFter Effects CS4\AAECS4-byKolcek93\ADOBECS4 LICENSE MANAGER v1.0\AdobeCS4 LIC.exe (Trojan.Agent) -> Quarantined and deleted successfully.
D:\Upload\C4D\PARADOX\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\AdobeCS4 LIC x86.exe (Trojan.Agent) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\AEF\Adobe CS4\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\AEF\Adobe.All.Products.v1.01.Keymaker.Only-CORE\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\AEF\ADOBECS4 LICENSE MANAGER v1.0\AdobeCS4 LIC.exe (Trojan.Agent) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\Autodesk_3ds_Max_2010_English_WIN_32_64\Crack Autodesk.v2010\32bit\xf-a2010.exe (Trojan.Agent) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\Autodesk_3ds_Max_2010_English_WIN_32_64\Crack Autodesk.v2010\x64\xf-a2010.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\CollectionKeyFinal\adobe-master-cs4-keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\JDownloader 0.7\downloads\Sony.Products.Multikeygen.v1.5.Keygen.Only-DI\Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
D:\masm32\examples\dialogs\calender\calender.exe (Malware.Packer) -> Quarantined and deleted successfully.
D:\masm32\examples\dialogs\tests\tests.exe (Malware.Packer) -> Quarantined and deleted successfully.
D:\masm32\examples\exampl05\qeplugin\qeplugin.dll (Spyware.Passwords) -> Quarantined and deleted successfully.
D:\masm32\examples\exampl06\regdemo\regdemo.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\masm32\tools\makecimp\vcrtdemo\vcrtdemo.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\masm32\tutorial\dlltute\dll\dlltute.dll (Spyware.Passwords) -> Quarantined and deleted successfully.
D:\Download\DivX4Win.7.0.0\DivX.for.Windows.7.0.0.FFF\CURE.FFF\Keygen_FFF.exe (Trojan.Agent) -> Quarantined and deleted successfully.
D:\Download\Sony.Products.Multikeygen.v1.5.Keygen.Only-DI\Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
D:\flashka\cain\ca_setup.exe (HackTool.Cain) -> Quarantined and deleted successfully.
E:\hack\Brutus\BrutusA2.exe (HackTool.Brutus) -> Quarantined and deleted successfully.
E:\hack\Sniffing\ca_setup.exe (HackTool.Cain) -> Quarantined and deleted successfully.
E:\hack\VMware Workstation 6.0.3 Build 80004\keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After effect 7 pro[W-Fx41]\CRACK\KEYGEN.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe CS3 Web Premium Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Acrobat 3D 8.1.0 Keygen.EXE (Trojan.Downloader) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Acrobat 8 Pro Keygen.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe After Effects CS3 Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Audition 2.0 Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Captivate 3 Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Contribute CS3 VLK.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe CS3 Design Premium Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe DreamWeaver CS3 Keygen + Activation.exe (Trojan.Horst) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe DreamWeaver CS3 Keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe DreamWeaver CS3 VLK Keygen.exe (Trojan.Crax) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Fireworks CS3 VLK Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Flash CS3 Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe GoLive CS3 Keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe InDesign CS3 VLK Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Master CS3 Keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Photoshop CS3 Extended Keygen + Activation.exe (TrojanProxy.Horst) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Photoshop CS3 Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Photoshop CS3 Patch.ExE (HackTool.Patcher) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe SoundBooth CS3 Keygen.exe (Trojan.Horst) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\Adobe\Adobe Web Premium CS3 Keygen + Activation.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Adobe After Effect CS3\After Effects CS3\After Effects CS3.exe (Trojan.Agent) -> Quarantined and deleted successfully.
E:\Kolcek93\Backup\BitLord\Downloads\Quick Time\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
E:\Kolcek93\MAXON_CINEMA_4D_Studio_Bundle_v11.008_Incl_Keygen-PARADOX\PARADOX\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
E:\System Volume Information\_restore{CA851BB8-3B38-4DC7-AF34-A365DC0B7B08}\RP164\A0036323.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

[motji]

Pokud máte o nějakém souboru pochybnosti, tak ho otestujte na www.virustotal.ocm. Mbam bývá občas paranoidní

[Kolcek93]

No pochybnosti jsem měl, ale nebylo to nic důležitého(podle toho, že to bylo ve složce examples). Zbytek(keygeny, patchery, cain, ...) bych i věřil, že tam nějakej bordel je Tady je log z RSIT
Logfile of random's system information tool 1.08 (written by random/random)
Run by Kubik at 2010-09-11 10:08:06
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 81 GB (81%) free of 100 GB
Total RAM: 3071 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:08:08, on 11.9.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\WPMP150\miranda32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\The KMPlayer\KMPlayer.exe
C:\Documents and Settings\Kubik\Plocha\RSIT.exe
C:\Program Files\trend micro\Kubik.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [TortoiseHgOverlayIconServer] C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\vsocklib.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Dragon Age: Prameny - aktualizace obsahu (DAUpdaterSvc) - BioWare - H:\Gamez\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 6237 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-KOLCEKUVKOMP-Kubik.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-515967899-1637723038-725345543-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-515967899-1637723038-725345543-1003.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-07-23 341600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-17 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-17 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-04-30 19523616]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-03-04 311296]
"TortoiseHgOverlayIconServer"=C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [2010-07-12 44448]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-03-30 1820040]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-07-06 98304]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-07-23 202256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-10 328568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-07-07 159744]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\WPMP150\miranda32.exe"="C:\Program Files\WPMP150\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\VMware\VMware Workstation\vmware-authd.exe"="C:\Program Files\VMware\VMware Workstation\vmware-authd.exe:*:Enabled:VMware Authd"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"H:\Gamez\Dragon Age\bin_ship\daorigins.exe"="H:\Gamez\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Prameny Hra"
"H:\Gamez\Dragon Age\DAOriginsLauncher.exe"="H:\Gamez\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Prameny Spustit"
"H:\Gamez\Dragon Age\bin_ship\daupdatersvc.service.exe"="H:\Gamez\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Prameny Aktualizovat"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\VertrigoServ\Mysql\bin\v_mysqld.exe"="C:\Program Files\VertrigoServ\Mysql\bin\v_mysqld.exe:*:Enabled:v_mysqld"
"C:\Program Files\VertrigoServ\Apache\bin\v_apache.exe"="C:\Program Files\VertrigoServ\Apache\bin\v_apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"H:\Gamez\WoW\Launcher.exe"="H:\Gamez\WoW\Launcher.exe:*:Enabled:Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Gamez\Steam\Steam.exe"="D:\Gamez\Steam\Steam.exe:*:Enabled:Steam"
"D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe"="D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:iw4mp"
"H:\Gamez\Call of Duty 4\iw3mp.exe"="H:\Gamez\Call of Duty 4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\TortoiseHg\hgtk.exe"="C:\Program Files\TortoiseHg\hgtk.exe:*:Enabled:TortoiseHg GUI tools for Mercurial SCM"
"C:\WINDOWS\system32\ftp.exe"="C:\WINDOWS\system32\ftp.exe:*:Enabled:Program pro přenos souborů"
"H:\WoW-develop\Trinity\bin\Win32_Release\authserver.exe"="H:\WoW-develop\Trinity\bin\Win32_Release\authserver.exe:*:Enabled:authserver"
"H:\WoW-develop\Trinity\bin\Win32_Release\worldserver.exe"="H:\WoW-develop\Trinity\bin\Win32_Release\worldserver.exe:*:Enabled:worldserver"
"D:\Gamez\Steam\SteamApps\common\mafia ii - public demo\launcher.exe"="D:\Gamez\Steam\SteamApps\common\mafia ii - public demo\launcher.exe:*:Enabled:Mafia II - Demo"
"H:\WoW-develop-up\Trinity\bin\Win32_Release\authserver.exe"="H:\WoW-develop-up\Trinity\bin\Win32_Release\authserver.exe:*:Enabled:authserver"
"H:\WoW-develop-up\Trinity\bin\Win32_Release\worldserver.exe"="H:\WoW-develop-up\Trinity\bin\Win32_Release\worldserver.exe:*:Enabled:worldserver"
"H:\WoW-develop-up\Trinity\bin\Win32_Debug\authserver.exe"="H:\WoW-develop-up\Trinity\bin\Win32_Debug\authserver.exe:*:Enabled:authserver"
"H:\WoW-develop-up\Trinity\bin\Win32_Debug\worldserver.exe"="H:\WoW-develop-up\Trinity\bin\Win32_Debug\worldserver.exe:*:Enabled:worldserver"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Gamez\Steam\SteamApps\kolcek93\counter-strike source\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\VMware\VMware Workstation\vmware-authd.exe"="C:\Program Files\VMware\VMware Workstation\vmware-authd.exe:*:Enabled:VMware Authd"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.txt - open - "C:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 months======

2010-09-10 22:57:26 ----ASH---- C:\hiberfil.sys
2010-09-10 19:19:07 ----D---- C:\Documents and Settings\Kubik\Data aplikací\Malwarebytes
2010-09-10 19:19:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-09-10 19:19:00 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-09-10 19:19:00 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-09-10 19:18:59 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-09-05 12:28:55 ----D---- C:\Program Files\Music NFO Builder
2010-09-05 12:23:45 ----D---- C:\Program Files\Cool Beans NFO Creator
2010-09-04 14:35:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-09-04 14:35:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Easy CD-DA Extractor
2010-09-04 14:35:26 ----D---- C:\WINDOWS\Easy CD-DA Extractor 12
2010-09-04 14:35:26 ----D---- C:\Program Files\Easy CD-DA Extractor 12
2010-09-02 15:12:36 ----D---- C:\Program Files\PowerArchiver
2010-09-02 15:12:31 ----SHD---- C:\Config.Msi
2010-08-30 13:37:30 ----D---- C:\Documents and Settings\Kubik\Data aplikací\Skype
2010-08-30 13:37:25 ----RD---- C:\Program Files\Skype
2010-08-30 13:37:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-30 12:48:41 ----D---- C:\totalcmd
2010-08-30 12:48:41 ----D---- C:\Documents and Settings\Kubik\Data aplikací\GHISLER
2010-08-30 12:48:41 ----A---- C:\WINDOWS\UC.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\RAR.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\PKZIP.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\PKUNZIP.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\NOCLOSE.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\LHA.PIF
2010-08-30 12:48:41 ----A---- C:\WINDOWS\ARJ.PIF
2010-08-27 11:57:53 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-08-27 11:57:47 ----D---- C:\Program Files\DAEMON Tools Lite
2010-08-27 11:57:15 ----D---- C:\Documents and Settings\Kubik\Data aplikací\DAEMON Tools Lite
2010-08-27 11:57:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-08-25 13:05:07 ----D---- C:\OpenSSL-Win32
2010-08-25 11:23:41 ----A---- C:\WINDOWS\system32\ssleay32.dll
2010-08-25 11:23:41 ----A---- C:\WINDOWS\system32\libssl32.dll
2010-08-25 11:23:41 ----A---- C:\WINDOWS\system32\libeay32.dll
2010-08-24 00:23:21 ----D---- C:\Documents and Settings\Kubik\Data aplikací\FileZilla
2010-08-23 12:32:00 ----D---- C:\rsit
2010-08-23 12:30:26 ----SHD---- C:\RECYCLER
2010-08-22 20:51:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2010-08-22 18:35:28 ----D---- C:\Program Files\YouTube Downloader
2010-08-20 23:00:40 ----A---- C:\Boot.bak
2010-08-20 23:00:30 ----RASHD---- C:\cmdcons
2010-08-19 14:54:01 ----A---- C:\WINDOWS\system32\ptpusb.dll
2010-08-19 14:54:01 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-08-19 14:54:00 ----A---- C:\WINDOWS\system32\ptpusd.dll
2010-08-17 14:58:39 ----D---- C:\Program Files\CCleaner
2010-08-13 12:09:17 ----D---- C:\Program Files\NVIDIA Corporation

======List of files/folders modified in the last 1 months======

2010-09-11 10:08:06 ----D---- C:\Program Files\trend micro
2010-09-11 10:08:02 ----D---- C:\Documents and Settings\Kubik\Data aplikací\uTorrent
2010-09-11 10:06:04 ----D---- C:\WINDOWS\Temp
2010-09-11 10:05:23 ----D---- C:\Program Files\uTorrent
2010-09-11 10:05:09 ----D---- C:\WINDOWS\system32\drivers
2010-09-11 10:04:30 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-09-11 09:53:33 ----D---- C:\WINDOWS\Prefetch
2010-09-10 19:18:59 ----AD---- C:\Program Files
2010-09-10 16:51:07 ----D---- C:\WINDOWS\system32\CatRoot2
2010-09-10 16:15:28 ----SD---- C:\WINDOWS\Tasks
2010-09-05 20:31:32 ----D---- C:\Documents and Settings\Kubik\Data aplikací\TortoiseHg
2010-09-05 19:52:42 ----D---- C:\Documents and Settings\Kubik\Data aplikací\SQLyog
2010-09-04 14:35:26 ----D---- C:\WINDOWS
2010-09-02 15:12:44 ----SHD---- C:\WINDOWS\Installer
2010-09-02 15:12:37 ----D---- C:\WINDOWS\system32
2010-08-30 13:13:37 ----D---- C:\Documents and Settings\Kubik\Data aplikací\codeblocks
2010-08-27 12:26:37 ----D---- C:\WINDOWS\system32\DirectX
2010-08-27 12:26:35 ----HD---- C:\WINDOWS\inf
2010-08-27 12:26:12 ----RSD---- C:\WINDOWS\assembly
2010-08-27 12:25:16 ----D---- C:\WINDOWS\Logs
2010-08-27 12:17:26 ----D---- C:\WINDOWS\system32\config
2010-08-25 11:22:39 ----D---- C:\WINDOWS\WinSxS
2010-08-24 15:11:37 ----A---- C:\WINDOWS\win.ini
2010-08-23 22:24:39 ----SHD---- C:\System Volume Information
2010-08-23 22:24:39 ----D---- C:\WINDOWS\system32\Restore
2010-08-22 20:49:56 ----D---- C:\Program Files\ATI Technologies
2010-08-22 20:48:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-22 20:48:14 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-08-20 23:05:11 ----A---- C:\WINDOWS\system.ini
2010-08-20 23:05:04 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-20 23:04:03 ----D---- C:\WINDOWS\AppPatch
2010-08-20 23:04:00 ----D---- C:\Program Files\Common Files
2010-08-20 23:00:41 ----RASH---- C:\boot.ini
2010-08-19 16:56:59 ----D---- C:\Documents and Settings\Kubik\Data aplikací\Adobe
2010-08-17 15:00:57 ----D---- C:\WINDOWS\Debug
2010-08-17 12:47:11 ----D---- C:\WINDOWS\Microsoft.NET
2010-08-17 02:30:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-16 01:03:50 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-08-16 01:02:19 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2010-08-15 13:15:14 ----D---- C:\Program Files\Opera
2010-08-15 01:29:08 ----D---- C:\Documents and Settings\Kubik\Data aplikací\PSpad

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-08-27 691696]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys []
R2 vmci;VMware vmci; \??\C:\WINDOWS\system32\Drivers\vmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [2010-05-21 32688]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\WINDOWS\system32\drivers\vmnetuserif.sys []
R2 VMparport;VMware VMparport; \??\C:\WINDOWS\system32\Drivers\VMparport.sys []
R2 vmx86;VMware vmx86; \??\C:\WINDOWS\system32\Drivers\vmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\C:\Program Files\VMware\VMware Workstation\vstor2-ws60.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-07-07 5069312]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-10-31 93184]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-04-30 6032928]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 vmkbd;VMware kbd; \??\C:\WINDOWS\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys [2010-05-20 16560]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2006-11-22 250496]
S3 ahpm3xvk;ahpm3xvk; C:\WINDOWS\system32\drivers\ahpm3xvk.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S4 RsFx0102;RsFx0102 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-07-07 602112]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-07-17 153376]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; H:\Gamez\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
S3 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-11 40999448]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-08-16 75064]
S3 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-08-16 219128]
S3 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-03-25 490280]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
S4 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]
S4 ufad-ws60;VMware Agent Service; C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe [2010-04-27 191024]
S4 VMAuthdService;VMware Authorization Service; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [2010-05-21 113200]
S4 VMnetDHCP;VMware DHCP Service; C:\WINDOWS\system32\vmnetdhcp.exe [2010-05-21 334384]
S4 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-05-20 539184]
S4 VMware NAT Service;VMware NAT Service; C:\WINDOWS\system32\vmnat.exe [2010-05-21 399920]

-----------------EOF-----------------

[motji]

Log vypadá ok, co počítač?

[Kolcek93]

Počítač(jak už jsem psal) se chová jak má. Explorer dlouho nespadl a jinak nic špatnýho se tu asi neděje.

[motji]

Nevidím antivir

[Kolcek93]

Ani pořád není Zatím není v plánu

[motji]

No ale to by měl být, a popřemýšlejte i o firewallu.

[Kolcek93]

Dřív jsem používal jak AV, tak FW. Po tom co jsem buď žádnej vir nechytil nebo, když jsem nějakej chytil, tak mi AV nepomohlo jsem po poslední reinstalaci windows neinstaloval ani jedno. A zatím nebylo ani jedno potřeba. Jednou za čas si zkontroluju log HiJackThis a jednou za čas si nechám tady zkontrolovat RSIT log.

[motji]

Já mám pc také bez virů a vím jaké stránky navštěvuji, přesto AV i FW používám. Mnohokrát se stalo, že zablokovali zavirovanou stránku, nebo mi firewall blokuje utok ze sítě.

[Kolcek93]

Opravdu zatím neplánuji AV/FW opětovně instalovat. Pokud se spálím a chytnu nějakej bordel do PC, tak už příště AV nainstaluji. Prozatím ovšem zůstanu bez něj

[motji]

Dobře, je to Vaše rozhodnutí. Pokud nejsou problémy, je to vše

[Kolcek93]

OK děkuji za Váš čas a ochotu

[motji]

Není zač