VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=86446

Stránka 5 z 8

Re: Prosím o kontrolu logu

Napsal: 24 čer 2009 17:31
od motji
Pokud používáš Ccleaner, ten by to měl taky mazat.
Není zač :)
Mě není třeba se revanšovat, pokud chceš podpořit forum, budeme rádi, ale je to na Tobě :)
Kdyby byli problémy, ozvi se :bye:

Re: Prosím o kontrolu logu

Napsal: 01 srp 2009 07:31
od Frenki
Ahojky,už jsem tu zase tentokrát jen dotaz.Neznáš tohle virus win32:Malob-G,včera jsem to objevil v PC zlikvidoval jsem to Avastem ale pro jistotu se ptám.Dík Vít :D

Re: Prosím o kontrolu logu

Napsal: 01 srp 2009 09:02
od motji
Ahoj :)
V jakém souboru vir byl?
Pro kontrolu vlož log ze Rsitu :)

Re: Prosím o kontrolu logu

Napsal: 03 srp 2009 15:17
od Frenki
ahoj vir bl hned vnkolika ouborech bohužel názv už nevím zde je log
Logfile of random's system information tool 1.06 (written by random/random)
Run by vf at 2009-08-03 16:11:10
Systém Microsoft Windows XP Professional Service Pack 3
System drive D: has 4 GB (43%) free of 10 GB
Total RAM: 287 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11:56, on 3.8.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
E:\avast\aswUpdSv.exe
E:\avast\ashServ.exe
D:\WINDOWS\Explorer.EXE
E:\avast\ashDisp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\IncrediMail\bin\IMApp.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
E:\avast\ashMaiSv.exe
E:\avast\ashWebSv.exe
D:\Program Files\IncrediMail\bin\ImNotfy.exe
D:\Program Files\IncrediMail\bin\IncMail.exe
D:\Program Files\Opera\Opera.exe
D:\Documents and Settings\vf.VF-D5864C983A5F\Local Settings\Data aplikací\Opera\Opera\profile\cache4\temporary_download\RSIT.exe
d:\Program Files\trend micro\vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {0eceeac0-8a08-11d4-a521-0020af300fc7} - (no file)
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - D:\WINDOWS\WebIE.dll
O2 - BHO: XML module - {500BCA15-57A7-4eaf-8143-8C619470B13D} - D:\WINDOWS\system32\msxml71.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\office\Office12\GRA8E1~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - E:\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - D:\Program Files\Postak\SRank.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - D:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [avast!] E:\avast\ashDisp.exe
O4 - HKLM\..\Run: [SMail] "D:\Program Files\Postak\Postak.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [IncrediMail] D:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Obsah aplikace OneNote.onetoc2
O4 - Global Startup: BlueSoleil.lnk = D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://E:\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://E:\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://E:\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://E:\Free Download Manager\dlall.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\office\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - D:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - D:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - D:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - D:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - D:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - D:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - D:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - D:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - D:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\office\Office12\GR99D3~1.DLL
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\avast\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - E:\avast\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - E:\avast\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - E:\avast\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NBService - Nero AG - E:\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - D:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - D:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - D:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

--
End of file - 7003 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\RegCure Program Check.job
D:\WINDOWS\tasks\RegCure Startup.job
D:\WINDOWS\tasks\RegCure.job
D:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0eceeac0-8a08-11d4-a521-0020af300fc7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - D:\WINDOWS\WebIE.dll [2009-05-28 491520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
XML Class - D:\WINDOWS\system32\msxml71.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\office\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - E:\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B71B15CF-3093-459C-B764-AEB2486F2273} - &S-Rank - D:\Program Files\Postak\SRank.dll [2007-05-16 269632]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - D:\WINDOWS\WebIE.dll [2009-05-28 491520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=E:\avast\ashDisp.exe [2009-02-05 81000]
"SMail"=D:\Program Files\Postak\Postak.exe [2008-02-21 453936]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=D:\Program Files\IncrediMail\bin\IncMail.exe [2009-06-07 251264]
"ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
E:\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
D:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
D:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eraser]
D:\Program Files\Eraser\eraser.exe [2006-12-26 643072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]
E:\Free Download Manager\fdm.exe [2009-01-31 3399727]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NetChat]
D:\DOCUME~1\VFD41D~1.VF-\LOCALS~1\Temp\_tc0\NetChat.exe * []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
D:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{0228e555-4f9c-4e35-a3ec-b109a192b4c2}]
[]

D:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
BlueSoleil.lnk - D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe

D:\Documents and Settings\vf.VF-D5864C983A5F\Nabídka Start\Programy\Po spuštění
Obsah aplikace OneNote.onetoc2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2008-09-06 267304]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\office\Office12\OUTLOOK.EXE"="E:\office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"E:\office\Office12\GROOVE.EXE"="E:\office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"E:\office\Office12\ONENOTE.EXE"="E:\office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"D:\Program Files\IncrediMail\bin\ImApp.exe"="D:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\IncMail.exe"="D:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\ImpCnt.exe"="D:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"D:\Program Files\Opera\opera.exe"="D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2009-08-03 16:11:10 ----D---- D:\rsit
2009-07-24 09:09:43 ----D---- D:\Program Files\Jufsoft
2009-07-22 09:32:49 ----D---- D:\Documents and Settings\All Users.WINDOWS\Data aplikací\Bluetooth
2009-07-22 09:27:15 ----D---- D:\Program Files\IVT Corporation
2009-07-05 14:37:04 ----SHD---- D:\Documents and Settings\vf.VF-D5864C983A5F\Data aplikací\.#

======List of files/folders modified in the last 1 months======

2009-08-03 16:11:33 ----D---- D:\Program Files\trend micro
2009-08-03 16:11:05 ----D---- D:\WINDOWS\Prefetch
2009-08-03 16:06:12 ----HD---- D:\WINDOWS\Temp
2009-08-03 12:02:41 ----A---- D:\WINDOWS\WINCMD.INI
2009-08-03 11:57:41 ----A---- D:\WINDOWS\NeroDigital.ini
2009-08-01 11:25:18 ----D---- D:\WINDOWS
2009-08-01 11:25:18 ----A---- D:\WINDOWS\MAILTRAN.INI
2009-08-01 00:54:36 ----D---- D:\WINDOWS\system32
2009-07-31 21:01:26 ----A---- D:\WINDOWS\SchedLgU.Txt
2009-07-31 21:01:12 ----D---- D:\WINDOWS\system32\CatRoot2
2009-07-31 20:59:09 ----SD---- D:\WINDOWS\Tasks
2009-07-31 19:26:39 ----D---- D:\Program Files\Eraser
2009-07-29 09:13:30 ----SD---- D:\Documents and Settings\vf.VF-D5864C983A5F\Data aplikací\Microsoft
2009-07-24 09:09:43 ----D---- D:\Program Files
2009-07-23 20:15:15 ----D---- D:\WINDOWS\Debug
2009-07-22 09:30:49 ----SHD---- D:\WINDOWS\Installer
2009-07-22 09:30:26 ----D---- D:\WINDOWS\system32\drivers
2009-07-22 09:30:13 ----D---- D:\WINDOWS\inf
2009-07-22 09:28:42 ----DC---- D:\WINDOWS\system32\dllcache
2009-07-08 17:16:59 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; D:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; D:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; D:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 SASDIFSV;SASDIFSV; \??\C:\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\SASKUTIL.sys []
R1 SbFw;SbFw; D:\WINDOWS\system32\drivers\SbFw.sys [2008-07-16 269736]
R1 sbhips;Sunbelt HIPS Driver; D:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; D:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 aswFsBlk;aswFsBlk; D:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; D:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R2 WinFLdrv;WinFLdrv; D:\WINDOWS\system32\WinFLdrv.sys [2009-05-28 10752]
R2 WinVd32;WinVd32; \??\D:\WINDOWS\system32\WinVd32.sys []
R3 aswRdr;aswRdr; D:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
R3 BlueletAudio;Bluetooth Audio Service; D:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-05-11 34704]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; D:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-03-05 27792]
R3 Btcsrusb;Bluetooth USB For Bluetooth Service; D:\WINDOWS\System32\Drivers\btcusb.sys [2007-05-09 36496]
R3 es1371;Creative AudioPCI (ES1371,ES1373) (WDM); D:\WINDOWS\system32\drivers\es1371mp.sys [2001-08-17 40704]
R3 G200;G200; D:\WINDOWS\system32\DRIVERS\G200m.sys [2001-10-24 320384]
R3 PCnet;AMD PCNET Compatable Adapter Driver; D:\WINDOWS\system32\DRIVERS\pcntpci5.sys [2001-08-17 35328]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; D:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; D:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbhub;Rozbočovač umožnující USB2; D:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VComm;Virtual Serial port driver; D:\WINDOWS\system32\DRIVERS\VComm.sys [2007-03-05 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; D:\WINDOWS\System32\Drivers\VcommMgr.sys [2007-03-05 44304]
S1 Winhpfile;Winhpfile; \??\C:\rybfumrn\HPFile.sys []
S2 ADILOADER;General Purpose USB Driver (adildr.sys); D:\WINDOWS\System32\Drivers\adildr.sys []
S3 adiusbaw;ADSL USB MODEM WAN ADAPTER; D:\WINDOWS\system32\DRIVERS\adiusbaw.sys []
S3 BT;Bluetooth PAN Network Adapter; D:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2007-03-05 18320]
S3 BthEnum;Služba Bluetooth Enumerator; D:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHMODEM;Ovladač komunikace modemu Bluetooth; D:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); D:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; D:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; D:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 BTNetFilter;Bluetooth Network Filter; \??\D:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys []
S3 kvpndev;Kerio VPN adapter; D:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-06-24 65024]
S3 kwflower;Kerio WinRoute Firewall Driver - Lower Layer; D:\WINDOWS\system32\DRIVERS\kwflower.sys []
S3 NtApm;Ovladač rozhraní služby NT Apm/Legacy; D:\WINDOWS\system32\DRIVERS\NtApm.sys [2001-10-24 9472]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); D:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 SASENUM;SASENUM; \??\C:\SASENUM.SYS []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S4 ACPI;ACPI; D:\WINDOWS\system32\drivers\ACPI.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; E:\avast\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; E:\avast\ashServ.exe [2009-02-05 138680]
R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
R2 SbPF.Launcher;SbPF.Launcher; D:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-07-30 95528]
R2 UMWdf;Windows User Mode Driver Framework; D:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; E:\avast\ashMaiSv.exe [2009-02-05 254040]
S2 SPF4;Sunbelt Personal Firewall 4; D:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-07-30 1361192]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Web Scanner;avast! Web Scanner; E:\avast\ashWebSv.exe [2009-02-05 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NBService;NBService; E:\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; D:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 BthServ;Bluetooth Support Service; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 03 srp 2009 20:26
od motji
:arrow: Máš SAS nebo MBAm? když tak to tím projed :)

:arrow: V HJT fixni
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {0eceeac0-8a08-11d4-a521-0020af300fc7} - (no file)
O2 - BHO: XML module - {500BCA15-57A7-4eaf-8143-8C619470B13D} - D:\WINDOWS\system32\msxml71.dll (file missing)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 16:17
od Frenki
ahoj :iefox: použil jem MBAM no hrůza ještě naše mldá chodí n mebo může infekce pocházet od tud? Jo a moje láska chodí na aukro.
Malwarebytes' Anti-Malware 1.40
Verze databáze: 2559
Windows 5.1.2600 Service Pack 3

4.8.2009 17:06:16
Výsledek.txt

Typ skenu: Rychlý sken
Objektu skenováno: 115159
Uplynulý cas: 15 minute(s), 49 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 11
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
HKEY_CLASSES_ROOT\xml.xml (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\xml.xml.1 (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e24211b3-a78a-c6a9-d317-70979ace5058} (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\cmvideo.cmvideoplugin.1 (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\cmvideo.xmldomdocumenteventssink.1 (Trojan.BHO) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Monopod (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\NordBull (Malware.Trace) -> No action taken.

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
(Žádné zákerné položky nebyly zjišteny)

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 16:19
od motji
Vše smaž a dej uplný sken

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 18:52
od Frenki
Úplný scan našel ještě jeden soubor dal jsem smzat. Tady je log:
Malwarebytes' Anti-Malware 1.40
Verze databáze: 2559
Windows 5.1.2600 Service Pack 3

4.8.2009 19:31:36
výsledek1.txt

Typ skenu: Úplný sken (C:\|D:\|E:\|)
Objektu skenováno: 173227
Uplynulý cas: 1 hour(s), 29 minute(s), 22 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 0
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
D:\System Volume Information\_restore{C5D0C407-DCE7-4035-A5DD-5CEA8FC63834}\RP36\A0022435.dll (Trojan.FakeAlert) -> No action taken.

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 19:18
od motji
Jak to vypadá s pc?

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 19:36
od Frenki
Pc se opět rozběhl dobře.Je možné že infekce bylaze stránek MEBO jakési něco co se připojuje k ICQ ? :evil:

Re: Prosím o kontrolu logu

Napsal: 04 srp 2009 19:56
od motji
Možné je všechno, pokud bude :) klikat na zprávy od cizích kontaktů, zvláště ty s azbukou :twisted:
Já mám třeba qip,a mám celkem pokoj i od cizích kontaktů se spamem.
Ted se dá vir chytnout kdekoliv na netu.
Kdyby byli problémy, ozvi se :)

Re: Prosím o kontrolu logu

Napsal: 05 srp 2009 15:30
od Frenki
Děkuji za spolupráci, zatim se zdá PC v poho. :iefox:

Re: Prosím o kontrolu logu

Napsal: 05 srp 2009 15:37
od motji
Není zač, když by byli problémy, víš kde mě najdeš :D

Re: Prosím o kontrolu logu

Napsal: 02 zář 2009 10:43
od Frenki
Ahojky tak zase problém.Pc jsem celé překopal.naistaloval jsem znovu systém atd.Zmněnil jsem antivir na nod32 v4
Mám zvláštní problém Nero mi nechce najít vypalovačku i když Alcohol120 ano.
Dám sem log z RSIT a ještě co mi hlásí nod nějaký trojan v operačnímsystému,nevím jestli nodautomaticky likviduje viry.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Vít at 2009-09-02 11:29:41
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (13%) free of 76 GB
Total RAM: 287 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:29:50, on 2.9.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Mixer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\totalcmd\TOTALCMD.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Opera\opera.exe
c:\download\RSIT.exe
C:\Program Files\trend micro\Vít.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 5617 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\RegCure Program Check.job
C:\WINDOWS\tasks\RegCure.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-29 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-29 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-29 149280]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-02-06 2021400]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"C-Media Mixer"=Mixer.exe /startup []
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2009-08-10 251264]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\IncrediMail\bin\ImApp.exe"="C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2009-09-02 11:20:24 ----D---- C:\Documents and Settings\Vít\Data aplikací\Avant Profiles
2009-09-02 11:20:08 ----D---- C:\Program Files\Avant Browser
2009-09-02 11:08:52 ----D---- C:\Program Files\trend micro
2009-09-01 17:46:05 ----A---- C:\WINDOWS\NeroDigital.ini
2009-09-01 11:36:09 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-09-01 10:33:57 ----SHD---- C:\Config.Msi
2009-09-01 10:06:24 ----D---- C:\Program Files\MSXML 4.0
2009-09-01 09:26:51 ----D---- C:\Documents and Settings\Vít\Data aplikací\Ahead
2009-09-01 09:22:23 ----D---- C:\Program Files\Nero
2009-09-01 09:22:23 ----D---- C:\Program Files\Common Files\Ahead
2009-09-01 09:20:05 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-09-01 06:32:20 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-09-01 06:32:13 ----D---- C:\Program Files\DAEMON Tools Lite
2009-08-31 22:25:38 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-08-31 22:14:09 ----D---- C:\WINDOWS\system32\NtmsData
2009-08-31 19:30:40 ----D---- C:\Documents and Settings\Vít\Data aplikací\Nero
2009-08-31 18:55:06 ----D---- C:\Program Files\Windows Sidebar
2009-08-31 18:53:20 ----A---- C:\WINDOWS\Irremote.ini
2009-08-31 18:17:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2009-08-31 18:17:17 ----D---- C:\Program Files\Common Files\Nero
2009-08-31 18:16:57 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-08-31 18:11:14 ----A---- C:\WINDOWS\ENGLMENU.INI
2009-08-31 16:44:23 ----D---- C:\Documents and Settings\Vít\Data aplikací\Canneverbe_Limited
2009-08-31 16:44:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Canneverbe Limited
2009-08-31 14:39:28 ----N---- C:\WINDOWS\system32\spmsg2.dll
2009-08-31 14:39:27 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2009-08-31 14:34:02 ----D---- C:\WINDOWS\system32\XPSViewer
2009-08-31 14:33:46 ----D---- C:\WINDOWS\system32\en-US
2009-08-31 14:33:34 ----D---- C:\Program Files\Reference Assemblies
2009-08-31 14:32:41 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-08-31 14:32:40 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-08-31 14:32:40 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-08-31 14:32:39 ----D---- C:\95a19979d3735c42338ad9c9d985
2009-08-31 14:30:44 ----RSD---- C:\WINDOWS\assembly
2009-08-31 14:29:18 ----D---- C:\WINDOWS\Microsoft.NET
2009-08-31 12:36:48 ----D---- C:\Program Files\Alcohol Soft
2009-08-29 17:54:40 ----A---- C:\WINDOWS\mixerdef.ini
2009-08-29 17:16:36 ----D---- C:\WINDOWS\pss
2009-08-29 16:27:56 ----D---- C:\WINDOWS\Sun
2009-08-29 16:17:58 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-29 16:17:58 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-08-29 16:17:57 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-29 16:17:57 ----A---- C:\WINDOWS\system32\java.exe
2009-08-29 16:17:20 ----D---- C:\Program Files\Java
2009-08-29 16:16:09 ----D---- C:\Documents and Settings\Vít\Data aplikací\Sun
2009-08-29 15:46:47 ----D---- C:\WINDOWS\ie8updates
2009-08-29 15:45:40 ----D---- C:\WINDOWS\WBEM
2009-08-29 15:44:25 ----HDC---- C:\WINDOWS\ie8
2009-08-29 15:02:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-08-29 15:02:41 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-29 15:02:34 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-08-29 15:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-08-29 15:02:11 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-08-29 15:02:00 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-08-29 15:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-08-29 15:01:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-29 15:01:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-08-29 15:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-29 15:01:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-08-29 15:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-08-29 14:58:01 ----A---- C:\WINDOWS\system32\MRT.exe
2009-08-29 14:57:44 ----HDC---- C:\WINDOWS\$NtUninstallKB972260$
2009-08-29 14:57:32 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-08-29 14:57:20 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-08-29 14:57:09 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-08-29 14:56:57 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-08-29 14:56:45 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-08-29 14:56:33 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-08-29 14:56:21 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-08-29 14:56:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-08-29 14:55:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-08-29 14:55:28 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-08-29 14:55:05 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-08-29 14:54:51 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-08-29 14:54:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-08-29 14:54:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-08-29 14:54:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-08-29 14:54:04 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-08-29 14:53:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-08-29 14:53:44 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-08-29 14:53:32 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-08-29 14:53:19 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-29 14:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-08-29 14:52:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-08-29 14:52:44 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-08-29 14:52:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-08-29 14:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-08-29 14:52:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-08-29 14:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-08-29 14:51:49 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-08-29 14:51:36 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2009-08-29 14:51:14 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2009-08-29 14:50:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-08-29 14:50:37 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-29 14:50:25 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-08-29 14:50:13 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-08-29 14:49:45 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-08-29 14:34:05 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-08-29 13:27:51 ----D---- C:\Documents and Settings\Vít\Data aplikací\WinRAR
2009-08-29 13:27:38 ----D---- C:\Program Files\WinRAR
2009-08-29 12:31:26 ----A---- C:\WINDOWS\system32\msonpmon.dll
2009-08-29 12:28:44 ----D---- C:\Program Files\Microsoft Works
2009-08-29 12:28:27 ----D---- C:\Program Files\MSBuild
2009-08-29 12:27:39 ----D---- C:\Program Files\Microsoft Visual Studio
2009-08-29 12:27:38 ----D---- C:\Program Files\Common Files\DESIGNER
2009-08-29 12:19:09 ----D---- C:\WINDOWS\SHELLNEW
2009-08-29 12:17:22 ----D---- C:\Program Files\Microsoft Office
2009-08-29 12:17:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2009-08-29 11:15:13 ----D---- C:\Documents and Settings\Vít\Data aplikací\DAEMON Tools Lite
2009-08-29 10:46:06 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-08-29 10:46:04 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-08-29 10:45:12 ----D---- C:\Program Files\Windows Media Connect 2
2009-08-29 10:44:57 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-08-29 10:43:12 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-08-29 10:42:34 ----D---- C:\WINDOWS\system32\LogFiles
2009-08-29 10:42:29 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2009-08-29 10:41:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2009-08-29 07:40:47 ----D---- C:\Documents and Settings\Vít\Data aplikací\Adobe
2009-08-28 13:34:23 ----D---- C:\WINDOWS\Minidump
2009-08-28 13:03:24 ----A---- C:\WINDOWS\system32\WinFLsrv.exe
2009-08-28 13:03:23 ----SHD---- C:\Documents and Settings\Vít\Data aplikací\.#
2009-08-28 13:03:14 ----D---- C:\Program Files\Folder Lock 6
2009-08-28 12:52:13 ----D---- C:\Documents and Settings\Vít\Data aplikací\Opera
2009-08-28 12:51:58 ----D---- C:\Program Files\Opera
2009-08-28 12:37:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2009-08-28 12:32:38 ----D---- C:\Program Files\The KMPlayer
2009-08-28 12:27:44 ----D---- C:\Documents and Settings\Vít\Data aplikací\Macromedia
2009-08-28 12:25:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\IM
2009-08-28 12:18:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\IncrediMail
2009-08-28 12:18:55 ----D---- C:\Program Files\IncrediMail
2009-08-28 12:12:14 ----D---- C:\Documents and Settings\Vít\Data aplikací\ESET
2009-08-28 12:08:41 ----D---- C:\Program Files\ESET
2009-08-28 12:08:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2009-08-28 12:07:10 ----D---- C:\Program Files\Toddler Keys
2009-08-28 11:17:51 ----D---- C:\WINDOWS\Prefetch
2009-08-28 11:17:39 ----A---- C:\WINDOWS\system32\h323log.txt
2009-08-28 11:04:04 ----N---- C:\WINDOWS\system32\msxml6r.dll
2009-08-28 11:04:04 ----A---- C:\WINDOWS\system32\msxml6.dll
2009-08-28 11:04:02 ----N---- C:\WINDOWS\system32\smtpapi.dll
2009-08-28 11:04:02 ----N---- C:\WINDOWS\system32\rwnh.dll
2009-08-28 11:04:02 ----N---- C:\WINDOWS\system32\comsdupd.exe
2009-08-28 11:03:57 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2009-08-28 11:03:57 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2009-08-28 11:03:57 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2009-08-28 11:03:57 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2009-08-28 11:03:57 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-08-28 11:03:56 ----N---- C:\WINDOWS\system32\azroles.dll
2009-08-28 11:03:56 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2009-08-28 11:03:56 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2009-08-28 11:03:56 ----N---- C:\WINDOWS\system32\ati3duag.dll
2009-08-28 11:03:55 ----N---- C:\WINDOWS\system32\credssp.dll
2009-08-28 11:03:55 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-08-28 11:03:54 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-08-28 11:03:53 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-08-28 11:03:52 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-08-28 11:03:51 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-08-28 11:03:51 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-08-28 11:03:50 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2009-08-28 11:03:50 ----N---- C:\WINDOWS\system32\hccoin.dll
2009-08-28 11:03:49 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-08-28 11:03:49 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-08-28 11:03:48 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-08-28 11:03:48 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-08-28 11:03:48 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-08-28 11:03:48 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\mssha.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-08-28 11:03:47 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2009-08-28 11:03:46 ----N---- C:\WINDOWS\system32\napstat.exe
2009-08-28 11:03:46 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-08-28 11:03:46 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-08-28 11:03:46 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2009-08-28 11:03:45 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2009-08-28 11:03:45 ----N---- C:\WINDOWS\system32\onex.dll
2009-08-28 11:03:45 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\setupn.exe
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\s3gnb.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\qutil.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-08-28 11:03:44 ----N---- C:\WINDOWS\system32\qagent.dll
2009-08-28 11:03:43 ----N---- C:\WINDOWS\system32\slserv.exe
2009-08-28 11:03:43 ----N---- C:\WINDOWS\system32\slrundll.exe
2009-08-28 11:03:43 ----N---- C:\WINDOWS\system32\slgen.dll
2009-08-28 11:03:43 ----N---- C:\WINDOWS\system32\slextspk.dll
2009-08-28 11:03:43 ----N---- C:\WINDOWS\system32\slcoinst.dll
2009-08-28 11:03:42 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-08-28 11:03:42 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-08-28 11:03:41 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2009-08-28 11:03:41 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2009-08-28 11:03:40 ----N---- C:\WINDOWS\system32\wmphoto.dll
2009-08-28 11:03:40 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-08-28 11:03:38 ----A---- C:\WINDOWS\system32\xmllite.dll
2009-08-28 11:03:37 ----N---- C:\WINDOWS\slrundll.exe
2009-08-28 11:03:37 ----D---- C:\WINDOWS\system32\cs-cz
2009-08-28 11:03:36 ----D---- C:\WINDOWS\l2schemas
2009-08-28 11:03:35 ----D---- C:\WINDOWS\system32\cs
2009-08-28 11:03:35 ----D---- C:\WINDOWS\system32\bits
2009-08-28 11:02:47 ----A---- C:\WINDOWS\system32\irmon.dll
2009-08-28 11:02:47 ----A---- C:\WINDOWS\system32\irftp.exe
2009-08-28 11:02:46 ----A---- C:\WINDOWS\system32\wshirda.dll
2009-08-28 11:02:02 ----A---- C:\WINDOWS\system32\G200d.dll
2009-08-28 11:01:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-08-28 11:01:46 ----A---- C:\WINDOWS\system32\usbui.dll
2009-08-28 11:00:26 ----D---- C:\WINDOWS\ServicePackFiles
2009-08-28 10:59:02 ----SHD---- C:\WINDOWS\Installer
2009-08-28 10:59:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-08-28 10:59:01 ----D---- C:\Program Files\Common Files\ODBC
2009-08-28 10:59:01 ----A---- C:\WINDOWS\ODBCINST.INI
2009-08-28 10:58:56 ----D---- C:\Program Files\Common Files\SpeechEngines
2009-08-28 10:58:55 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-08-28 10:58:55 ----D---- C:\Program Files\Common Files
2009-08-28 10:58:49 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-08-28 10:58:49 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-08-28 10:58:49 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-08-28 10:58:47 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-08-28 10:58:44 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-08-28 10:58:42 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-08-28 10:58:42 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-08-28 10:58:42 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-08-28 10:58:42 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-08-28 10:58:42 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-08-28 10:58:36 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2009-08-28 10:58:36 ----A---- C:\WINDOWS\system32\kbdsl.dll
2009-08-28 10:58:36 ----A---- C:\WINDOWS\system32\kbdro.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdycl.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdpl.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdhu.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\kbdcr.dll
2009-08-28 10:58:35 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2009-08-28 10:58:33 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-08-28 10:58:33 ----A---- C:\WINDOWS\system32\irclass.dll
2009-08-28 10:58:33 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-08-28 10:58:33 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-08-28 10:58:32 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-08-28 10:58:29 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-08-28 10:58:29 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-08-28 10:58:29 ----A---- C:\WINDOWS\system32\batt.dll
2009-08-28 10:58:28 ----A---- C:\WINDOWS\notepad.exe
2009-08-28 10:58:26 ----A---- C:\WINDOWS\system32\storprop.dll
2009-08-28 10:58:12 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET86.tmp
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET85.tmp
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET84.tmp
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET83.tmp
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET82.tmp
2009-08-28 10:58:10 ----RA---- C:\WINDOWS\SET81.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET80.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET7F.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET7E.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET7D.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET7C.tmp
2009-08-28 10:58:09 ----RA---- C:\WINDOWS\SET7B.tmp
2009-08-28 10:58:08 ----RA---- C:\WINDOWS\SET7A.tmp
2009-08-28 10:58:06 ----RA---- C:\WINDOWS\SET79.tmp
2009-08-28 10:58:06 ----RA---- C:\WINDOWS\SET78.tmp
2009-08-28 10:58:06 ----RA---- C:\WINDOWS\SET77.tmp
2009-08-28 10:58:05 ----RA---- C:\WINDOWS\SET76.tmp
2009-08-28 10:58:04 ----RA---- C:\WINDOWS\SET75.tmp
2009-08-28 10:58:03 ----RA---- C:\WINDOWS\SET74.tmp
2009-08-28 10:58:02 ----RA---- C:\WINDOWS\SET73.tmp
2009-08-28 10:58:02 ----RA---- C:\WINDOWS\SET72.tmp
2009-08-28 10:58:01 ----RA---- C:\WINDOWS\SET71.tmp
2009-08-28 10:58:00 ----RA---- C:\WINDOWS\SET70.tmp
2009-08-28 10:58:00 ----RA---- C:\WINDOWS\SET6F.tmp
2009-08-28 10:57:59 ----RA---- C:\WINDOWS\SET6E.tmp
2009-08-28 10:57:59 ----RA---- C:\WINDOWS\SET6D.tmp
2009-08-28 10:57:59 ----RA---- C:\WINDOWS\SET6C.tmp
2009-08-28 10:57:59 ----RA---- C:\WINDOWS\SET6B.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET6A.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET69.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET68.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET67.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET66.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET65.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET64.tmp
2009-08-28 10:57:58 ----RA---- C:\WINDOWS\SET63.tmp
2009-08-28 10:57:56 ----RA---- C:\WINDOWS\SET62.tmp
2009-08-28 10:57:56 ----RA---- C:\WINDOWS\SET61.tmp
2009-08-28 10:57:56 ----RA---- C:\WINDOWS\SET60.tmp
2009-08-28 10:57:54 ----RA---- C:\WINDOWS\SET5F.tmp
2009-08-28 10:57:54 ----RA---- C:\WINDOWS\SET5E.tmp
2009-08-28 10:57:53 ----RA---- C:\WINDOWS\SET5D.tmp
2009-08-28 10:57:53 ----RA---- C:\WINDOWS\SET5C.tmp
2009-08-28 10:57:53 ----RA---- C:\WINDOWS\SET5B.tmp
2009-08-28 10:57:51 ----RA---- C:\WINDOWS\SET5A.tmp
2009-08-28 10:57:50 ----RA---- C:\WINDOWS\SET59.tmp
2009-08-28 10:57:49 ----RA---- C:\WINDOWS\SET58.tmp
2009-08-28 10:57:48 ----RA---- C:\WINDOWS\SET57.tmp
2009-08-28 10:57:47 ----RA---- C:\WINDOWS\SET56.tmp
2009-08-28 10:57:46 ----RA---- C:\WINDOWS\SET55.tmp
2009-08-28 10:57:45 ----RA---- C:\WINDOWS\SET54.tmp
2009-08-28 10:57:44 ----RA---- C:\WINDOWS\SET53.tmp
2009-08-28 10:57:43 ----RA---- C:\WINDOWS\SET52.tmp
2009-08-28 10:57:43 ----RA---- C:\WINDOWS\SET51.tmp
2009-08-28 10:57:42 ----RA---- C:\WINDOWS\SET50.tmp
2009-08-28 10:57:42 ----RA---- C:\WINDOWS\SET4F.tmp
2009-08-28 10:57:41 ----RA---- C:\WINDOWS\SET4E.tmp
2009-08-28 10:57:41 ----RA---- C:\WINDOWS\SET4D.tmp
2009-08-28 10:57:40 ----RA---- C:\WINDOWS\SET4C.tmp
2009-08-28 10:57:40 ----RA---- C:\WINDOWS\SET4B.tmp
2009-08-28 10:57:39 ----RA---- C:\WINDOWS\SET4A.tmp
2009-08-28 10:57:39 ----RA---- C:\WINDOWS\SET49.tmp
2009-08-28 10:57:38 ----RA---- C:\WINDOWS\SET48.tmp
2009-08-28 10:57:38 ----RA---- C:\WINDOWS\SET47.tmp
2009-08-28 10:57:38 ----RA---- C:\WINDOWS\SET46.tmp
2009-08-28 10:57:38 ----RA---- C:\WINDOWS\SET45.tmp
2009-08-28 10:57:37 ----RA---- C:\WINDOWS\SET44.tmp
2009-08-28 10:57:37 ----RA---- C:\WINDOWS\SET43.tmp
2009-08-28 10:57:37 ----RA---- C:\WINDOWS\SET42.tmp
2009-08-28 10:57:37 ----RA---- C:\WINDOWS\SET41.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET40.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3F.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3E.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3D.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3C.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3B.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET3A.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET39.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET38.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET37.tmp
2009-08-28 10:57:36 ----RA---- C:\WINDOWS\SET36.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET35.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET34.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET33.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET32.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET31.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET30.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2F.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2E.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2D.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2C.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2B.tmp
2009-08-28 10:57:35 ----RA---- C:\WINDOWS\SET2A.tmp
2009-08-28 10:57:34 ----RA---- C:\WINDOWS\SET29.tmp
2009-08-28 10:57:34 ----RA---- C:\WINDOWS\SET28.tmp
2009-08-28 10:57:34 ----RA---- C:\WINDOWS\SET27.tmp
2009-08-28 10:57:34 ----RA---- C:\WINDOWS\SET26.tmp
2009-08-28 10:57:34 ----RA---- C:\WINDOWS\SET25.tmp
2009-08-28 10:57:29 ----D---- C:\WINDOWS\network diagnostic
2009-08-28 10:57:26 ----RA---- C:\WINDOWS\SET8.tmp
2009-08-28 10:57:22 ----RA---- C:\WINDOWS\SET4.tmp
2009-08-28 10:57:20 ----RA---- C:\WINDOWS\SET3.tmp
2009-08-28 10:57:13 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-28 10:57:13 ----D---- C:\WINDOWS\system32\CatRoot
2009-08-28 10:57:07 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2009-08-28 10:56:32 ----D---- C:\Documents and Settings
2009-08-28 10:55:12 ----SH---- C:\boot.ini
2009-08-28 10:54:47 ----A---- C:\WINDOWS\002864_.tmp
2009-08-28 10:54:00 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-28 10:49:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-08-28 10:49:25 ----RSD---- C:\WINDOWS\Fonts
2009-08-28 10:49:25 ----RD---- C:\WINDOWS\Web
2009-08-28 10:49:25 ----HD---- C:\WINDOWS\inf
2009-08-28 10:49:25 ----D---- C:\WINDOWS\WinSxS
2009-08-28 10:49:25 ----D---- C:\WINDOWS\twain_32
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Temp
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\wins
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\wbem
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\usmt
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\spool
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\ShellExt
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\Setup
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\ras
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\oobe
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\npp
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\mui
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\inetsrv
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\IME
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\icsxml
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\ias
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\export
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\drivers
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\dhcp
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\config
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\3com_dmi
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\3076
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\2052
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1054
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1042
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1041
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1037
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1033
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1031
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1029
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1028
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32\1025
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system32
2009-08-28 10:49:25 ----D---- C:\WINDOWS\system
2009-08-28 10:49:25 ----D---- C:\WINDOWS\security
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Resources
2009-08-28 10:49:25 ----D---- C:\WINDOWS\repair
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Provisioning
2009-08-28 10:49:25 ----D---- C:\WINDOWS\pchealth
2009-08-28 10:49:25 ----D---- C:\WINDOWS\PeerNet
2009-08-28 10:49:25 ----D---- C:\WINDOWS\mui
2009-08-28 10:49:25 ----D---- C:\WINDOWS\msapps
2009-08-28 10:49:25 ----D---- C:\WINDOWS\msagent
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Media
2009-08-28 10:49:25 ----D---- C:\WINDOWS\java
2009-08-28 10:49:25 ----D---- C:\WINDOWS\ime
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Help
2009-08-28 10:49:25 ----D---- C:\WINDOWS\ehome
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Driver Cache
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Debug
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Cursors
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Connection Wizard
2009-08-28 10:49:25 ----D---- C:\WINDOWS\Config
2009-08-28 10:49:25 ----D---- C:\WINDOWS\AppPatch
2009-08-28 10:49:25 ----D---- C:\WINDOWS\addins
2009-08-28 10:49:25 ----D---- C:\WINDOWS
2009-08-28 10:49:24 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-08-28 10:39:52 ----A---- C:\WINDOWS\WINCMD.INI
2009-08-28 10:37:03 ----D---- C:\Documents and Settings\Vít\Data aplikací\Identities
2009-08-28 10:36:59 ----HD---- C:\Program Files\Uninstall Information
2009-08-28 10:36:46 ----ASH---- C:\Documents and Settings\Vít\Data aplikací\desktop.ini
2009-08-28 10:36:45 ----SD---- C:\Documents and Settings\Vít\Data aplikací\Microsoft
2009-08-28 10:34:37 ----D---- C:\WINDOWS\SoftwareDistribution
2009-08-28 10:34:26 ----SD---- C:\WINDOWS\system32\Microsoft
2009-08-28 10:34:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-28 10:25:56 ----D---- C:\Program Files\xerox
2009-08-28 10:25:55 ----D---- C:\WINDOWS\system32\xircom
2009-08-28 10:25:55 ----D---- C:\Program Files\microsoft frontpage
2009-08-28 10:21:56 ----D---- C:\WINDOWS\RegisteredPackages
2009-08-28 10:18:19 ----D---- C:\WINDOWS\system32\PreInstall
2009-08-28 10:12:50 ----N---- C:\WINDOWS\system32\verclsid.exe
2009-08-28 10:09:57 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-08-28 09:59:13 ----N---- C:\WINDOWS\system32\tzchange.exe
2009-08-28 09:59:09 ----HD---- C:\WINDOWS\$hf_mig$
2009-08-28 09:58:49 ----A---- C:\WINDOWS\control.ini
2009-08-28 09:58:49 ----A---- C:\AUTOEXEC.BAT
2009-08-28 09:58:10 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-08-28 09:55:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-08-28 09:55:46 ----RD---- C:\WINDOWS\Offline Web Pages
2009-08-28 09:55:46 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-08-28 09:55:27 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-08-28 09:55:13 ----HD---- C:\Program Files\WindowsUpdate
2009-08-28 09:55:06 ----D---- C:\Program Files\Online Services
2009-08-28 09:54:31 ----D---- C:\WINDOWS\system32\DirectX
2009-08-28 09:54:02 ----A---- C:\WINDOWS\system32\atrace.dll
2009-08-28 09:53:59 ----A---- C:\WINDOWS\system32\desktop.ini
2009-08-28 09:53:59 ----A---- C:\WINDOWS\desktop.ini
2009-08-28 09:53:52 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-08-28 09:53:51 ----A---- C:\WINDOWS\system32\acctres.dll
2009-08-28 09:53:50 ----D---- C:\Program Files\Common Files\Services
2009-08-28 09:53:45 ----SD---- C:\WINDOWS\Tasks
2009-08-28 09:53:45 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-08-28 09:53:44 ----D---- C:\Program Files\Common Files\MSSoap
2009-08-28 09:53:39 ----D---- C:\WINDOWS\srchasst
2009-08-28 09:53:38 ----D---- C:\WINDOWS\system32\Macromed
2009-08-28 09:53:34 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-08-28 09:53:34 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-08-28 09:53:33 ----A---- C:\WINDOWS\system32\wups.dll
2009-08-28 09:53:33 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-08-28 09:53:33 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-08-28 09:53:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-08-28 09:53:32 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-08-28 09:53:32 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-08-28 09:53:32 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-08-28 09:53:32 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-08-28 09:53:32 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-08-28 09:53:31 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-08-28 09:53:31 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-28 09:53:27 ----D---- C:\Program Files\Movie Maker
2009-08-28 09:53:21 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-08-28 09:53:21 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-08-28 09:53:21 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-08-28 09:53:21 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-08-28 09:53:17 ----A---- C:\WINDOWS\system32\fltmc.exe
2009-08-28 09:53:17 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-08-28 09:53:16 ----D---- C:\WINDOWS\system32\Restore
2009-08-28 09:53:16 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-08-28 09:53:16 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-08-28 09:53:15 ----A---- C:\WINDOWS\system32\srclient.dll
2009-08-28 09:53:15 ----A---- C:\WINDOWS\system32\ils.dll
2009-08-28 09:53:14 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-08-28 09:53:14 ----A---- C:\WINDOWS\system32\msconf.dll
2009-08-28 09:53:14 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-08-28 09:53:14 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-08-28 09:53:14 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-08-28 09:53:11 ----D---- C:\Program Files\NetMeeting
2009-08-28 09:53:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-08-28 09:53:11 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-08-28 09:53:09 ----A---- C:\WINDOWS\system32\inetres.dll
2009-08-28 09:53:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-08-28 09:53:06 ----D---- C:\Program Files\Outlook Express
2009-08-28 09:53:06 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-08-28 09:53:06 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-08-28 09:53:06 ----A---- C:\WINDOWS\system32\mstask.dll
2009-08-28 09:53:05 ----A---- C:\WINDOWS\system32\isign32.dll
2009-08-28 09:53:05 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-08-28 09:53:05 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-08-28 09:53:05 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-08-28 09:52:57 ----D---- C:\Program Files\Common Files\System
2009-08-28 09:52:53 ----D---- C:\Program Files\Internet Explorer
2009-08-28 09:51:25 ----D---- C:\Program Files\ComPlus Applications
2009-08-28 09:51:22 ----A---- C:\WINDOWS\vbaddin.ini
2009-08-28 09:51:22 ----A---- C:\WINDOWS\vb.ini
2009-08-28 09:51:14 ----D---- C:\WINDOWS\Registration
2009-08-28 09:51:01 ----D---- C:\Program Files\Windows Media Player
2009-08-28 09:50:50 ----D---- C:\Program Files\Messenger
2009-08-28 09:50:46 ----D---- C:\Program Files\MSN Gaming Zone
2009-08-28 09:50:46 ----A---- C:\WINDOWS\system32\write.exe
2009-08-28 09:50:30 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-08-28 09:50:30 ----A---- C:\WINDOWS\system32\hticons.dll
2009-08-28 09:50:29 ----A---- C:\WINDOWS\system32\avwav.dll
2009-08-28 09:50:29 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-08-28 09:50:29 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-08-28 09:50:28 ----A---- C:\WINDOWS\system32\winchat.exe
2009-08-28 09:50:20 ----A---- C:\WINDOWS\system32\getuname.dll
2009-08-28 09:50:19 ----A---- C:\WINDOWS\system32\charmap.exe
2009-08-28 09:50:19 ----A---- C:\WINDOWS\system32\calc.exe
2009-08-28 09:50:18 ----A---- C:\WINDOWS\system32\winmine.exe
2009-08-28 09:50:18 ----A---- C:\WINDOWS\system32\sol.exe
2009-08-28 09:50:18 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\tskill.exe
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\reset.exe
2009-08-28 09:50:17 ----A---- C:\WINDOWS\system32\freecell.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\tscon.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\shadow.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\regini.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\msg.exe
2009-08-28 09:50:16 ----A---- C:\WINDOWS\system32\logoff.exe
2009-08-28 09:50:15 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-08-28 09:50:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-08-28 09:50:14 ----RA---- C:\WINDOWS\system32\comrepl.dll
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\stclient.dll
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-08-28 09:50:14 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-08-28 09:50:13 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-08-28 09:50:05 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-08-28 09:50:04 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-28 09:50:04 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-08-28 09:50:04 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-08-28 09:50:03 ----RA---- C:\WINDOWS\system32\hypertrm.dll
2009-08-28 09:50:03 ----D---- C:\Program Files\Windows NT
2009-08-28 09:50:02 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-28 09:50:02 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-28 09:50:02 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-08-28 09:50:01 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-08-28 09:50:01 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-08-28 09:50:00 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-08-28 09:49:59 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-08-28 09:49:58 ----RA---- C:\WINDOWS\system32\mtxoci.dll
2009-08-28 09:49:58 ----RA---- C:\WINDOWS\system32\msdtcuiu.dll
2009-08-28 09:49:58 ----RA---- C:\WINDOWS\system32\msdtcprx.dll
2009-08-28 09:49:58 ----D---- C:\WINDOWS\system32\MsDtc
2009-08-28 09:49:57 ----RA---- C:\WINDOWS\system32\xolehlp.dll
2009-08-28 09:49:57 ----RA---- C:\WINDOWS\system32\msdtctm.dll
2009-08-28 09:49:57 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-08-28 09:49:57 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-08-28 09:49:56 ----RA---- C:\WINDOWS\system32\colbact.dll
2009-08-28 09:49:56 ----RA---- C:\WINDOWS\system32\clbcatex.dll
2009-08-28 09:49:56 ----D---- C:\WINDOWS\system32\Com
2009-08-28 09:49:56 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-08-28 09:49:55 ----RA---- C:\WINDOWS\system32\catsrvut.dll
2009-08-28 09:49:55 ----RA---- C:\WINDOWS\system32\catsrv.dll
2009-08-28 09:49:54 ----RA---- C:\WINDOWS\system32\comuid.dll
2009-08-28 09:49:54 ----RA---- C:\WINDOWS\system32\comsvcs.dll
2009-08-28 09:49:54 ----RA---- C:\WINDOWS\system32\clbcatq.dll
2009-08-28 09:49:42 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-08-28 09:49:42 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-08-28 09:49:42 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-08-28 09:49:42 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-08-28 07:56:25 ----D---- C:\rsit
2009-08-28 07:55:34 ----D---- C:\PARKAN
2009-08-26 11:37:04 ----SHD---- C:\USMT.TMP
2009-08-14 09:44:34 ----A---- C:\DUBÍNEK ODKAZY.txt
2009-08-04 19:31:35 ----A---- C:\výsledek1.txt
2009-08-04 17:06:16 ----A---- C:\Výsledek.txt

======List of files/folders modified in the last 1 months======

2009-09-02 11:20:08 ----RD---- C:\Program Files
2009-09-01 09:14:13 ----D---- C:\Temp
2009-09-01 09:09:23 ----D---- C:\download
2009-09-01 08:11:48 ----D---- C:\Filmy
2009-09-01 07:23:58 ----A---- C:\WINDOWS\win.ini
2009-09-01 07:23:58 ----A---- C:\WINDOWS\system.ini
2009-08-28 13:02:45 ----D---- C:\FL6.2.4 inst
2009-08-28 12:57:11 ----D---- C:\RegCure
2009-08-28 12:34:25 ----SHD---- C:\RECYCLER
2009-08-28 11:38:28 ----D---- C:\totalcmd
2009-08-28 10:34:36 ----SHD---- C:\System Volume Information
2009-08-05 11:01:14 ----A---- C:\WINDOWS\system32\mswebdvd.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-02-06 56280]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-02-06 130952]
R2 WinVd32;WinVd32; \??\C:\WINDOWS\system32\WinVd32.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-02-06 33096]
R3 es1371;Creative AudioPCI (ES1371,ES1373) (WDM); C:\WINDOWS\system32\drivers\es1371mp.sys [2002-06-03 40832]
R3 G200;G200; C:\WINDOWS\system32\DRIVERS\G200m.sys [2001-10-24 320384]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 PCnet;AMD PCNET Compatable Adapter Driver; C:\WINDOWS\system32\DRIVERS\pcntpci5.sys [2001-08-17 35328]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S2 WinFLdrv;WinFLdrv; C:\WINDOWS\system32\WinFLdrv.sys [2009-08-28 10752]
S3 a9z7fp5o;a9z7fp5o; C:\WINDOWS\system32\drivers\a9z7fp5o.sys []
S3 awr716hn;awr716hn; C:\WINDOWS\system32\drivers\awr716hn.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 NtApm;Ovladač rozhraní služby NT Apm/Legacy; C:\WINDOWS\system32\DRIVERS\NtApm.sys [2001-10-24 9472]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 ACPI;ACPI; C:\WINDOWS\system32\drivers\ACPI.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-29 153376]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-02-06 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 02 zář 2009 10:44
od Frenki
a tady log NOD32 :all_coholic:
2.9.2009 10:42:36 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean M-FF235D2AD9314\Vít
2.9.2009 10:28:41 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean
31.8.2009 12:19:34 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean M-FF235D2AD9314\Vít
31.8.2009 11:28:35 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean
30.8.2009 7:48:02 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean
29.8.2009 14:28:01 Startup scanner operating memory Operating memory Win32/Rootkit.Agent.ODG trojan unable to clean
29.8.2009 14:11:45 Startup scanner operating memory Operating memory Win32/Agent.ODG virus unable to clean M-FF235D2AD9314\Vít
29.8.2009 11:17:25 HTTP filter file http://apps.poweredbyadvantage.com/scri ... fo=Windows NT Workstation 5.1 Buildnumber : 2600 Service Pack 3&apt=DAEM0812300001&apb=DAEM&ac=606&sac=DAEM0812300001&apartner_id=&campaign=&adv_status=1&site_id=0&zone_id=4&product_id=0&product_type=0&subproduct_id=0&addins_status=&addins_id=&license_status=0&notice=0&expired=0&referer_url=&tanswer=999.900024 probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\URL3\AdVantageWhenUInst.exe.
29.8.2009 11:15:28 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:15:04 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:14:39 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:14:15 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:13:52 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:13:29 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:13:06 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:12:43 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:12:19 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:11:55 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:11:32 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:11:09 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:10:45 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:10:23 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:09:59 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:09:36 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:09:12 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:08:49 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:08:26 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:08:03 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:07:40 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:07:17 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:06:55 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:06:31 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:06:08 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:05:45 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:05:22 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:05:00 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:04:37 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:04:14 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:03:51 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:03:29 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.
29.8.2009 11:03:06 HTTP filter file http://www.whenudownloads.com/vvsn/prod ... nUInst.exe probably a variant of Win32/Genetik trojan connection terminated - quarantined M-FF235D2AD9314\Vít Threat was detected upon access to web by the application: C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe.

Jsem zvědav jestli s tím hneme :shock:
Všechny časy jsou v UTC+01:00
Stránka 5 z 8

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz