Ach...celé znova... já vím že se s forem něco dělalo atd.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Karel at 2010-10-23 08:42:08
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 228 GB (75%) free of 305 GB
Total RAM: 1023 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:42:20, on 23.10.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Karel\Plocha\RSIT.exe
C:\Program Files\trend micro\Karel.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Skype.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
--
End of file - 5875 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\MP Scheduled Scan.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-21 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-08-04 16050688]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2010-08-04 2879488]
"MSSE"=c:\Program Files\Microsoft Security Essentials\msseces.exe [2010-09-15 1094224]
"Lexmark X1100 Series"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2003-08-19 57344]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-09-02 13351304]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Skype.lnk - C:\WINDOWS\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-09-29 122880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Wolfenstein - Enemy Territory\ET.exe"="C:\Program Files\Wolfenstein - Enemy Territory\ET.exe:*:Enabled:ET"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Documents and Settings\Karel\Plocha\^^\siNDiCATE_1029_FULL_CLIENT_Gabtec\SindicateM2 - Kopie (6)\metin2client.bin"="C:\Documents and Settings\Karel\Plocha\^^\siNDiCATE_1029_FULL_CLIENT_Gabtec\SindicateM2 - Kopie (6)\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Karel\Plocha\GuabinoMt2\Metin2.EXE"="C:\Documents and Settings\Karel\Plocha\GuabinoMt2\Metin2.EXE:*:Enabled:Metin2"
"C:\Program Files\FamousMT2\metin2client.bin"="C:\Program Files\FamousMT2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\WoW\WoW-3.2.0-enGB-downloader.exe"="C:\Program Files\WoW\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\WoW\Launcher.exe"="C:\Program Files\WoW\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FunMt2\FunMt2\mc.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FunMt2\FunMt2\mc.exe:*:Enabled:mc"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\metin2client.bin"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\FamousMT2\metin2client.bin"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\FamousMT2\metin2client.bin:*:Enabled:metin2client"
"C:\Counter-Strike 2D\CounterStrike2D.exe"="C:\Counter-Strike 2D\CounterStrike2D.exe:*:Enabled:CounterStrike2D"
"C:\Documents and Settings\Karel\Plocha\Skymetin2\SkyMetin2\mc.exe"="C:\Documents and Settings\Karel\Plocha\Skymetin2\SkyMetin2\mc.exe:*:Enabled:mc"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\Shadow-MT2\Shadow-MT2\Shadow-MT2.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\Shadow-MT2\Shadow-MT2\Shadow-MT2.exe:*:Enabled:Shadow-MT2"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\Shadow-MT2\Shadow-MT2\metin2client.bin"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\Shadow-MT2\Shadow-MT2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Plocha\Shadow-MT2\Shadow-MT2.exe"="C:\Documents and Settings\Karel\Plocha\Shadow-MT2\Shadow-MT2.exe:*:Enabled:Shadow-MT2"
"C:\Documents and Settings\Karel\Plocha\Shadow-MT2\metin2client.bin"="C:\Documents and Settings\Karel\Plocha\Shadow-MT2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Plocha\Shadow-MT2\metin2.bin"="C:\Documents and Settings\Karel\Plocha\Shadow-MT2\metin2.bin:*:Enabled:metin2"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\HugoMT2\MetinCz Hamatchi\mc.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\HugoMT2\MetinCz Hamatchi\mc.exe:*:Enabled:mc"
"C:\Documents and Settings\Karel\Plocha\HugoMT2\MetinCz Hamatchi\mc.exe"="C:\Documents and Settings\Karel\Plocha\HugoMT2\MetinCz Hamatchi\mc.exe:*:Enabled:mc"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\FAMOUS.EXE.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\FamousMT2\FAMOUS.EXE.exe:*:Enabled:FAMOUS.EXE"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\xiaxo\xiaxo\mc.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\xiaxo\xiaxo\mc.exe:*:Enabled:mc"
"C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\xiaxo\xiaxo\Spust CoolCzech.exe"="C:\Documents and Settings\Karel\Dokumenty\Stažené soubory\xiaxo\xiaxo\Spust CoolCzech.exe:*:Enabled:Spust CoolCzech"
"C:\Documents and Settings\Karel\Plocha\xiaxo\xiaxo\mc.exe"="C:\Documents and Settings\Karel\Plocha\xiaxo\xiaxo\mc.exe:*:Enabled:mc"
"C:\Program Files\Metin2UKjoou\metin2.bin"="C:\Program Files\Metin2UKjoou\metin2.bin:*:Enabled:metin2"
"C:\Program Files\Metin2USpravy\metin2client.bin"="C:\Program Files\Metin2USpravy\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\Metin2WTF\metin2client.bin"="C:\Program Files\Metin2WTF\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Plocha\Soulju2-Client\Soulju2\Emergency Start.exe"="C:\Documents and Settings\Karel\Plocha\Soulju2-Client\Soulju2\Emergency Start.exe:*:Enabled:Emergency Start"
"C:\Documents and Settings\Karel\Plocha\Soulju2-Client\Soulju2\metin2client.bin"="C:\Documents and Settings\Karel\Plocha\Soulju2-Client\Soulju2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Plocha\Soulju2-Client(2)\Soulju2\Emergency Start.exe"="C:\Documents and Settings\Karel\Plocha\Soulju2-Client(2)\Soulju2\Emergency Start.exe:*:Enabled:Emergency Start"
"C:\Program Files\Utherverse Digital Inc\Utherverse VWW Client\Utherverse.exe"="C:\Program Files\Utherverse Digital Inc\Utherverse VWW Client\Utherverse.exe:*:Enabled:Utherverse"
"C:\Documents and Settings\Karel\Plocha\Soulju2-Client(2)\Soulju2\metin2client.bin"="C:\Documents and Settings\Karel\Plocha\Soulju2-Client(2)\Soulju2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Karel\Plocha\Soulju2\Emergency Start.exe"="C:\Documents and Settings\Karel\Plocha\Soulju2\Emergency Start.exe:*:Enabled:Emergency Start"
"C:\Documents and Settings\Karel\Plocha\IMBA Mt2 Client\IMBA Mt2 Client\IMBA-Mt2 Client.exe"="C:\Documents and Settings\Karel\Plocha\IMBA Mt2 Client\IMBA Mt2 Client\IMBA-Mt2 Client.exe:*:Enabled:IMBA-Mt2 Client"
"C:\Documents and Settings\Karel\Plocha\World4us\World4us\World4us.exe"="C:\Documents and Settings\Karel\Plocha\World4us\World4us\World4us.exe:*:Enabled:World4us"
"C:\Documents and Settings\Karel\Plocha\LMT2Client\client\metin2client.bin"="C:\Documents and Settings\Karel\Plocha\LMT2Client\client\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-10-18 18:21:54 ----D---- C:\Documents and Settings\Karel\Data aplikací\Malwarebytes
2010-10-18 18:21:45 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-10-18 18:21:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-10-18 18:21:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-10-18 18:21:44 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-10-18 17:51:57 ----D---- C:\_OTM
2010-10-14 07:17:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-14 07:17:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-14 07:17:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-14 07:17:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-14 07:17:26 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-10-14 07:17:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-14 07:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-14 07:16:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-14 07:13:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-14 07:11:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-10-13 20:36:47 ----D---- C:\Documents and Settings\Karel\Data aplikací\Utherverse
2010-10-13 20:11:13 ----D---- C:\Program Files\Utherverse Digital Inc
2010-10-09 19:05:38 ----D---- C:\Program Files\Valve Hammer Editor
2010-10-07 15:46:51 ----D---- C:\Program Files\Metin2WTF
2010-10-06 15:21:37 ----A---- C:\WINDOWS\ODBC.INI
2010-10-06 15:21:27 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-10-06 15:19:50 ----D---- C:\Program Files\Common Files\DESIGNER
2010-10-06 15:19:31 ----D---- C:\WINDOWS\SHELLNEW
2010-10-06 15:19:20 ----D---- C:\Program Files\Microsoft.NET
2010-10-06 15:19:20 ----D---- C:\Program Files\Microsoft Office
2010-10-06 14:57:24 ----D---- C:\Program Files\ABBYY FineReader 6.0
2010-10-06 14:57:24 ----D---- C:\Program Files\ABBYY FineReader 5.0 Sprint
2010-10-06 14:52:32 ----A---- C:\WINDOWS\lexstat.ini
2010-10-06 14:52:01 ----A---- C:\WINDOWS\system32\lxbkvs.dll
2010-10-06 14:52:00 ----A---- C:\WINDOWS\system32\lxbkpwr.dll
2010-10-06 14:51:58 ----A---- C:\WINDOWS\system32\LXBKPMNT.DLL
2010-10-06 14:51:57 ----A---- C:\WINDOWS\system32\LXBKLSNT.EXE
2010-10-06 14:51:57 ----A---- C:\WINDOWS\system32\LXBKLCNT.DLL
2010-10-06 14:51:56 ----A---- C:\WINDOWS\system32\LXBKLCNP.DLL
2010-10-06 14:51:56 ----A---- C:\WINDOWS\system32\LXBKIH.EXE
2010-10-06 14:51:55 ----A---- C:\WINDOWS\system32\LXBKCU.DLL
2010-10-06 14:51:54 ----A---- C:\WINDOWS\system32\lxbkcomm.dll
2010-10-06 14:51:50 ----A---- C:\WINDOWS\system32\LXBKCFG.EXE
2010-10-06 14:51:46 ----A---- C:\WINDOWS\system32\LEXPPS.EXE
2010-10-06 14:51:46 ----A---- C:\WINDOWS\system32\LEXPING.EXE
2010-10-06 14:51:46 ----A---- C:\WINDOWS\system32\LEXP2P32.DLL
2010-10-06 14:51:44 ----A---- C:\WINDOWS\system32\LEXBCES.EXE
2010-10-06 14:51:44 ----A---- C:\WINDOWS\system32\LEXBCE.DLL
2010-10-06 14:51:43 ----A---- C:\WINDOWS\system32\LEX2KUSB.DLL
2010-10-06 14:51:43 ----A---- C:\WINDOWS\system32\INSTMON.EXE
2010-10-06 14:51:35 ----A---- C:\WINDOWS\system32\LXBKCUR.DLL
2010-10-06 14:51:35 ----A---- C:\WINDOWS\system32\LEXLMPM.DLL
2010-10-06 14:51:24 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-10-06 14:51:20 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2010-10-06 14:51:14 ----A---- C:\WINDOWS\system32\LXBKUTIL.DLL
2010-10-06 14:51:13 ----A---- C:\WINDOWS\system32\lxbkscin.dll
2010-10-06 14:51:13 ----A---- C:\WINDOWS\system32\LXBKGF.DLL
2010-10-06 14:51:12 ----A---- C:\WINDOWS\system32\lxbkcoin.ini
2010-10-06 14:51:12 ----A---- C:\WINDOWS\system32\lxbkcoin.dll
2010-10-06 14:51:12 ----A---- C:\WINDOWS\system32\lxbkcinf.dll
2010-10-06 14:50:38 ----A---- C:\WINDOWS\system32\LXBKJSWR.DLL
2010-10-06 14:50:37 ----D---- C:\Program Files\Lexmark X1100 Series
2010-10-06 14:50:33 ----A---- C:\WINDOWS\unin0405.exe
2010-10-05 16:45:54 ----D---- C:\Program Files\Metin2USpravy
2010-10-05 15:34:09 ----D---- C:\Program Files\Metin2UKjoou
2010-09-30 08:17:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
======List of files/folders modified in the last 1 months======
2010-10-23 08:42:17 ----D---- C:\Program Files\trend micro
2010-10-23 08:42:04 ----D---- C:\Documents and Settings\Karel\Data aplikací\Skype
2010-10-23 08:40:34 ----D---- C:\WINDOWS\temp
2010-10-23 08:40:11 ----D---- C:\WINDOWS\system32\CatRoot2
2010-10-23 08:39:45 ----D---- C:\Documents and Settings\Karel\Data aplikací\skypePM
2010-10-22 17:38:36 ----SD---- C:\WINDOWS\Tasks
2010-10-22 17:34:25 ----D---- C:\WINDOWS\Prefetch
2010-10-20 21:12:01 ----D---- C:\Program Files\Mozilla Firefox
2010-10-19 22:51:33 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-10-18 18:40:52 ----A---- C:\WINDOWS\ntbtlog.txt
2010-10-18 18:21:45 ----D---- C:\WINDOWS\system32\drivers
2010-10-18 18:21:44 ----RD---- C:\Program Files
2010-10-18 18:04:38 ----SHD---- C:\System Volume Information
2010-10-18 18:03:47 ----D---- C:\WINDOWS\system32\drivers\etc
2010-10-18 18:03:43 ----D---- C:\WINDOWS\system32
2010-10-18 18:03:40 ----SHD---- C:\WINDOWS\Installer
2010-10-18 18:03:36 ----D---- C:\WINDOWS
2010-10-17 11:56:16 ----HD---- C:\WINDOWS\inf
2010-10-16 14:01:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-10-15 06:09:06 ----D---- C:\WINDOWS\WinSxS
2010-10-14 07:17:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-14 07:17:44 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-14 07:17:42 ----A---- C:\WINDOWS\imsins.BAK
2010-10-14 07:16:20 ----D---- C:\Program Files\Internet Explorer
2010-10-14 07:16:14 ----D---- C:\WINDOWS\ie8updates
2010-10-14 07:13:26 ----A---- C:\WINDOWS\system32\MRT.exe
2010-10-14 07:12:54 ----A---- C:\WINDOWS\win.ini
2010-10-13 20:11:38 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-10-13 07:21:55 ----D---- C:\Program Files\Microsoft Security Essentials
2010-10-12 13:50:02 ----D---- C:\Program Files\Metin2
2010-10-09 22:01:18 ----RSD---- C:\WINDOWS\assembly
2010-10-09 18:31:49 ----D---- C:\WINDOWS\Microsoft.NET
2010-10-08 07:23:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-08 07:20:37 ----RSD---- C:\WINDOWS\Fonts
2010-10-06 15:22:53 ----SD---- C:\Documents and Settings\Karel\Data aplikací\Microsoft
2010-10-06 15:19:50 ----D---- C:\Program Files\Common Files
2010-10-06 15:19:33 ----D---- C:\Program Files\Common Files\System
2010-10-06 15:19:20 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-10-06 15:15:34 ----D---- C:\WINDOWS\system
2010-10-06 14:51:29 ----D---- C:\WINDOWS\twain_32
2010-10-01 17:47:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2010-09-29 21:18:25 ----D---- C:\Documents and Settings\Karel\Data aplikací\uTorrent
2010-09-26 21:28:25 ----D---- C:\WINDOWS\system32\config
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-01 445936]
R0 ViBus;ViBus; C:\WINDOWS\system32\DRIVERS\ViBus.sys [2010-08-04 16896]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2010-08-04 9216]
R0 ViPrt;VIA SATA IDE Device Driver; C:\WINDOWS\system32\DRIVERS\ViPrt.sys [2010-08-04 52736]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-03-25 151216]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2006-07-28 34944]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-09-29 2456064]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-08-04 4374016]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a90zyxvt;a90zyxvt; C:\WINDOWS\system32\drivers\a90zyxvt.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Karel\LOCALS~1\Temp\catchme.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-09-29 483328]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-21 153376]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-08-18 303104]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17904]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-08-30 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-08-30 103736]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2007-09-28 593920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
díky za pomoc předem...
a restartovalo počítač...
Omlouvam se kolegyni za vstup, ale byl zalozen druhy topic (http://www.viry.cz/forum/viewtopic.php?f=13&t=105904) pro mou osobu s tim samym problemem, takze budem pokracovat zde 
od 1. února 2011.
Přispějete na provoz fóra?