VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Poprosím o kontrolu logu z RSIT

https://forum.viry.cz:443/viewtopic.php?t=113903

Stránka 1 z 1

Poprosím o kontrolu logu z RSIT

Napsal: 29 črc 2011 08:52
od maxim-SK
Dobrý deň. Poprosím Vás o kontrolu logu z RSIT. Podozrenie na zavírenie, spomalené reakcie systému.


Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2011-07-29 09:55:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 779 MB (7%) free of 12 GB
Total RAM: 247 MB (11% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:56:30, on 29. 7. 2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17098)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\OpenSSH\bin\cygrunsrv.exe
C:\Program Files\OpenSSH\usr\sbin\sshd.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Administrator\My Documents\Preberanie\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
C:\WINDOWS\system32\msiexec.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sopazv.edu.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 8977945593
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Program Files\Eset\nod32krn.exe (file missing)
O23 - Service: OpenSSH Server (OpenSSHd) - Unknown owner - C:\Program Files\OpenSSH\bin\cygrunsrv.exe

--
End of file - 4014 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GlaryInitialize.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0raii8ig.default

prefs.js - "browser.startup.homepage" - "http://www.spoazv.edu.sk"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 9
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
exeImagine.IMD
npImagine.dll
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe [2008-03-25 218496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2005-06-21 348160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-07-29 09:55:09 ----D---- C:\Program Files\trend micro
2011-07-29 09:55:04 ----D---- C:\rsit
2011-07-29 09:31:08 ----D---- C:\Program Files\LibreOffice 3
2011-07-29 09:09:11 ----A---- C:\WINDOWS\system32\drivers\angelusb.sys
2011-07-29 09:09:11 ----A---- C:\WINDOWS\system32\ANGELDOS.SYS
2011-07-29 09:09:10 ----A---- C:\WINDOWS\system32\drivers\ANGELNT.SYS
2011-07-29 09:08:26 ----D---- C:\ALFA
2011-07-29 08:55:57 ----D---- C:\WINDOWS\temp
2011-07-29 08:55:52 ----A---- C:\ComboFix.txt
2011-07-29 08:29:58 ----A---- C:\Boot.bak
2011-07-29 08:29:49 ----RASHD---- C:\cmdcons
2011-07-29 08:27:28 ----A---- C:\WINDOWS\zip.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\SWSC.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\SWREG.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\sed.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\PEV.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\NIRCMD.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\MBR.exe
2011-07-29 08:27:28 ----A---- C:\WINDOWS\grep.exe
2011-07-29 08:26:50 ----D---- C:\WINDOWS\ERDNT
2011-07-29 08:25:08 ----D---- C:\Qoobox
2011-07-28 13:24:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-07-28 13:24:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-07-28 13:24:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-07-28 13:23:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-07-28 13:23:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-07-28 13:22:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-07-28 13:22:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-07-28 13:22:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-07-28 13:21:48 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-07-28 13:21:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-07-28 13:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-07-28 13:20:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-07-28 13:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-07-28 13:20:04 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-07-28 13:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-28 13:19:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-07-28 13:18:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-07-28 13:18:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-07-28 13:18:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-07-28 13:17:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-07-28 13:16:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-07-28 13:16:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2011-07-28 13:15:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-07-28 13:14:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-07-28 13:13:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-07-28 13:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-07-28 13:12:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-07-28 13:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-07-28 13:03:05 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-07-28 13:02:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276$
2011-07-28 13:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-07-28 13:02:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-07-28 13:01:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-07-28 13:01:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-07-28 12:59:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-07-28 12:59:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-07-28 12:50:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-07-28 12:49:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-07-28 12:49:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-07-28 12:49:13 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-07-28 12:48:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-07-28 12:48:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-28 12:48:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-07-28 12:47:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-07-28 12:47:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-07-28 12:46:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-07-28 11:53:36 ----A---- C:\WINDOWS\OEWABLog.txt
2011-07-28 11:33:09 ----D---- C:\WINDOWS\Prefetch
2011-07-28 11:15:27 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-07-28 11:14:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-07-28 11:07:55 ----A---- C:\WINDOWS\setuplog.txt
2011-07-28 11:04:56 ----D---- C:\WINDOWS\system32\scripting
2011-07-28 11:04:54 ----D---- C:\WINDOWS\l2schemas
2011-07-28 11:04:52 ----D---- C:\WINDOWS\system32\en
2011-07-28 10:38:14 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-07-28 09:44:26 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-07-28 09:43:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-07-28 08:09:28 ----D---- C:\Documents and Settings\Administrator\Application Data\Google
2011-07-27 14:55:57 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-07-27 14:54:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-07-27 14:52:07 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-07-27 14:50:15 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-07-27 14:48:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-07-27 14:44:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-07-27 14:27:34 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-07-27 14:24:44 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-07-27 14:21:38 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-07-27 14:19:37 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-07-27 14:18:45 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-07-27 14:15:40 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-07-27 14:13:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-07-27 14:10:01 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-07-27 14:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-07-27 14:03:54 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2011-07-27 14:01:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593_0$
2011-07-27 13:58:54 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-07-27 13:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-07-27 13:54:35 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-07-27 13:52:36 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-07-27 13:49:42 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-07-27 13:45:40 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-07-27 13:43:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-07-27 13:41:00 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-07-27 13:18:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-07-27 13:13:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-07-27 13:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-07-27 13:08:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-07-27 12:26:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-07-27 12:23:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-07-27 12:23:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-07-27 12:22:13 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-07-27 12:20:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2011-07-27 12:19:26 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-07-27 12:18:38 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-07-27 12:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-07-27 12:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-07-27 12:16:54 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-07-27 12:16:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-07-27 12:15:44 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-07-27 12:15:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-07-27 12:14:54 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-07-27 12:14:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-07-27 12:12:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-07-27 12:08:49 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-07-27 12:06:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-07-27 12:03:35 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-07-27 12:02:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-07-27 12:01:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2011-07-27 12:00:16 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-07-27 11:59:17 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-07-27 11:58:31 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-07-27 11:56:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-07-27 11:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2011-07-27 11:49:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-07-27 11:45:57 ----A---- C:\WINDOWS\imsins.BAK
2011-07-27 11:44:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-07-27 11:33:56 ----D---- C:\Program Files\CCleaner
2011-07-27 10:36:24 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-07-27 09:51:48 ----D---- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
2011-07-27 09:50:40 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-07-27 09:50:32 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2011-07-27 09:50:29 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-07-27 09:50:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-07-27 09:33:57 ----D---- C:\Documents and Settings\Administrator\Application Data\ESET
2011-07-27 09:31:02 ----D---- C:\Documents and Settings\All Users\Application Data\ESET

======List of files/folders modified in the last 1 month======

2011-07-29 09:55:38 ----SD---- C:\WINDOWS\Tasks
2011-07-29 09:55:35 ----SHD---- C:\WINDOWS\Installer
2011-07-29 09:55:09 ----RD---- C:\Program Files
2011-07-29 09:35:45 ----RSD---- C:\WINDOWS\assembly
2011-07-29 09:35:17 ----D---- C:\WINDOWS\ShellNew
2011-07-29 09:33:02 ----RSD---- C:\WINDOWS\Fonts
2011-07-29 09:26:47 ----D---- C:\WINDOWS\WinSxS
2011-07-29 09:09:33 ----D---- C:\WINDOWS\system32
2011-07-29 09:09:11 ----HD---- C:\WINDOWS\inf
2011-07-29 09:09:11 ----A---- C:\WINDOWS\system32\ANGELVDD.DLL
2011-07-29 09:09:10 ----D---- C:\WINDOWS\system32\drivers
2011-07-29 08:57:35 ----D---- C:\Program Files\Google
2011-07-29 08:56:54 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-07-29 08:55:57 ----D---- C:\WINDOWS
2011-07-29 08:50:45 ----A---- C:\WINDOWS\system.ini
2011-07-29 08:45:50 ----D---- C:\WINDOWS\AppPatch
2011-07-29 08:45:45 ----D---- C:\Program Files\Common Files
2011-07-29 08:31:26 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-29 08:29:58 ----RASH---- C:\boot.ini
2011-07-29 08:17:48 ----D---- C:\Documents and Settings\Administrator\Application Data\Mozilla
2011-07-29 08:17:20 ----D---- C:\Program Files\Mozilla Firefox
2011-07-29 08:07:26 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2011-07-28 13:49:56 ----D---- C:\WINDOWS\Microsoft.NET
2011-07-28 13:37:29 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-07-28 13:37:23 ----D---- C:\WINDOWS\system32\en-us
2011-07-28 13:37:23 ----D---- C:\Program Files\Internet Explorer
2011-07-28 13:36:39 ----D---- C:\WINDOWS\ie7updates
2011-07-28 13:33:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-07-28 13:24:39 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-28 12:50:07 ----D---- C:\Program Files\Movie Maker
2011-07-28 12:48:46 ----D---- C:\WINDOWS\system32\CatRoot
2011-07-28 12:47:12 ----D---- C:\Program Files\Outlook Express
2011-07-28 12:07:01 ----D---- C:\WINDOWS\system32\wbem
2011-07-28 12:02:53 ----D---- C:\Program Files\Messenger
2011-07-28 11:34:23 ----D---- C:\WINDOWS\Debug
2011-07-28 11:32:25 ----D---- C:\WINDOWS\system32\Setup
2011-07-28 11:31:56 ----D---- C:\WINDOWS\security
2011-07-28 11:05:26 ----D---- C:\WINDOWS\system32\inetsrv
2011-07-28 11:05:26 ----D---- C:\WINDOWS\network diagnostic
2011-07-28 11:05:25 ----D---- C:\WINDOWS\ime
2011-07-28 11:05:25 ----D---- C:\WINDOWS\Help
2011-07-28 11:04:59 ----D---- C:\WINDOWS\system32\usmt
2011-07-28 11:04:52 ----D---- C:\WINDOWS\system32\bits
2011-07-28 11:04:52 ----D---- C:\WINDOWS\peernet
2011-07-28 10:57:25 ----D---- C:\WINDOWS\system32\Restore
2011-07-28 10:57:24 ----D---- C:\WINDOWS\system32\npp
2011-07-28 10:57:24 ----D---- C:\WINDOWS\mui
2011-07-28 10:57:22 ----D---- C:\WINDOWS\msagent
2011-07-28 10:57:20 ----D---- C:\WINDOWS\srchasst
2011-07-28 10:57:18 ----D---- C:\Program Files\NetMeeting
2011-07-28 10:57:15 ----D---- C:\WINDOWS\system32\Com
2011-07-28 10:57:08 ----D---- C:\Program Files\Windows Media Player
2011-07-28 10:56:54 ----D---- C:\Program Files\Windows NT
2011-07-28 10:56:47 ----D---- C:\Program Files\Common Files\System
2011-07-28 10:56:08 ----D---- C:\WINDOWS\system32\oobe
2011-07-28 10:56:03 ----D---- C:\WINDOWS\system
2011-07-28 10:49:15 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-07-28 10:36:59 ----D---- C:\WINDOWS\EHome
2011-07-28 09:27:59 ----RD---- C:\WINDOWS\Offline Web Pages
2011-07-27 11:53:39 ----D---- C:\WINDOWS\ServicePackFiles
2011-07-27 09:31:03 ----D---- C:\Program Files\ESET
2011-07-27 09:10:59 ----D---- C:\Program Files\OpenOffice.org 2.3
2011-07-01 09:54:42 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2010-07-13 15424]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-07-15 12032]
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2011-07-29 51072]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2007-03-14 165760]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2005-06-21 807998]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2007-07-15 12160]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2010-07-13 512096]
S3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
S3 catchme;catchme; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\catchme.sys []
S3 pelmouse;Mouse Suite Driver; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [2003-01-10 16384]
S3 pelusblf;USB Mouse Low Filter Driver; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [2003-02-11 9216]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 OpenSSHd;OpenSSH Server; C:\Program Files\OpenSSH\bin\cygrunsrv.exe [2004-04-18 36864]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-09-22 38912]
S2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Poprosím o kontrolu logu z RSIT

Napsal: 29 črc 2011 09:06
od JaRon
System drive C: has 779 MB (7%) free of 12 GB
uvolni miesto na disku :wink: zavirene to nie je ,,,

Re: Poprosím o kontrolu logu z RSIT

Napsal: 29 črc 2011 09:21
od maxim-SK
díky tak na toto som úplne pozabudol. :D

Re: Poprosím o kontrolu logu z RSIT

Napsal: 29 črc 2011 10:18
od JaRon
nemas zac :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz