Dobrý den, rozhodl jsem se zase jednou pro klid duše udělat preventivku.
Zde je log z RSITu:
Logfile of random's system information tool 1.07 (written by random/random)
Run by Norman at 2011-01-11 11:42:38
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 12 GB (78%) free of 15 GB
Total RAM: 1015 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:42:50, on 11.1.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
C:\WINDOWS\system32\svchost.exe
D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\QipGuard\QipGuard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Atheros\ACU.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATK Hotkey\HcontrolUser.exe
C:\Program Files\ATK Hotkey\MsgTranAgt.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ViStart\ViStart.exe
C:\Program Files\VisualTooltip\VisualToolTip.exe
C:\Documents and Settings\Norman\Data aplikací\QipGuard\QipGuard.exe
D:\Programy\QIP 2010\qip.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
D:\Hry\Ultima Online\client1264b.exe
C:\Program Files\Winamp\winamp.exe
D:\Staženo\RSIT.exe
C:\Program Files\trend micro\Norman.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Norman\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [HControlUser] "C:\Program Files\ATK Hotkey\HcontrolUser.exe"
O4 - HKLM\..\Run: [ATKHOTKEY] "C:\Program Files\ATK Hotkey\Hcontrol.exe"
O4 - HKLM\..\Run: [MsgTranAgt] "C:\Program Files\ATK Hotkey\MsgTranAgt.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [COMODO Internet Security] "D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O17 - HKLM\System\CCS\Services\Tcpip\..\{6F05066B-A1B9-409E-A38C-B3E66415AE3A}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{B7DA0D24-F958-4D92-9138-5BF20FE0F2A2}: NameServer = 156.154.70.22,156.154.71.22
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Konfigurační služba Atheros (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: QipGuard - QIP.ru - C:\Program Files\QipGuard\QipGuard.exe
--
End of file - 4885 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\Norman\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll [2010-12-13 141184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ACU"=C:\Program Files\Atheros\ACU.exe [2007-10-23 376921]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-11-08 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-11-08 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-11-08 137752]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-04-10 16861184]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-04 69632]
"HControlUser"=C:\Program Files\ATK Hotkey\HcontrolUser.exe [2008-01-11 98304]
"ATKHOTKEY"=C:\Program Files\ATK Hotkey\Hcontrol.exe [2008-02-01 233472]
"MsgTranAgt"=C:\Program Files\ATK Hotkey\MsgTranAgt.exe [2007-11-04 106496]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-23 7766016]
"DrvIcon"=C:\Program Files\Vista Drive Icon\DrvIcon.exe [2008-04-13 49152]
"COMODO Internet Security"=D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cfp.exe [2011-01-11 2500552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-10-30 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2011-01-11 11:42:40 ----D---- C:\Program Files\trend micro
2011-01-11 11:42:38 ----D---- C:\rsit
2011-01-11 11:36:53 ----D---- C:\WINDOWS\LastGood
2011-01-10 19:15:37 ----RSD---- C:\WINDOWS\assembly
2011-01-10 19:14:58 ----D---- C:\WINDOWS\Microsoft.NET
2011-01-10 19:12:32 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-10 19:12:21 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2011-01-10 18:09:10 ----D---- C:\Documents and Settings\Norman\Data aplikací\QIP
2011-01-10 18:08:59 ----D---- C:\Program Files\QipGuard
2011-01-10 18:08:59 ----D---- C:\Documents and Settings\Norman\Data aplikací\QipGuard
2011-01-10 17:51:00 ----HD---- C:\VritualRoot
2011-01-10 17:50:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\COMODO
2011-01-10 17:01:04 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$
2011-01-10 17:00:41 ----D---- C:\Program Files\Google
2011-01-10 16:58:07 ----D---- C:\Program Files\CCleaner
2011-01-10 16:53:38 ----D---- C:\Documents and Settings\Norman\Data aplikací\IObit
2011-01-10 16:50:10 ----D---- C:\Program Files\COMODO
2011-01-10 16:38:47 ----D---- C:\WINDOWS\system32\VIRepair
2011-01-10 16:38:47 ----D---- C:\Documents and Settings\Norman\Data aplikací\ViStart
2011-01-10 16:37:31 ----D---- C:\Program Files\ViSplore
2011-01-10 16:37:31 ----A---- C:\WINDOWS\system32\viwc.exe
2011-01-10 16:37:30 ----D---- C:\Program Files\WinFlip
2011-01-10 16:37:30 ----D---- C:\Program Files\VisualTooltip
2011-01-10 16:37:30 ----D---- C:\Program Files\ViStart
2011-01-10 16:37:30 ----D---- C:\Program Files\ViOrb
2011-01-10 16:37:30 ----D---- C:\Program Files\TrueTransparency
2011-01-10 16:37:29 ----D---- C:\Program Files\Vista Rainbar
2011-01-10 16:37:29 ----D---- C:\Program Files\Styler
2011-01-10 16:37:28 ----D---- C:\Program Files\Vista Drive Icon
2011-01-10 16:37:28 ----D---- C:\Program Files\LClock
2011-01-10 16:37:28 ----A---- C:\WINDOWS\system32\vistaui.exe
2011-01-10 16:32:53 ----D---- C:\WINDOWS\system32\VITrans
2011-01-10 16:32:52 ----D---- C:\VTPFiles
2011-01-10 16:32:52 ----A---- C:\WINDOWS\system32\Uharc.exe
2011-01-10 16:32:52 ----A---- C:\WINDOWS\system32\reico.exe
2011-01-10 16:32:52 ----A---- C:\WINDOWS\system32\pskill.exe
2011-01-10 16:32:52 ----A---- C:\WINDOWS\system32\moveex.exe
2011-01-10 16:32:52 ----A---- C:\WINDOWS\system32\modifype.exe
2011-01-10 16:31:46 ----A---- C:\WINDOWS\system32\scrnrdr.exe
2011-01-10 16:28:51 ----A---- C:\WINDOWS\system32\h323log.txt
2011-01-10 16:25:43 ----D---- C:\Program Files\ATKOSD2
2011-01-10 16:25:19 ----D---- C:\Program Files\ATK Hotkey
2011-01-10 16:25:12 ----D---- C:\Documents and Settings\Norman\Data aplikací\InstallShield
2011-01-10 16:25:09 ----A---- C:\WINDOWS\system32\usbui.dll
2011-01-10 16:23:58 ----A---- C:\WINDOWS\imsins.BAK
2011-01-10 16:23:56 ----SHD---- C:\WINDOWS\Installer
2011-01-10 16:23:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-10 16:23:55 ----D---- C:\Program Files\Common Files\ODBC
2011-01-10 16:23:55 ----A---- C:\WINDOWS\ODBCINST.INI
2011-01-10 16:23:52 ----RD---- C:\Program Files
2011-01-10 16:23:52 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-01-10 16:23:52 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-01-10 16:23:52 ----D---- C:\Program Files\Common Files
2011-01-10 16:23:48 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-01-10 16:23:48 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-01-10 16:23:48 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-01-10 16:23:46 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-01-10 16:23:44 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-01-10 16:23:42 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-01-10 16:23:42 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-01-10 16:23:42 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-01-10 16:23:42 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-01-10 16:23:42 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdycl.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdsl.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdro.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdpl.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdhu.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\kbdcr.dll
2011-01-10 16:23:39 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2011-01-10 16:23:38 ----A---- C:\WINDOWS\system32\irclass.dll
2011-01-10 16:23:37 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-01-10 16:23:37 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2011-01-10 16:23:37 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-01-10 16:23:37 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-01-10 16:23:35 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2011-01-10 16:23:35 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-01-10 16:23:34 ----A---- C:\WINDOWS\system32\batt.dll
2011-01-10 16:23:34 ----A---- C:\WINDOWS\NOTEPAD.EXE
2011-01-10 16:23:30 ----A---- C:\WINDOWS\system32\storprop.dll
2011-01-10 16:23:22 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2011-01-10 16:23:21 ----RA---- C:\WINDOWS\SET21.tmp
2011-01-10 16:23:19 ----RA---- C:\WINDOWS\SET8.tmp
2011-01-10 16:23:17 ----RA---- C:\WINDOWS\SET4.tmp
2011-01-10 16:23:15 ----RA---- C:\WINDOWS\SET3.tmp
2011-01-10 16:23:14 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-01-10 16:23:08 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-10 16:23:08 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-10 16:23:02 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-01-10 16:23:01 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-01-10 16:23:00 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2011-01-10 16:22:37 ----A---- C:\WINDOWS\setuplog.txt
2011-01-10 16:22:34 ----SHD---- C:\System Volume Information
2011-01-10 16:22:34 ----D---- C:\Documents and Settings
2011-01-10 16:21:52 ----SH---- C:\boot.ini
2011-01-10 16:20:39 ----D---- C:\Documents and Settings\Norman\Data aplikací\Macromedia
2011-01-10 16:20:39 ----D---- C:\Documents and Settings\Norman\Data aplikací\Adobe
2011-01-10 16:19:26 ----D---- C:\Documents and Settings\Norman\Data aplikací\Mozilla
2011-01-10 16:19:21 ----D---- C:\Program Files\Mozilla Firefox
2011-01-10 16:13:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-10 16:13:25 ----RSD---- C:\WINDOWS\Fonts
2011-01-10 16:13:25 ----RD---- C:\WINDOWS\Web
2011-01-10 16:13:25 ----HD---- C:\WINDOWS\inf
2011-01-10 16:13:25 ----D---- C:\WINDOWS\WinSxS
2011-01-10 16:13:25 ----D---- C:\WINDOWS\twain_32
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Temp
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\wins
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\wbem
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\usmt
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\spool
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\ShellExt
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\Setup
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\ras
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\oobe
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\npp
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\mui
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\IME
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\icsxml
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\ias
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\export
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\drivers
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\dhcp
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\config
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\3com_dmi
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\3076
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\2052
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1054
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1042
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1041
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1037
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1033
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1031
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1029
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1028
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32\1025
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system32
2011-01-10 16:13:25 ----D---- C:\WINDOWS\system
2011-01-10 16:13:25 ----D---- C:\WINDOWS\security
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Resources
2011-01-10 16:13:25 ----D---- C:\WINDOWS\repair
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Provisioning
2011-01-10 16:13:25 ----D---- C:\WINDOWS\pchealth
2011-01-10 16:13:25 ----D---- C:\WINDOWS\PeerNet
2011-01-10 16:13:25 ----D---- C:\WINDOWS\mui
2011-01-10 16:13:25 ----D---- C:\WINDOWS\msapps
2011-01-10 16:13:25 ----D---- C:\WINDOWS\msagent
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Media
2011-01-10 16:13:25 ----D---- C:\WINDOWS\java
2011-01-10 16:13:25 ----D---- C:\WINDOWS\ime
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Help
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Driver Cache
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Debug
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Cursors
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Connection Wizard
2011-01-10 16:13:25 ----D---- C:\WINDOWS\Config
2011-01-10 16:13:25 ----D---- C:\WINDOWS\AppPatch
2011-01-10 16:13:25 ----D---- C:\WINDOWS\addins
2011-01-10 16:13:25 ----D---- C:\WINDOWS
2011-01-10 16:12:38 ----SHD---- C:\RECYCLER
2011-01-10 16:12:19 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-01-10 16:12:19 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-01-10 16:12:14 ----D---- C:\WINDOWS\Logs
2011-01-10 16:11:46 ----D---- C:\WINDOWS\RegisteredPackages
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\vxblock.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxwave.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxsfs.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxmas.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxdrv.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\pxafs.dll
2011-01-10 16:10:09 ----N---- C:\WINDOWS\system32\px.dll
2011-01-10 16:10:08 ----D---- C:\Program Files\Winamp
2011-01-10 16:10:08 ----D---- C:\Documents and Settings\Norman\Data aplikací\Winamp
2011-01-10 15:55:52 ----A---- C:\WINDOWS\alcwzrd.exe
2011-01-10 15:55:52 ----A---- C:\WINDOWS\Alcmtr.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\SoundMan.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\SkyTel.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\RtlUpd.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\RTLCPL.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\RTHDCPL.exe
2011-01-10 15:55:51 ----A---- C:\WINDOWS\MicCal.exe
2011-01-10 15:55:50 ----D---- C:\WINDOWS\system32\RTCOM
2011-01-10 15:55:50 ----A---- C:\WINDOWS\system32\ChCfg.exe
2011-01-10 15:55:41 ----D---- C:\Program Files\Realtek
2011-01-10 15:55:35 ----A---- C:\WINDOWS\RtlExUpd.dll
2011-01-10 15:55:35 ----A---- C:\WINDOWS\HideWin.exe
2011-01-10 15:51:40 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-10 15:51:37 ----D---- C:\Program Files\Intel
2011-01-10 15:51:37 ----A---- C:\WINDOWS\system32\CSVer.dll
2011-01-10 15:49:25 ----A---- C:\WINDOWS\system32\wpa.bak
2011-01-10 15:47:14 ----A---- C:\WINDOWS\system32\igfxres.dll
2011-01-10 15:45:37 ----A---- C:\WINDOWS\system32\igxprd32.dll
2011-01-10 15:45:37 ----A---- C:\WINDOWS\system32\igklg450.dll
2011-01-10 15:45:37 ----A---- C:\WINDOWS\system32\igfxtray.exe
2011-01-10 15:45:37 ----A---- C:\WINDOWS\system32\igfxexps.dll
2011-01-10 15:45:36 ----A---- C:\WINDOWS\system32\igxpdv32.dll
2011-01-10 15:45:36 ----A---- C:\WINDOWS\system32\igklg400.dll
2011-01-10 15:45:36 ----A---- C:\WINDOWS\system32\igfxsrvc.dll
2011-01-10 15:45:36 ----A---- C:\WINDOWS\system32\igfxpers.exe
2011-01-10 15:45:36 ----A---- C:\WINDOWS\system32\igfxext.exe
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igxpgd32.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igxpdx32.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igmedcompkrn.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igfxzoom.exe
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igfxdev.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igfxCoIn_v4885.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\igfxcfg.exe
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\ig4icd32.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\ig4dev32.dll
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\hkcmd.exe
2011-01-10 15:45:35 ----A---- C:\WINDOWS\system32\hccutils.dll
2011-01-10 15:45:34 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-01-10 15:45:34 ----D---- C:\WINDOWS\system32\Lang
2011-01-10 15:45:34 ----A---- C:\WINDOWS\system32\igfxress.dll
2011-01-10 15:45:34 ----A---- C:\WINDOWS\system32\igfxpph.dll
2011-01-10 15:45:34 ----A---- C:\WINDOWS\system32\igfxdo.dll
2011-01-10 15:45:34 ----A---- C:\WINDOWS\system32\difxapi.dll
2011-01-10 15:45:33 ----A---- C:\WINDOWS\system32\igxpun.exe
2011-01-10 15:45:28 ----D---- C:\Intel
2011-01-10 15:44:58 ----A---- C:\WINDOWS\system32\acs.exe
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wsimd.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wsfwDS.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wgapiloc.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wgapi.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wcapiU.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\wcapi.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\dsaNac.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\dsa.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\athcfg20U.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\athcfg20resU.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\athcfg20res.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\athcfg20.dll
2011-01-10 15:44:47 ----A---- C:\WINDOWS\system32\athcfg11resloc.dll
2011-01-10 15:44:45 ----D---- C:\Program Files\Atheros
2011-01-10 15:44:35 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-10 15:43:51 ----D---- C:\temp
2011-01-10 15:43:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Atheros
2011-01-10 15:43:35 ----D---- C:\Program Files\Common Files\InstallShield
2011-01-10 15:40:45 ----D---- C:\Documents and Settings\Norman\Data aplikací\Identities
2011-01-10 15:40:44 ----HD---- C:\Program Files\Uninstall Information
2011-01-10 15:40:37 ----SD---- C:\Documents and Settings\Norman\Data aplikací\Microsoft
2011-01-10 15:40:37 ----ASH---- C:\Documents and Settings\Norman\Data aplikací\desktop.ini
2011-01-10 15:39:19 ----D---- C:\WINDOWS\SoftwareDistribution
2011-01-10 15:39:18 ----SD---- C:\WINDOWS\system32\Microsoft
2011-01-10 15:39:18 ----D---- C:\WINDOWS\Prefetch
2011-01-10 15:39:18 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-10 15:35:22 ----D---- C:\WINDOWS\system32\xircom
2011-01-10 15:35:22 ----D---- C:\Program Files\xerox
2011-01-10 15:35:22 ----D---- C:\Program Files\microsoft frontpage
2011-01-10 15:35:16 ----HD---- C:\WINDOWS\$hf_mig$
2011-01-10 15:34:59 ----A---- C:\WINDOWS\control.ini
2011-01-10 15:34:59 ----A---- C:\AUTOEXEC.BAT
2011-01-10 15:34:48 ----A---- C:\WINDOWS\OEWABLog.txt
2011-01-10 15:34:44 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-01-10 15:33:57 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-01-10 15:33:57 ----RD---- C:\WINDOWS\Offline Web Pages
2011-01-10 15:33:57 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2011-01-10 15:33:51 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-01-10 15:33:47 ----HD---- C:\Program Files\WindowsUpdate
2011-01-10 15:33:42 ----D---- C:\Program Files\Online Services
2011-01-10 15:33:25 ----D---- C:\WINDOWS\system32\DirectX
2011-01-10 15:33:04 ----A---- C:\WINDOWS\system32\atrace.dll
2011-01-10 15:33:01 ----A---- C:\WINDOWS\system32\desktop.ini
2011-01-10 15:33:01 ----A---- C:\WINDOWS\desktop.ini
2011-01-10 15:32:54 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-01-10 15:32:52 ----D---- C:\Program Files\Common Files\Services
2011-01-10 15:32:52 ----A---- C:\WINDOWS\system32\acctres.dll
2011-01-10 15:32:49 ----SD---- C:\WINDOWS\Tasks
2011-01-10 15:32:49 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-01-10 15:32:48 ----D---- C:\Program Files\Common Files\MSSoap
2011-01-10 15:32:44 ----D---- C:\WINDOWS\srchasst
2011-01-10 15:32:43 ----D---- C:\WINDOWS\system32\Macromed
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wups.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2011-01-10 15:32:40 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-01-10 15:32:39 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-01-10 15:32:39 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-01-10 15:32:39 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-01-10 15:32:39 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2011-01-10 15:32:39 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2011-01-10 15:32:35 ----D---- C:\Program Files\Movie Maker
2011-01-10 15:32:31 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-01-10 15:32:31 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-01-10 15:32:31 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-01-10 15:32:31 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-01-10 15:32:28 ----A---- C:\WINDOWS\system32\fltMc.exe
2011-01-10 15:32:28 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-01-10 15:32:27 ----D---- C:\WINDOWS\system32\Restore
2011-01-10 15:32:27 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-01-10 15:32:27 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-01-10 15:32:27 ----A---- C:\WINDOWS\system32\srclient.dll
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\msconf.dll
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-01-10 15:32:26 ----A---- C:\WINDOWS\system32\ils.dll
2011-01-10 15:32:23 ----D---- C:\Program Files\NetMeeting
2011-01-10 15:32:23 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-01-10 15:32:23 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-01-10 15:32:22 ----A---- C:\WINDOWS\system32\inetres.dll
2011-01-10 15:32:21 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-01-10 15:32:20 ----D---- C:\Program Files\Outlook Express
2011-01-10 15:32:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\mstask.dll
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\isign32.dll
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-01-10 15:32:19 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-01-10 15:32:13 ----D---- C:\Program Files\Common Files\System
2011-01-10 15:32:06 ----D---- C:\Program Files\Internet Explorer
2011-01-10 15:31:53 ----D---- C:\Program Files\ComPlus Applications
2011-01-10 15:31:51 ----A---- C:\WINDOWS\vbaddin.ini
2011-01-10 15:31:51 ----A---- C:\WINDOWS\vb.ini
2011-01-10 15:31:46 ----D---- C:\WINDOWS\Registration
2011-01-10 15:31:16 ----D---- C:\Program Files\Windows Media Player
2011-01-10 15:31:11 ----D---- C:\Program Files\Messenger
2011-01-10 15:31:07 ----D---- C:\Program Files\MSN Gaming Zone
2011-01-10 15:31:07 ----A---- C:\WINDOWS\system32\write.exe
2011-01-10 15:30:58 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-01-10 15:30:57 ----A---- C:\WINDOWS\system32\hticons.dll
2011-01-10 15:30:57 ----A---- C:\WINDOWS\system32\avwav.dll
2011-01-10 15:30:57 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-01-10 15:30:57 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-01-10 15:30:56 ----A---- C:\WINDOWS\system32\winchat.exe
2011-01-10 15:30:50 ----A---- C:\WINDOWS\system32\getuname.dll
2011-01-10 15:30:49 ----A---- C:\WINDOWS\system32\WINmine.exe
2011-01-10 15:30:49 ----A---- C:\WINDOWS\system32\sol.exe
2011-01-10 15:30:49 ----A---- C:\WINDOWS\system32\charmap.exe
2011-01-10 15:30:49 ----A---- C:\WINDOWS\system32\calc.exe
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\tskill.exe
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\reset.exe
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-01-10 15:30:48 ----A---- C:\WINDOWS\system32\freecell.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\tscon.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\shadow.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\regini.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\msg.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\logoff.exe
2011-01-10 15:30:47 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-01-10 15:30:46 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-01-10 15:30:46 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-01-10 15:30:46 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-01-10 15:30:46 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-01-10 15:30:46 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-01-10 15:30:45 ----A---- C:\WINDOWS\system32\stclient.dll
2011-01-10 15:30:45 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-01-10 15:30:45 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-01-10 15:30:45 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-01-10 15:30:40 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-01-10 15:30:39 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-01-10 15:30:39 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-01-10 15:30:38 ----D---- C:\Program Files\Windows NT
2011-01-10 15:30:38 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-01-10 15:30:38 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-01-10 15:30:38 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-01-10 15:30:37 ----A---- C:\WINDOWS\system32\spider.exe
2011-01-10 15:30:37 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-01-10 15:30:36 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-01-10 15:30:35 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-01-10 15:30:34 ----D---- C:\WINDOWS\system32\MsDtc
2011-01-10 15:30:34 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-01-10 15:30:34 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-01-10 15:30:34 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-01-10 15:30:34 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-01-10 15:30:33 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-01-10 15:30:33 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-01-10 15:30:33 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-01-10 15:30:32 ----D---- C:\WINDOWS\system32\Com
2011-01-10 15:30:32 ----A---- C:\WINDOWS\system32\colbact.dll
2011-01-10 15:30:32 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-01-10 15:30:32 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-01-10 15:30:32 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-01-10 15:30:32 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-01-10 15:30:31 ----A---- C:\WINDOWS\system32\comuid.dll
2011-01-10 15:30:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-01-10 15:30:31 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-01-10 15:30:26 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-01-10 15:30:25 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-01-10 15:30:22 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-01-10 15:30:22 ----A---- C:\WINDOWS\system32\cmprops.dll
======List of files/folders modified in the last 1 months======
2011-01-11 10:02:19 ----A---- C:\WINDOWS\system32\guard32.dll
2011-01-10 16:23:50 ----A---- C:\WINDOWS\system.ini
2011-01-10 15:34:58 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2011-01-11 15592]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2011-01-11 239240]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2011-01-11 25240]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 39936]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-10-26 549184]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-10-30 5851488]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-04-17 4707328]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2007-08-24 5760]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2006-03-02 67584]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2007-07-03 57344]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2006-03-02 73344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACS;Konfigurační služba Atheros; C:\WINDOWS\system32\acs.exe [2007-10-23 364629]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
R2 cmdAgent;COMODO Internet Security Helper Service; D:\Programy\COMODO Firewall & Antivirus\COMODO\COMODO Internet Security\cmdagent.exe [2011-01-11 1901056]
R2 QipGuard;QipGuard; C:\Program Files\QipGuard\QipGuard.exe [2010-12-13 187776]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o preventivní kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosim o preventivní kontrolu
Zdravim a pekny den preji 
Tyhle IP adresy znate 156.154.71.22, 156.154.70.22 
Jsou to adresy od poskytovatele, odkazuji nekam do USA http://whois.domaintools.com/156.154.70.22
Spustte HJT a provedeme fixnuti polozek
Z logu je patrno, ze nemate aktualni verzi Windows - chybi Vam ServicePack 3 - doinstalujte jej
Z logu je patrno, ze nemate aktualni verzi Internet Exploreru - aktualizujte jej
Jsou s PC nejake problemy
Tyhle IP adresy znate 156.154.71.22, 156.154.70.22 Jsou to adresy od poskytovatele, odkazuji nekam do USA http://whois.domaintools.com/156.154.70.22 Spustte HJT a provedeme fixnuti polozek
- HJT najdete zde C:\Program Files\trend micro\Norman.exe
- Otevre se Vam okno, kliknete na Do a system scan only
- V dalsim okne najdete radky které jsem Vam vypsal nize, vedle nich je ctverecek, do ktereho udelate zatrzitko
- R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Norman\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O20 - AppInit_DLLs: - Kliknete na Fix checked (vlevo dole)
- HJT se Vas zepta zda opravdu ANO, s tim souhlasite a je hotovo
Z logu je patrno, ze nemate aktualni verzi Windows - chybi Vam ServicePack 3 - doinstalujte jej
- Vice info mate zde http://www.viry.cz/forum/viewtopic.php?f=46&t=86100
Z logu je patrno, ze nemate aktualni verzi Internet Exploreru - aktualizujte jej
- Aktualizaci najdete zde (pod tlacitkem "Ke stazeni") http://www.microsoft.com/cze/windows/internet-explorer/
- Doporucuji vsak pouzivat alternativni prohlizece - vice zde http://www.viry.cz/forum/viewtopic.php?f=19&t=6116
Jsou s PC nejake problemy "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o preventivní kontrolu
Udělal jsem tedy to s tím HJT, v pořádku, prohlížeč používám Mozzilu Firefox, a ohledně toho SP3, co jsem četl tak to budu muset instalovat přes Boot CD, nešlo by to jen spustit jako instalační program přímo ve windowsu?
Re: Prosim o preventivní kontrolu
Pres boot CD je to jen pro zdatne uzivatele, bezny uzivatel jej muze stahnout a spustit http://www.microsoft.com/downloads/deta ... layLang=cs"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o preventivní kontrolu
Dobře, děkuji už to stahuji 
Re: Prosim o preventivní kontrolu
Pak sem dejte jeste novy log z RSIT pro kontrolu
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?