Pro Vyosek

Zpráva

Junfan · #1 Příspěvek od **Junfan** » 22 led 2011 13:12

Zdravím,

nedávno jsme spolu něco řešili a byl jsem spokojenej a teď tu mám další problém

problém s virem "Security Tool" máte s tím zkušenosti? Já to většinou řešil formátem, ale teď bych nerad...
většinou udělá neplechu v systému

#2 Příspěvek od **vyosek** » 22 led 2011 16:13

Zdravim a pekny den preji

Starej znamej Security Tool, format neni treba

Restartujte se do nouzoveho rezimu - restart PC, mackat F8, zvolit Stav nouze s praci v siti

Dejte log z RSIT - navod v mem podpise

Junfan · #3 Příspěvek od **Junfan** » 22 led 2011 17:27

Log je vytvořen v normálním režimu

Logfile of random's system information tool 1.08 (written by random/random)
Run by Zaluda at 2011-01-22 17:23:59
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 175 GB (92%) free of 191 GB
Total RAM: 2043 MB (78% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll [2009-01-27 58688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-09-24 8478720]
"PSQLLauncher"=C:\Program Files\Protector Suite QL\launcher.exe [2007-06-05 49168]
"PrintPack dispatcher"=C:\Program Files\Software602\PrintPack\PrnPack.exe [2005-11-18 741376]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ShStatEXE"=C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE [2009-01-27 111952]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-04 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-04 162328]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-04 137752]
"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768]
"SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2007-09-28 217088]
"Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2007-08-31 503808]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"McAfeeUpdaterUI"=C:\Program Files\Network Associates\Common Framework\udaterui.exe [2009-03-10 136512]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
McAfee Host Intrusion Prevention Tray.lnk - C:\Program Files\McAfee\Host Intrusion Prevention\FireTray.exe
VPN Client.lnk - C:\WINDOWS\Installer\{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}\Icon3E5562ED7.ico

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-04 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\WINDOWS\system32\psqlpwd.dll [2007-06-05 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\WINDOWS\system32\VESWinlogon.dll [2007-05-16 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
psqlpwd

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe"="C:\Program Files\Network Associates\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-01-22 17:23:59 ----D---- C:\rsit
2011-01-22 17:23:59 ----D---- C:\Program Files\trend micro
2011-01-21 18:13:27 ----D---- C:\1ee70bbd74c7c6783eed7473ebc272
2011-01-21 18:08:30 ----D---- C:\Program Files\windows remote control
2011-01-20 23:05:24 ----SHD---- C:\Config.Msi
2011-01-20 23:05:09 ----D---- C:\Program Files\Microsoft Security Client
2011-01-20 23:04:29 ----D---- C:\f0aba3b22faaa26dc5
2011-01-20 23:04:25 ----A---- C:\Program Files\mseinstall.exe
2011-01-20 21:43:12 ----D---- C:\Program Files\GridinSoft Trojan Killer
2011-01-20 20:45:47 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\PC Suite
2011-01-13 21:59:54 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Macromedia
2011-01-13 21:52:44 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Adobe
2011-01-13 14:05:10 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #3.txt
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbdev.sys
2011-01-09 21:26:18 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2011-01-09 21:26:05 ----D---- C:\Program Files\O2
2011-01-09 20:36:55 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Telefónica Móviles
2011-01-03 13:37:15 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Sony Corporation
2011-01-03 13:36:39 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Identities
2011-01-03 13:36:15 ----SD---- C:\Documents and Settings\Zaluda\Data aplikací\Microsoft
2011-01-03 13:36:15 ----ASH---- C:\Documents and Settings\Zaluda\Data aplikací\desktop.ini
2011-01-03 13:31:40 ----D---- C:\Quarantine
2011-01-03 13:25:43 ----D---- C:\WINDOWS\Prefetch
2011-01-03 13:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-01-03 13:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2011-01-03 13:20:12 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-01-03 13:19:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-01-03 13:18:46 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-01-03 13:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2011-01-03 13:17:24 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2011-01-03 13:16:42 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-01-03 13:16:01 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2011-01-03 13:15:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-01-03 13:14:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-01-03 13:13:51 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-01-03 13:13:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-01-03 13:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2011-01-03 13:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-01-03 13:11:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-01-03 13:10:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-01-03 13:09:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-01-03 13:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-01-03 13:08:15 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2011-01-03 13:07:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-01-03 13:06:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-01-03 13:06:09 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-01-03 13:05:30 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2011-01-03 13:04:41 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\azroles.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati3duag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\credssp.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-01-03 13:00:34 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-01-03 13:00:34 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qagent.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\onex.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napstat.exe
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\mssha.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slserv.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slgen.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\setupn.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\qutil.dll
2011-01-03 13:00:30 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-01-03 13:00:29 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-01-03 13:00:28 ----N---- C:\WINDOWS\slrundll.exe
2011-01-03 13:00:27 ----D---- C:\WINDOWS\system32\cs
2011-01-03 13:00:27 ----D---- C:\WINDOWS\system32\bits
2011-01-03 13:00:27 ----D---- C:\WINDOWS\l2schemas
2011-01-03 12:58:19 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-01-03 12:55:25 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-01-03 12:53:42 ----A---- C:\WINDOWS\003200_.tmp
2011-01-03 12:50:51 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

======List of files/folders modified in the last 1 months======

2011-01-22 17:23:59 ----RD---- C:\Program Files
2011-01-22 17:23:07 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-22 17:23:04 ----HD---- C:\WINDOWS\inf
2011-01-22 17:22:51 ----D---- C:\WINDOWS\Temp
2011-01-22 17:22:23 ----SHD---- C:\WINDOWS\CSC
2011-01-22 17:18:26 ----A---- C:\WINDOWS\ntbtlog.txt
2011-01-22 17:16:05 ----D---- C:\WINDOWS\system32
2011-01-22 17:16:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-20 23:51:11 ----SD---- C:\WINDOWS\Tasks
2011-01-20 23:48:02 ----D---- C:\WINDOWS
2011-01-20 23:24:15 ----SHD---- C:\WINDOWS\Installer
2011-01-20 23:23:52 ----D---- C:\WINDOWS\system32\drivers
2011-01-20 23:05:24 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-01-20 21:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-17 13:20:51 ----A---- C:\WINDOWS\ODBC.INI
2011-01-09 20:51:02 ----SHD---- C:\RECYCLER
2011-01-03 13:36:43 ----A---- C:\WINDOWS\OEWABLog.txt
2011-01-03 13:36:14 ----D---- C:\Documents and Settings
2011-01-03 13:32:30 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2011-01-03 13:31:59 ----D---- C:\WINDOWS\security
2011-01-03 13:26:32 ----A---- C:\WINDOWS\setuplog.txt
2011-01-03 13:25:14 ----D---- C:\WINDOWS\system32\Setup
2011-01-03 13:25:14 ----D---- C:\WINDOWS\AppPatch
2011-01-03 13:25:13 ----D---- C:\WINDOWS\system32\wbem
2011-01-03 13:25:12 ----RSD---- C:\WINDOWS\Fonts
2011-01-03 13:23:34 ----A---- C:\WINDOWS\wincmd.ini
2011-01-03 13:23:08 ----A---- C:\WINDOWS\imsins.BAK
2011-01-03 13:21:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-03 13:21:46 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-03 13:06:23 ----D---- C:\Program Files\Messenger
2011-01-03 13:05:42 ----D---- C:\WINDOWS\WinSxS
2011-01-03 13:00:41 ----D---- C:\WINDOWS\ehome
2011-01-03 13:00:39 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-03 13:00:39 ----D---- C:\WINDOWS\network diagnostic
2011-01-03 13:00:39 ----D---- C:\WINDOWS\ime
2011-01-03 13:00:39 ----D---- C:\WINDOWS\Help
2011-01-03 13:00:28 ----D---- C:\WINDOWS\system32\usmt
2011-01-03 13:00:28 ----D---- C:\WINDOWS\system32\cs-cz
2011-01-03 13:00:27 ----D---- C:\WINDOWS\PeerNet
2011-01-03 13:00:27 ----D---- C:\Program Files\Movie Maker
2011-01-03 12:58:07 ----D---- C:\WINDOWS\system32\Restore
2011-01-03 12:58:06 ----D---- C:\WINDOWS\system32\npp
2011-01-03 12:58:05 ----D---- C:\WINDOWS\msagent
2011-01-03 12:58:03 ----D---- C:\WINDOWS\srchasst
2011-01-03 12:58:02 ----D---- C:\Program Files\NetMeeting
2011-01-03 12:58:00 ----D---- C:\WINDOWS\system32\Com
2011-01-03 12:57:58 ----D---- C:\Program Files\Windows Media Player
2011-01-03 12:57:57 ----D---- C:\Program Files\Windows NT
2011-01-03 12:57:57 ----D---- C:\Program Files\Outlook Express
2011-01-03 12:57:53 ----D---- C:\Program Files\Common Files\System
2011-01-03 12:57:30 ----D---- C:\WINDOWS\system32\oobe
2011-01-03 12:57:28 ----D---- C:\WINDOWS\system
2011-01-03 12:53:39 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-03 11:20:26 ----D---- C:\WINDOWS\QUARANTINE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FirePM;McAfee HIP Component FirePM; C:\WINDOWS\system32\Drivers\FirePM.sys [2007-01-26 171008]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 FireHook;McAfee HIP Component FireHook; \??\C:\WINDOWS\system32\Drivers\Firehk5x.sys []
R1 FireTDI;McAfee HIP Component FireTDI; \??\C:\WINDOWS\system32\Drivers\FireTDI.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 mferkdk;VSCore mferkdk; \??\C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys []
R1 mfetdik;McAfee Inc.; C:\WINDOWS\system32\drivers\mfetdik.sys [2009-01-27 52168]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 tidnet;TID NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\tidnet.sys [2009-09-15 19200]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.4.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-04-02 21393]
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2007-09-24 12672]
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-05-29 12416]
R3 5U870UVC;Sony Visual Communication Camera VGP-VCC7; C:\WINDOWS\System32\Drivers\5U870UVCx86.sys [2007-09-24 70144]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-02-04 879624]
R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2007-01-31 127376]
R3 firelm01;firelm01; \??\C:\WINDOWS\system32\drivers\firelm01.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2007-09-24 990592]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2007-09-24 208256]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-09-24 41216]
R3 mfehidk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-01-27 177864]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-06-21 2208512]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-09-24 6844864]
R3 SNC;Zařízení pro ovládání přenosného počítače Sony; C:\WINDOWS\system32\DRIVERS\SonyNC.sys [2001-08-17 20752]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2007-09-24 31104]
R3 SPI;Programovatelné zařízení Sony pro ovládání V/V ; C:\WINDOWS\system32\DRIVERS\SonyPI.sys [2001-08-17 37040]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-09-24 1222840]
R3 TcUsb;TC USB Kernel Driver; C:\WINDOWS\System32\Drivers\tcusb.sys [2007-08-16 47120]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2007-09-24 812544]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2007-09-24 727808]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-09-24 259712]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-02-04 539512]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-02-04 156392]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-02-04 55352]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-02-04 74688]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 hidsys;hidsys; \??\C:\WINDOWS\system32\Drivers\hidsys.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\WINDOWS\system32\DRIVERS\ewdcsc.sys [2009-12-15 24448]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102528]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [2009-12-15 100736]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-04 5762208]
S3 mfeapfk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeapfk.sys [2009-01-27 65000]
S3 mfeavfk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeavfk.sys [2009-01-27 73512]
S3 mfebopk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfebopk.sys [2009-01-27 34408]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AlertManager;McAfee Alert Manager; C:\Program Files\Network Associates\Alert Manager\amgrsrvc.exe [2004-08-18 176206]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-12-06 264800]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2007-04-03 1516584]
R2 enterceptAgent;McAfee Host Intrusion Prevention Service; C:\Program Files\McAfee\Host Intrusion Prevention\FireSvc.exe [2007-01-26 1138688]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-06-01 647168]
R2 McAfeeFramework;McAfee Framework Service; C:\Program Files\Network Associates\Common Framework\FrameworkService.exe [2009-03-10 103744]
R2 McTaskManager;McAfee Task Manager; C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe [2009-01-27 54608]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 Multi-user Cleanup Service;Multi-user Cleanup Service; C:\program files\notes\ntmulti.exe [2005-03-28 57393]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-09-24 155716]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-06-01 327680]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-06-01 987136]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2007-05-16 176128]
S2 McShield;McAfee McShield; C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe [2009-01-27 144704]
S2 NSEvtFwdSvc;NSEvtFwdSvc; C:\Program Files\Network Associates\McAfee PreScan\NSEvtFwdSvc.exe [2006-12-27 90112]
S2 WinVNC4;VNC Server Version 4; C:\Program Files\RealVNC\VNC4\WinVNC4.exe -service []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 bepprldr;BCL easyPDF SDK Loader; C:\Program Files\Common Files\BCL Technologies\easyPDF 4\bepprldr.exe [2006-04-19 86016]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Junfan · #4 Příspěvek od **Junfan** » 22 led 2011 17:28

ještě "info"

Logfile of random's system information tool 1.08 (written by random/random)
Run by Zaluda at 2011-01-22 17:23:59
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 175 GB (92%) free of 191 GB
Total RAM: 2043 MB (78% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll [2009-01-27 58688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-09-24 8478720]
"PSQLLauncher"=C:\Program Files\Protector Suite QL\launcher.exe [2007-06-05 49168]
"PrintPack dispatcher"=C:\Program Files\Software602\PrintPack\PrnPack.exe [2005-11-18 741376]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ShStatEXE"=C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE [2009-01-27 111952]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-04 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-04 162328]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-04 137752]
"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768]
"SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2007-09-28 217088]
"Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2007-08-31 503808]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"McAfeeUpdaterUI"=C:\Program Files\Network Associates\Common Framework\udaterui.exe [2009-03-10 136512]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
McAfee Host Intrusion Prevention Tray.lnk - C:\Program Files\McAfee\Host Intrusion Prevention\FireTray.exe
VPN Client.lnk - C:\WINDOWS\Installer\{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}\Icon3E5562ED7.ico

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-04 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\WINDOWS\system32\psqlpwd.dll [2007-06-05 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\WINDOWS\system32\VESWinlogon.dll [2007-05-16 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
psqlpwd

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe"="C:\Program Files\Network Associates\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-01-22 17:23:59 ----D---- C:\rsit
2011-01-22 17:23:59 ----D---- C:\Program Files\trend micro
2011-01-21 18:13:27 ----D---- C:\1ee70bbd74c7c6783eed7473ebc272
2011-01-21 18:08:30 ----D---- C:\Program Files\windows remote control
2011-01-20 23:05:24 ----SHD---- C:\Config.Msi
2011-01-20 23:05:09 ----D---- C:\Program Files\Microsoft Security Client
2011-01-20 23:04:29 ----D---- C:\f0aba3b22faaa26dc5
2011-01-20 23:04:25 ----A---- C:\Program Files\mseinstall.exe
2011-01-20 21:43:12 ----D---- C:\Program Files\GridinSoft Trojan Killer
2011-01-20 20:45:47 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\PC Suite
2011-01-13 21:59:54 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Macromedia
2011-01-13 21:52:44 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Adobe
2011-01-13 14:05:10 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #3.txt
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2011-01-09 21:26:19 ----A---- C:\WINDOWS\system32\drivers\ewusbdev.sys
2011-01-09 21:26:18 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2011-01-09 21:26:05 ----D---- C:\Program Files\O2
2011-01-09 20:36:55 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Telefónica Móviles
2011-01-03 13:37:15 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Sony Corporation
2011-01-03 13:36:39 ----D---- C:\Documents and Settings\Zaluda\Data aplikací\Identities
2011-01-03 13:36:15 ----SD---- C:\Documents and Settings\Zaluda\Data aplikací\Microsoft
2011-01-03 13:36:15 ----ASH---- C:\Documents and Settings\Zaluda\Data aplikací\desktop.ini
2011-01-03 13:31:40 ----D---- C:\Quarantine
2011-01-03 13:25:43 ----D---- C:\WINDOWS\Prefetch
2011-01-03 13:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-01-03 13:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2011-01-03 13:20:12 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-01-03 13:19:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-01-03 13:18:46 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-01-03 13:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2011-01-03 13:17:24 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2011-01-03 13:16:42 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-01-03 13:16:01 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2011-01-03 13:15:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-01-03 13:14:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-01-03 13:13:51 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-01-03 13:13:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-01-03 13:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2011-01-03 13:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-01-03 13:11:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-01-03 13:10:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-01-03 13:09:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-01-03 13:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-01-03 13:08:15 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2011-01-03 13:07:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-01-03 13:06:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-01-03 13:06:09 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-01-03 13:05:30 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2011-01-03 13:04:41 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-01-03 13:00:40 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\azroles.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati3duag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-01-03 13:00:37 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\credssp.dll
2011-01-03 13:00:36 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-01-03 13:00:35 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-01-03 13:00:34 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-01-03 13:00:34 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-01-03 13:00:33 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\qagent.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\onex.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napstat.exe
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-01-03 13:00:32 ----N---- C:\WINDOWS\system32\mssha.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slserv.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slgen.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\setupn.exe
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-01-03 13:00:31 ----N---- C:\WINDOWS\system32\qutil.dll
2011-01-03 13:00:30 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-01-03 13:00:29 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-01-03 13:00:28 ----N---- C:\WINDOWS\slrundll.exe
2011-01-03 13:00:27 ----D---- C:\WINDOWS\system32\cs
2011-01-03 13:00:27 ----D---- C:\WINDOWS\system32\bits
2011-01-03 13:00:27 ----D---- C:\WINDOWS\l2schemas
2011-01-03 12:58:19 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-01-03 12:55:35 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-01-03 12:55:34 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-01-03 12:55:33 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-01-03 12:55:32 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-01-03 12:55:31 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-01-03 12:55:30 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-01-03 12:55:29 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-01-03 12:55:28 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-01-03 12:55:27 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-01-03 12:55:26 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-01-03 12:55:25 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-01-03 12:53:42 ----A---- C:\WINDOWS\003200_.tmp
2011-01-03 12:50:51 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

======List of files/folders modified in the last 1 months======

2011-01-22 17:23:59 ----RD---- C:\Program Files
2011-01-22 17:23:07 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-22 17:23:04 ----HD---- C:\WINDOWS\inf
2011-01-22 17:22:51 ----D---- C:\WINDOWS\Temp
2011-01-22 17:22:23 ----SHD---- C:\WINDOWS\CSC
2011-01-22 17:18:26 ----A---- C:\WINDOWS\ntbtlog.txt
2011-01-22 17:16:05 ----D---- C:\WINDOWS\system32
2011-01-22 17:16:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-20 23:51:11 ----SD---- C:\WINDOWS\Tasks
2011-01-20 23:48:02 ----D---- C:\WINDOWS
2011-01-20 23:24:15 ----SHD---- C:\WINDOWS\Installer
2011-01-20 23:23:52 ----D---- C:\WINDOWS\system32\drivers
2011-01-20 23:05:24 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-01-20 21:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-17 13:20:51 ----A---- C:\WINDOWS\ODBC.INI
2011-01-09 20:51:02 ----SHD---- C:\RECYCLER
2011-01-03 13:36:43 ----A---- C:\WINDOWS\OEWABLog.txt
2011-01-03 13:36:14 ----D---- C:\Documents and Settings
2011-01-03 13:32:30 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2011-01-03 13:31:59 ----D---- C:\WINDOWS\security
2011-01-03 13:26:32 ----A---- C:\WINDOWS\setuplog.txt
2011-01-03 13:25:14 ----D---- C:\WINDOWS\system32\Setup
2011-01-03 13:25:14 ----D---- C:\WINDOWS\AppPatch
2011-01-03 13:25:13 ----D---- C:\WINDOWS\system32\wbem
2011-01-03 13:25:12 ----RSD---- C:\WINDOWS\Fonts
2011-01-03 13:23:34 ----A---- C:\WINDOWS\wincmd.ini
2011-01-03 13:23:08 ----A---- C:\WINDOWS\imsins.BAK
2011-01-03 13:21:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-03 13:21:46 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-03 13:06:23 ----D---- C:\Program Files\Messenger
2011-01-03 13:05:42 ----D---- C:\WINDOWS\WinSxS
2011-01-03 13:00:41 ----D---- C:\WINDOWS\ehome
2011-01-03 13:00:39 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-03 13:00:39 ----D---- C:\WINDOWS\network diagnostic
2011-01-03 13:00:39 ----D---- C:\WINDOWS\ime
2011-01-03 13:00:39 ----D---- C:\WINDOWS\Help
2011-01-03 13:00:28 ----D---- C:\WINDOWS\system32\usmt
2011-01-03 13:00:28 ----D---- C:\WINDOWS\system32\cs-cz
2011-01-03 13:00:27 ----D---- C:\WINDOWS\PeerNet
2011-01-03 13:00:27 ----D---- C:\Program Files\Movie Maker
2011-01-03 12:58:07 ----D---- C:\WINDOWS\system32\Restore
2011-01-03 12:58:06 ----D---- C:\WINDOWS\system32\npp
2011-01-03 12:58:05 ----D---- C:\WINDOWS\msagent
2011-01-03 12:58:03 ----D---- C:\WINDOWS\srchasst
2011-01-03 12:58:02 ----D---- C:\Program Files\NetMeeting
2011-01-03 12:58:00 ----D---- C:\WINDOWS\system32\Com
2011-01-03 12:57:58 ----D---- C:\Program Files\Windows Media Player
2011-01-03 12:57:57 ----D---- C:\Program Files\Windows NT
2011-01-03 12:57:57 ----D---- C:\Program Files\Outlook Express
2011-01-03 12:57:53 ----D---- C:\Program Files\Common Files\System
2011-01-03 12:57:30 ----D---- C:\WINDOWS\system32\oobe
2011-01-03 12:57:28 ----D---- C:\WINDOWS\system
2011-01-03 12:53:39 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-03 11:20:26 ----D---- C:\WINDOWS\QUARANTINE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FirePM;McAfee HIP Component FirePM; C:\WINDOWS\system32\Drivers\FirePM.sys [2007-01-26 171008]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 FireHook;McAfee HIP Component FireHook; \??\C:\WINDOWS\system32\Drivers\Firehk5x.sys []
R1 FireTDI;McAfee HIP Component FireTDI; \??\C:\WINDOWS\system32\Drivers\FireTDI.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 mferkdk;VSCore mferkdk; \??\C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys []
R1 mfetdik;McAfee Inc.; C:\WINDOWS\system32\drivers\mfetdik.sys [2009-01-27 52168]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 tidnet;TID NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\tidnet.sys [2009-09-15 19200]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.4.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-04-02 21393]
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2007-09-24 12672]
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-05-29 12416]
R3 5U870UVC;Sony Visual Communication Camera VGP-VCC7; C:\WINDOWS\System32\Drivers\5U870UVCx86.sys [2007-09-24 70144]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-02-04 879624]
R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2007-01-31 127376]
R3 firelm01;firelm01; \??\C:\WINDOWS\system32\drivers\firelm01.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2007-09-24 990592]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2007-09-24 208256]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-09-24 41216]
R3 mfehidk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-01-27 177864]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-06-21 2208512]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-09-24 6844864]
R3 SNC;Zařízení pro ovládání přenosného počítače Sony; C:\WINDOWS\system32\DRIVERS\SonyNC.sys [2001-08-17 20752]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2007-09-24 31104]
R3 SPI;Programovatelné zařízení Sony pro ovládání V/V ; C:\WINDOWS\system32\DRIVERS\SonyPI.sys [2001-08-17 37040]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-09-24 1222840]
R3 TcUsb;TC USB Kernel Driver; C:\WINDOWS\System32\Drivers\tcusb.sys [2007-08-16 47120]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2007-09-24 812544]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2007-09-24 727808]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-09-24 259712]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-02-04 539512]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-02-04 156392]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-02-04 55352]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-02-04 74688]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 hidsys;hidsys; \??\C:\WINDOWS\system32\Drivers\hidsys.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\WINDOWS\system32\DRIVERS\ewdcsc.sys [2009-12-15 24448]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102528]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [2009-12-15 100736]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-04 5762208]
S3 mfeapfk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeapfk.sys [2009-01-27 65000]
S3 mfeavfk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeavfk.sys [2009-01-27 73512]
S3 mfebopk;McAfee Inc.; C:\WINDOWS\system32\drivers\mfebopk.sys [2009-01-27 34408]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AlertManager;McAfee Alert Manager; C:\Program Files\Network Associates\Alert Manager\amgrsrvc.exe [2004-08-18 176206]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-12-06 264800]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2007-04-03 1516584]
R2 enterceptAgent;McAfee Host Intrusion Prevention Service; C:\Program Files\McAfee\Host Intrusion Prevention\FireSvc.exe [2007-01-26 1138688]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-06-01 647168]
R2 McAfeeFramework;McAfee Framework Service; C:\Program Files\Network Associates\Common Framework\FrameworkService.exe [2009-03-10 103744]
R2 McTaskManager;McAfee Task Manager; C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe [2009-01-27 54608]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 Multi-user Cleanup Service;Multi-user Cleanup Service; C:\program files\notes\ntmulti.exe [2005-03-28 57393]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-09-24 155716]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-06-01 327680]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-06-01 987136]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2007-05-16 176128]
S2 McShield;McAfee McShield; C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe [2009-01-27 144704]
S2 NSEvtFwdSvc;NSEvtFwdSvc; C:\Program Files\Network Associates\McAfee PreScan\NSEvtFwdSvc.exe [2006-12-27 90112]
S2 WinVNC4;VNC Server Version 4; C:\Program Files\RealVNC\VNC4\WinVNC4.exe -service []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 bepprldr;BCL easyPDF SDK Loader; C:\Program Files\Common Files\BCL Technologies\easyPDF 4\bepprldr.exe [2006-04-19 86016]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.08 2011-01-22 17:24:02

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
602PRINT PACK-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7384377E-3E7C-4EB1-9408-028D6DD89745}\setup.exe" -l0x5 -REMOVE -removeonly
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_ActiveX.exe -maintain activex
Adobe Reader 8 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A81200000003}
Aktualizace systému Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Aktualizace zabezpečení produktu Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizace zabezpečení systému Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Balíček ovladače systému Windows - Nokia Modem (03/05/2008 3.7)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_635B28EFCFA9395123BB1C251595CB16129E2560\nokia_bluetooth.inf
Balíček ovladače systému Windows - Nokia Modem (03/13/2008 6.86.0.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_28F2EAC406838DA65AFF6C6886FE9FE96AEF5186\nokbtmdm.inf
Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.inf
Battery Care Function-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A23120C-CD83-4CE6-B451-C5C998052522}\setup.exe" -l0x9 -removeonly
Cisco Systems VPN Client 5.0.00.0340-->MsiExec.exe /X{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}
Důležitá aktualizace aplikace Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
EC500 Mobile Connect-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6A4D348F-AAC6-41ED-8E31-5FD71887563D}\Setup.exe" -l0x9 -removeonly
Free DWG Viewer 6.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8B4D43C-EAA0-4EEC-B93E-D4D012316286}\setup.exe" -l0x9 -removeonly
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
Hotfix for Microsoft .NET Framework 3.0 (KB932471)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {ECD292A0-0347-4244-8C24-5DBCE990FB40} /package {BAF78226-3200-4DB4-BE33-4D922A799840}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
Intel(R) TV Wizard-->C:\WINDOWS\system32\TVWizudlg.exe -uninstall
K-Lite Codec Pack 2.89 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lotus Notes 6.5.4 cs-->MsiExec.exe /I{9E06B564-A3FA-47da-B6F8-8B6448A289B9}
McAfee Agent-->MsiExec.exe /X{F2969393-2D4D-4977-8166-B1251B08EF12}
McAfee Alert Manager-->MsiExec.exe /I{608C063B-8EF7-4669-8923-49C3338BF154}
McAfee AntiSpyware Enterprise Module-->"C:\Program Files\McAfee\VirusScan Enterprise\scan32.exe" /UninstallMAS
McAfee Host Intrusion Prevention-->"C:\Program Files\McAfee\Host Intrusion Prevention\HipManage.exe" -rm -confirm -removeonly
McAfee PreScan-->MsiExec.exe /I{F0BF90E8-0928-4CED-8B92-D6D43159D4F8}
McAfee VirusScan Enterprise-->MsiExec.exe /I{35C03C04-3F1F-42C2-A989-A757EE691F65}
mCore-->MsiExec.exe /I{E81667C6-2856-46D6-ABEA-6A2F42166779}
mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{A2C9CD1B-2551-3AED-B244-6698FB929FA6}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Czech Language Pack-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 Czech Language Pack\setup.exe
Microsoft .NET Framework 3.0 Czech Language Pack-->MsiExec.exe /X{FB09515C-8E3E-4E0F-A1F2-032F38DEC185}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{546C143E-68DC-314D-97BC-1E454E3BA429}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Antimalware Service CS-CZ Language Pack-->MsiExec.exe /X{F6197679-051D-4E3E-9757-4D5CDA6D658B}
Microsoft Antimalware-->MsiExec.exe /X{774088D4-0777-4D78-904D-E435B318F5D2}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft Office Standard Edition 2003-->MsiExec.exe /I{90120405-6000-11D3-8CFE-0150048383C9}
Microsoft Security Client CS-CZ Language Pack-->MsiExec.exe /I{859B9BCA-5376-4566-9F88-C6C9DAA7A925}
Microsoft Security Client-->MsiExec.exe /I{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}
Microsoft Security Essentials-->C:\Program Files\Microsoft Security Client\Setup.exe /x
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
mWlsSafe-->MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}
Nero 6 Enterprise Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Nokia Connectivity Cable Driver-->MsiExec.exe /X{4F1DCA42-2030-437C-A94E-736692A499C1}
Nokia PC Suite-->C:\Documents and Settings\All Users\Data aplikací\Installations\{9C05FA75-0337-4523-AA57-9D3511018887}\Nokia_PC_Suite_rel_6_86_9_3_cze_web.exe
Nokia PC Suite-->MsiExec.exe /I{9C05FA75-0337-4523-AA57-9D3511018887}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
O2-->"C:\Program Files\O2\O2CZ\Uninstall.exe"
Oprava hotfix aplikace Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
PC Connectivity Solution-->MsiExec.exe /I{AC599724-5755-48C1-ABE7-ABB857652930}
PowerArchiver-->C:\Program Files\PowerArchiver\UNINST.EXE
Protector Suite QL 5.6-->MsiExec.exe /I{A2289997-10A3-48F2-AA03-99180D761661}
SAFEQSetup-->MsiExec.exe /X{FC07793E-C4D1-4BED-9579-378FC7CDEA72}
Setting Utility Series-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59452470-A902-477F-9338-9B88101681BD}\setup.exe" -l0x9 UNINSTALL -removeonly
SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x5 -remove -removeonly
Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2C06&SUBSYS_104D1700\HXFSETUP.EXE -U -ISnZ17005.inf
Software Intel(R) PROSet/Wireless-->C:\WINDOWS\Installer\iProInst.exe
Sony Utilities DLL-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF3D45BB-2260-4008-88EA-492E7744A9DF}\setup.exe" -l0x9 -removeonly
Total Commander (Remove or Repair)-->C:\Program Files\totalcmd\tcuninst.exe
VAIO Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC37C108-821D-4EDE-8F40-D5B497586805}\Setup.exe" -l0x9
VAIO Event Service-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}\setup.exe" -l0x9 -removeonly
VAIO HDD Protection-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C518C7BF-A345-4019-815B-FFDF32EBCAD9}\setup.exe" -l0x9 -removeonly
VAIO Power Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E319E96-ED8E-4B01-9775-C521A1869A25}\setup.exe" -l0x9 UNINSTALL -removeonly
Vallen JPegger-->"C:\Program Files\jegger\jpegger.exe" -ui -q
VNC Free Edition 4.1.2-->"C:\Program Files\RealVNC\VNC4\unins000.exe"
WIDCOMM Bluetooth Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation Language Pack (CSY)-->MsiExec.exe /X{AAB6D0F8-02B3-4E89-B24C-0BB153C21445}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Wireless Switch Setting Utility-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}\setup.exe" -l0x9 -removeonly
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

======Security center information======

AV: Microsoft Security Essentials (outdated)
AV: VirusScan Enterprise + AntiSpyware Enterprise (disabled)
FW: McAfee Host Intrusion Prevention Firewall (disabled)

======System event log======

Computer Name: GR00000PHA13507
Event Code: 18
Message: Instalace je připravena: Byly staženy následující aktualizace a jsou nyní připraveny k instalaci. Je naplánována úloha pro instalaci následujících aktualizací do tohoto počítače (plán: 23. června 2009 v 9:00):
- Aktualizace zabezpečení systému Windows XP (KB923561)
- Aktualizace zabezpečení systému Windows XP (KB954154)
- Aktualizace zabezpečení systému Windows XP (KB955069)
- Aktualizace zabezpečení systému Windows XP (KB958644)
- Aktualizace zabezpečení systému Windows XP (KB954600)
- Aktualizace zabezpečení aplikace Access Snapshot Viewer 2003 (KB955439)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB921598)
- Aktualizace filtru nevyžádané pošty v aplikaci Microsoft Office Outlook 2003 (KB969376)
- Aktualizace zabezpečení aplikace Outlook Express pro systém Windows XP (KB951066)
- Kumulativní aktualizace zabezpečení pro funkci ActiveX Killbits pro systém Windows XP (KB950760)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB951535)
- Aktualizace systému Windows XP (KB952287)
- Aktualizace zabezpečení systému Windows XP (KB957097)

Record Number: 5122
Source Name: Windows Update Agent
Time Written: 20090622110143.000000+120
Event Type: Informace
User:

Computer Name: GR00000PHA13507
Event Code: 18
Message: Instalace je připravena: Byly staženy následující aktualizace a jsou nyní připraveny k instalaci. Je naplánována úloha pro instalaci následujících aktualizací do tohoto počítače (plán: 23. června 2009 v 9:00):
- Aktualizace zabezpečení systému Windows XP (KB923561)
- Aktualizace zabezpečení systému Windows XP (KB954154)
- Aktualizace zabezpečení systému Windows XP (KB955069)
- Aktualizace zabezpečení systému Windows XP (KB958644)
- Aktualizace zabezpečení systému Windows XP (KB954600)
- Aktualizace zabezpečení aplikace Access Snapshot Viewer 2003 (KB955439)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB921598)
- Aktualizace filtru nevyžádané pošty v aplikaci Microsoft Office Outlook 2003 (KB969376)
- Aktualizace zabezpečení aplikace Outlook Express pro systém Windows XP (KB951066)
- Kumulativní aktualizace zabezpečení pro funkci ActiveX Killbits pro systém Windows XP (KB950760)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB951535)
- Aktualizace zabezpečení systému Windows XP (KB957097)

Record Number: 5121
Source Name: Windows Update Agent
Time Written: 20090622110143.000000+120
Event Type: Informace
User:

Computer Name: GR00000PHA13507
Event Code: 18
Message: Instalace je připravena: Byly staženy následující aktualizace a jsou nyní připraveny k instalaci. Je naplánována úloha pro instalaci následujících aktualizací do tohoto počítače (plán: 23. června 2009 v 9:00):
- Aktualizace zabezpečení systému Windows XP (KB923561)
- Aktualizace zabezpečení systému Windows XP (KB954154)
- Aktualizace zabezpečení systému Windows XP (KB955069)
- Aktualizace zabezpečení systému Windows XP (KB958644)
- Aktualizace zabezpečení systému Windows XP (KB954600)
- Aktualizace zabezpečení aplikace Access Snapshot Viewer 2003 (KB955439)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB921598)
- Aktualizace filtru nevyžádané pošty v aplikaci Microsoft Office Outlook 2003 (KB969376)
- Aktualizace zabezpečení aplikace Outlook Express pro systém Windows XP (KB951066)
- Kumulativní aktualizace zabezpečení pro funkci ActiveX Killbits pro systém Windows XP (KB950760)
- Aktualizace zabezpečení systému Windows XP (KB957097)

Record Number: 5120
Source Name: Windows Update Agent
Time Written: 20090622110143.000000+120
Event Type: Informace
User:

Computer Name: GR00000PHA13507
Event Code: 18
Message: Instalace je připravena: Byly staženy následující aktualizace a jsou nyní připraveny k instalaci. Je naplánována úloha pro instalaci následujících aktualizací do tohoto počítače (plán: 23. června 2009 v 9:00):
- Aktualizace zabezpečení systému Windows XP (KB923561)
- Aktualizace zabezpečení systému Windows XP (KB954154)
- Aktualizace zabezpečení systému Windows XP (KB955069)
- Aktualizace zabezpečení systému Windows XP (KB958644)
- Aktualizace zabezpečení systému Windows XP (KB954600)
- Aktualizace zabezpečení aplikace Access Snapshot Viewer 2003 (KB955439)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB921598)
- Aktualizace filtru nevyžádané pošty v aplikaci Microsoft Office Outlook 2003 (KB969376)
- Aktualizace zabezpečení aplikace Outlook Express pro systém Windows XP (KB951066)
- Aktualizace zabezpečení systému Windows XP (KB957097)

Record Number: 5119
Source Name: Windows Update Agent
Time Written: 20090622110143.000000+120
Event Type: Informace
User:

Computer Name: GR00000PHA13507
Event Code: 18
Message: Instalace je připravena: Byly staženy následující aktualizace a jsou nyní připraveny k instalaci. Je naplánována úloha pro instalaci následujících aktualizací do tohoto počítače (plán: 23. června 2009 v 9:00):
- Aktualizace zabezpečení systému Windows XP (KB923561)
- Aktualizace zabezpečení systému Windows XP (KB954154)
- Aktualizace zabezpečení systému Windows XP (KB955069)
- Aktualizace zabezpečení systému Windows XP (KB958644)
- Aktualizace zabezpečení systému Windows XP (KB954600)
- Aktualizace zabezpečení aplikace Access Snapshot Viewer 2003 (KB955439)
- Aktualizace zabezpečení sady Microsoft Office 2003 (KB921598)
- Aktualizace filtru nevyžádané pošty v aplikaci Microsoft Office Outlook 2003 (KB969376)
- Aktualizace zabezpečení systému Windows XP (KB957097)

Record Number: 5118
Source Name: Windows Update Agent
Time Written: 20090622110143.000000+120
Event Type: Informace
User:

=====Application event log=====

Computer Name: GR00000PHA13507
Event Code: 5000
Message: Služba McShield byla spuština.

Verze modulu: 5400.1158

Verze souboru DAT: 6230.0000

Poeet signatur viru v souboru EXTRA.DAT: None

Názvy ohrožení, které soubor EXTRA.DAT muže zjistit: None

Record Number: 3320
Source Name: McLogEvent
Time Written: 20110118232719.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: GR00000PHA13507
Event Code: 11728
Message: Produkt: Microsoft Office Standard Edition 2003 - Konfigurace byla úspěšně dokončena.

Record Number: 3319
Source Name: MsiInstaller
Time Written: 20110117132052.000000+060
Event Type: Informace
User: GR00000PHA13507\Zaluda

Computer Name: GR00000PHA13507
Event Code: 1004
Message: Při rozpoznávání produktu {90120405-6000-11D3-8CFE-0150048383C9}, funkce OfficeUserData a součásti {4A31E933-6F67-11D2-AAA2-00A0C90F57B0} došlo k chybě. Prostředek HKEY_CURRENT_USER\Software\ODBC\ODBC.INI\Databáze MS Access\ neexistuje.

Record Number: 3318
Source Name: MsiInstaller
Time Written: 20110117132028.000000+060
Event Type: Upozornění
User: GR00000PHA13507\Zaluda

Computer Name: GR00000PHA13507
Event Code: 5000
Message: Služba McShield byla spuština.

Verze modulu: 5400.1158

Verze souboru DAT: 6228.0000

Poeet signatur viru v souboru EXTRA.DAT: None

Názvy ohrožení, které soubor EXTRA.DAT muže zjistit: None

Record Number: 3317
Source Name: McLogEvent
Time Written: 20110116201131.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: GR00000PHA13507
Event Code: 5000
Message: Služba McShield byla spuština.

Verze modulu: 5400.1158

Verze souboru DAT: 6227.0000

Poeet signatur viru v souboru EXTRA.DAT: None

Názvy ohrožení, které soubor EXTRA.DAT muže zjistit: None

Record Number: 3316
Source Name: McLogEvent
Time Written: 20110115174857.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Intel\Wireless\Bin\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"VSEDEFLOGDIR"=C:\Documents and Settings\All Users\Data aplikací\McAfee\DesktopProtection
"DEFLOGDIR"=C:\Documents and Settings\All Users\Data aplikací\McAfee\DesktopProtection

-----------------EOF-----------------

#5 Příspěvek od **vyosek** » 22 led 2011 18:09

Zustante v nouzovem rezimu s praci v siti

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) (viz muj podpis)

Provedte aktualizaci - treti zalozka
Provedte uplny sken - nic nemazte
MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Junfan · #6 Příspěvek od **Junfan** » 22 led 2011 18:57

scenuje... Moment... Jen opet v beznem rezumu... Nouzovej nejde

#7 Příspěvek od **vyosek** » 22 led 2011 18:59

Ok, pockam na log

Junfan · #8 Příspěvek od **Junfan** » 22 led 2011 19:06

problem je ze pri kontrolu ten vir vypne kontrolu... schodi okna

#9 Příspěvek od **vyosek** » 22 led 2011 19:12

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich
motji píše: Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr

Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Ted nerestartujte PC - prisli byste o ucinek RKillu

Spustte Rychly sken v MBAMu - log pred mazanim sem

Junfan · #10 Příspěvek od **Junfan** » 22 led 2011 19:18

nereaguje... Ani spravce uloh nejde

Junfan · #11 Příspěvek od **Junfan** » 22 led 2011 19:24

Posledni odkaz nefunguje Rkill PIF:

#12 Příspěvek od **vyosek** » 22 led 2011 19:36

Proc se nemuzete dostat do nouzoveho rezimu

Junfan · #13 Příspěvek od **Junfan** » 22 led 2011 19:49

Už se mi podařilo se dostat do nouzového režimu, ale VIR se spustil i tam.. Název okna je: "Windows Security & Control"
scan zatím běží, tak uvidíme

#14 Příspěvek od **vyosek** » 22 led 2011 19:50

V nouzaku kdyztak aplikujte RKill a az pote spustte MBAM pokud by ho ted havet blokla...

Junfan · #15 Příspěvek od **Junfan** » 22 led 2011 19:53

To jsem zkoušel hned při startu a neblokla... Všechny tři jsem zkusil
tak a zas nic... VIR zastavil scan a zavřel okno

VIRY.CZ

Pro Vyosek

Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek

Re: Pro Vyosek