Prosím o preventívku logu z HijackThis.......

[fildo_pb]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:07:04, on 4.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\ICQ7.0\ICQ.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\JetAudio\JetAudio.exe
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Opera 10.50 Beta\opera.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.0\ICQ.exe" silent loginmode=4
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Cadence License Manager - GLOBEtrotter Software Inc. - C:\OrCAD licence\lmgrd.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

--
End of file - 3476 bytes

[fildo_pb]

Logfile of random's system information tool 1.06 (written by random/random)
Run by XXX at 2010-03-04 19:10:01
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 13 GB (32%) free of 39 GB
Total RAM: 1023 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:10:06, on 4.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\ICQ7.0\ICQ.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\JetAudio\JetAudio.exe
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Opera 10.50 Beta\opera.exe
C:\Program Files\Windows NT\Accessories\WORDPAD.EXE
F:\Install program\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\XXX.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.0\ICQ.exe" silent loginmode=4
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Cadence License Manager - GLOBEtrotter Software Inc. - C:\OrCAD licence\lmgrd.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

--
End of file - 3561 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-09-16 69632]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-09-11 2054360]
"CHotkey"=C:\WINDOWS\mHotkey.exe [2004-12-08 550912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-10-16 3134896]
"ICQ"=C:\Program Files\ICQ7.0\ICQ.exe [2010-02-11 133368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-09-12 335872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.0\ICQ.exe [2010-02-11 133368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrnStatusMX]
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [2007-08-29 1077248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2006-10-23 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Synchronizer.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\ADOBEC~1.EXE [2006-10-23 734872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^ScanPanel.lnk]
C:\SCANPA~1\ScnPanel.exe [2009-11-21 1933312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\PROGRA~1\WINDOW~4\WINDOW~1.EXE [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-02-21 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
"NoActiveDesktop"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\OrCAD\OrCAD_10.3\tools\bin\cdsNameServer.exe"="C:\OrCAD\OrCAD_10.3\tools\bin\cdsNameServer.exe:*:Enabled:cdsNameServer"
"C:\OrCAD\OrCAD_10.3\tools\bin\cdsMsgServer.exe"="C:\OrCAD\OrCAD_10.3\tools\bin\cdsMsgServer.exe:*:Enabled:cdsMsgServer"
"C:\Program Files\Opera 10.50 Beta\opera.exe"="C:\Program Files\Opera 10.50 Beta\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ff7e6794-1413-11df-af3d-00110997c371}]
shell\AutoRun\command - 62.exe
shell\open\command - 62.exe


======File associations======

.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 3 months======

2010-03-04 19:10:01 ----D---- C:\rsit
2010-03-04 16:31:37 ----D---- C:\Program Files\Trend Micro
2010-03-03 20:11:28 ----D---- C:\Program Files\Common Files\Autodesk
2010-03-03 20:08:02 ----D---- C:\Program Files\DWG TrueView 2007
2010-03-03 20:07:15 ----D---- C:\Program Files\Microsoft WSE
2010-03-03 19:25:51 ----D---- C:\Program Files\Autodesk
2010-03-03 19:25:19 ----D---- C:\WINDOWS\LastGood
2010-03-03 19:25:16 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-03-03 18:04:12 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-03-03 18:04:12 ----D---- C:\Program Files\AutoCAD 2008
2010-03-03 18:04:12 ----D---- C:\Documents and Settings\XXX\Data aplikací\Autodesk
2010-03-03 18:04:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Autodesk
2010-03-02 17:02:46 ----A---- C:\WINDOWS\is-O33V2.exe
2010-03-01 16:07:05 ----D---- C:\Program Files\Ask.com
2010-03-01 16:06:39 ----D---- C:\Program Files\uTorrent
2010-03-01 16:05:54 ----D---- C:\Documents and Settings\XXX\Data aplikací\uTorrent
2010-02-28 22:15:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Office Genuine Advantage
2010-02-28 18:37:17 ----D---- C:\DOWNLOAD
2010-02-28 17:46:17 ----D---- C:\Program Files\Zone Labs
2010-02-28 17:46:00 ----D---- C:\WINDOWS\Internet Logs
2010-02-28 16:30:47 ----D---- C:\Program Files\Opera 10.50 Beta
2010-02-28 14:41:19 ----SHD---- C:\RECYCLER
2010-02-28 14:24:55 ----A---- C:\Boot.bak
2010-02-28 14:24:48 ----RASHD---- C:\cmdcons
2010-02-27 17:56:59 ----D---- C:\Documents and Settings\XXX\Data aplikací\FormEdik
2010-02-27 17:56:48 ----D---- C:\Program Files\FormEdik
2010-02-24 12:54:10 ----D---- C:\Program Files\QIP
2010-02-24 12:49:34 ----D---- C:\Documents and Settings\XXX\Data aplikací\QIP
2010-02-24 12:48:32 ----D---- C:\Program Files\QIP Infium
2010-02-24 12:32:28 ----D---- C:\Program Files\ICQ7.0
2010-02-22 00:11:33 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-02-22 00:06:12 ----D---- C:\totalcmd
2010-02-22 00:06:12 ----A---- C:\WINDOWS\wincmd.ini
2010-02-21 18:44:11 ----D---- C:\Documents and Settings\XXX\Data aplikací\TeraCopy
2010-02-21 18:43:56 ----D---- C:\Program Files\TeraCopy
2010-02-16 20:31:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
2010-02-14 20:53:08 ----D---- C:\WINDOWS\system32\winnt
2010-02-14 20:53:08 ----D---- C:\WINDOWS\system32\win9598
2010-02-14 20:53:08 ----A---- C:\WINDOWS\system32\ociw32.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\sscsdk32.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\ntwdblib.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\msjet35.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\mitmin30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\mitmdl30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\midlg30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfwpg60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfwmf60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lftif60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lftga60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpsd60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpng60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpct60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfmsp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\orant71.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\mxintl30.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\midlin30.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfpcx60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfmac60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lffax60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfeps60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfcmp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfbmp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crutl13.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crsyb13.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\cror813.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\cror713.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crgup13.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crflt13.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crdb213.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crbas13.dll
2010-02-14 20:52:41 ----D---- C:\Program Files\Common Files\Orcad
2010-02-14 20:51:30 ----D---- C:\WINDOWS\crystal
2010-02-14 20:49:10 ----D---- C:\PSD_Data
2010-02-14 20:48:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macrovision
2010-02-14 20:48:01 ----A---- C:\WINDOWS\system32\lmgr326b.dll
2010-02-13 19:46:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-02-13 19:45:54 ----D---- C:\Program Files\Common Files\Java
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\javaws.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\javaw.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\java.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-02-13 19:45:07 ----D---- C:\Program Files\Java
2010-02-13 19:44:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\Sun
2010-02-11 17:12:42 ----D---- C:\allegro
2010-02-11 17:06:35 ----A---- C:\WINDOWS\capture.INI
2010-02-11 16:32:51 ----D---- C:\OrCad Kniznice
2010-02-11 16:32:51 ----D---- C:\FLEXLM
2010-02-11 16:32:50 ----D---- C:\OrCAD licence
2010-02-11 16:15:27 ----D---- C:\OrCAD
2010-02-08 19:43:00 ----D---- C:\WINDOWS\system32\languages
2010-02-08 19:36:39 ----A---- C:\WINDOWS\iun6002.exe
2010-02-08 19:36:30 ----D---- C:\Program Files\Codec Pack - All In 1
2010-02-07 21:05:53 ----D---- C:\Program Files\MCS Electronics
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\wd_utils.dll
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\msxml4a.dll
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\msvcr71.dll
2010-02-07 12:54:35 ----A---- C:\WINDOWS\system32\BCGCBPRO731.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\vc6-re200l.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\RWUXThemeS.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\msvcp71.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\MFC71.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\atl71.dll
2010-02-07 11:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Atmel
2010-02-07 11:07:15 ----A---- C:\WINDOWS\basavr.ini
2010-02-07 11:03:08 ----A---- C:\WINDOWS\system32\wdapi811.dll
2010-02-07 11:03:08 ----A---- C:\WINDOWS\system32\wdapi1001.dll
2010-02-07 11:02:14 ----A---- C:\WINDOWS\system32\wdapi1010.dll
2010-02-07 11:02:14 ----A---- C:\WINDOWS\system32\wdapi1002.dll
2010-02-07 11:02:03 ----D---- C:\Program Files\Atmel
2010-02-07 10:12:05 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-02-07 00:22:10 ----A---- C:\WINDOWS\ODBC.INI
2010-02-07 00:22:00 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-02-07 00:20:31 ----D---- C:\Program Files\Common Files\DESIGNER
2010-02-07 00:20:16 ----D---- C:\WINDOWS\SHELLNEW
2010-02-07 00:20:07 ----D---- C:\Program Files\Microsoft.NET
2010-02-07 00:20:07 ----D---- C:\Program Files\Microsoft Office
2010-02-07 00:19:42 ----D---- C:\Program Files\PhotoFiltre
2010-02-07 00:17:45 ----RD---- C:\MSOCache
2010-02-07 00:13:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\skypePM
2010-02-07 00:12:05 ----D---- C:\Documents and Settings\XXX\Data aplikací\Skype
2010-02-07 00:11:57 ----D---- C:\Program Files\Common Files\Skype
2010-02-07 00:11:50 ----RD---- C:\Program Files\Skype
2010-02-07 00:11:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-02-06 23:58:13 ----D---- C:\Program Files\Windows Media Connect 2
2010-02-06 23:57:57 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-02-06 23:27:31 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-02-06 23:22:43 ----D---- C:\WINDOWS\system32\LogFiles
2010-02-06 23:22:37 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-02-06 23:18:06 ----D---- C:\Documents and Settings\XXX\Data aplikací\COWON
2010-02-06 23:15:38 ----D---- C:\Program Files\MSXML 4.0
2010-02-06 23:09:06 ----A---- C:\WINDOWS\system32\ZTAG.DLL
2010-02-06 23:09:06 ----A---- C:\WINDOWS\system32\ZSPOOL.DLL
2010-02-06 23:09:04 ----A---- C:\WINDOWS\system32\ZIMF.DLL
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPMCoSetup.dll
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPIPMXRes.dll
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPIPMX.dll
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215LM.DLL
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215LI.DLL
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215EWS.dll
2010-02-06 23:07:35 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-06 23:06:15 ----D---- C:\Program Files\Hewlett-Packard
2010-02-06 23:06:01 ----D---- C:\Program Files\HP
2010-02-06 23:06:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\HPSSUPPLY
2010-02-06 23:04:55 ----D---- C:\Documents and Settings\XXX\Data aplikací\Hewlett-Packard
2010-02-06 23:04:20 ----D---- C:\Documents and Settings\XXX\Data aplikací\HP
2010-02-06 23:00:42 ----SHD---- C:\WINDOWS\ftpcache
2010-02-06 22:59:37 ----D---- C:\Program Files\Common Files\COWON
2010-02-06 22:59:33 ----D---- C:\Program Files\JetAudio
2010-02-06 22:48:35 ----D---- C:\Program Files\Crystal Decisions
2010-02-06 22:48:35 ----D---- C:\Program Files\Common Files\Crystal Decisions
2010-02-06 22:48:35 ----D---- C:\ALFA
2010-02-06 22:48:33 ----A---- C:\WINDOWS\system32\ANGELVDD.DLL
2010-02-06 22:46:35 ----D---- C:\Program Files\AVIConverter
2010-02-06 22:46:13 ----D---- C:\AlfaIns
2010-02-06 22:37:08 ----A---- C:\WINDOWS\system32\PAStiSvc.exe
2010-02-06 22:36:34 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-02-06 22:35:51 ----D---- C:\WINDOWS\Album
2010-02-06 22:35:49 ----D---- C:\WINDOWS\PixArt
2010-02-06 22:35:49 ----D---- C:\Program Files\VideoCAM GE111
2010-02-06 22:35:49 ----D---- C:\Program Files\Common Files\PCCamera
2010-02-06 22:35:20 ----D---- C:\WINDOWS\Downloaded Installations
2010-02-06 22:33:51 ----A---- C:\WINDOWS\6816BadPixelInfo.txt
2010-02-06 22:15:58 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2010-02-06 22:10:03 ----D---- C:\Documents and Settings\XXX\Data aplikací\Windows Search
2010-02-06 21:30:39 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-02-06 21:30:21 ----D---- C:\Documents and Settings\XXX\Data aplikací\Windows Desktop Search
2010-02-06 21:29:32 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-02-06 21:29:32 ----D---- C:\Program Files\Windows Desktop Search
2010-02-06 21:29:10 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-02-06 21:25:28 ----D---- C:\WINDOWS\system32\URTTEMP
2010-02-06 21:20:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-02-06 21:03:42 ----D---- C:\WINDOWS\pss
2010-02-05 16:36:40 ----A---- C:\WINDOWS\stophid.exe
2010-02-05 16:36:39 ----A---- C:\WINDOWS\PIC.dll
2010-02-05 16:36:39 ----A---- C:\WINDOWS\mHotkey.exe
2010-02-05 16:36:38 ----A---- C:\WINDOWS\HKNTDLL.dll
2010-02-05 16:36:38 ----A---- C:\WINDOWS\HIDMNT.dll
2010-02-05 16:35:48 ----D---- C:\Documents and Settings\XXX\Data aplikací\InstallShield
2010-02-05 16:35:26 ----A---- C:\WINDOWS\ScnPanel.ini
2010-02-05 16:35:26 ----A---- C:\WINDOWS\Ausba4.ini
2010-02-05 16:35:26 ----A---- C:\WINDOWS\Astra48U.ini
2010-02-05 16:35:25 ----A---- C:\WINDOWS\system32\Remove4009.exe
2010-02-05 16:35:06 ----D---- C:\ScanPanel
2010-02-05 16:35:06 ----A---- C:\WINDOWS\system32\48UMicro.dll
2010-02-05 16:35:05 ----N---- C:\WINDOWS\Ausba4.dll
2010-02-05 16:35:05 ----A---- C:\WINDOWS\GetKey.dll
2010-02-05 16:35:05 ----A---- C:\WINDOWS\A4.dll
2010-02-05 16:35:01 ----N---- C:\WINDOWS\Astra48U142.ini
2010-02-05 16:30:35 ----D---- C:\Documents and Settings\XXX\Data aplikací\IDM
2010-02-05 16:30:25 ----D---- C:\Documents and Settings\XXX\Data aplikací\DMCache
2010-02-05 16:30:18 ----D---- C:\Program Files\Internet Download Manager
2010-02-05 16:29:49 ----D---- C:\WINDOWS\ie8updates
2010-02-05 16:28:20 ----D---- C:\WINDOWS\WBEM
2010-02-05 16:25:33 ----HDC---- C:\WINDOWS\ie8
2010-02-05 16:24:14 ----D---- C:\Documents and Settings\XXX\Data aplikací\ESET
2010-02-05 16:21:28 ----D---- C:\Program Files\ESET
2010-02-05 16:21:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-02-05 16:20:36 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-02-05 16:20:21 ----N---- C:\WINDOWS\system32\ChCfg.exe
2010-02-05 16:20:21 ----A---- C:\WINDOWS\system32\RTLCPAPI.dll
2010-02-05 16:20:21 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-02-05 16:20:19 ----A---- C:\WINDOWS\system32\RTLCPL.EXE
2010-02-05 16:20:09 ----N---- C:\WINDOWS\alcupd.exe
2010-02-05 16:20:09 ----N---- C:\WINDOWS\alcrmv.exe
2010-02-05 16:18:30 ----D---- C:\Program Files\Intel
2010-02-05 16:15:08 ----D---- C:\Program Files\WinRAR
2010-02-05 16:10:41 ----A---- C:\WINDOWS\system32\MRT.exe
2010-02-05 16:09:41 ----D---- C:\Program Files\CCleaner
2010-02-05 15:45:46 ----D---- C:\WINDOWS\Prefetch
2010-02-04 22:16:42 ----D---- C:\WINDOWS\system32\PreInstall
2010-02-04 22:16:40 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-04 22:10:06 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\credssp.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\azroles.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napstat.exe
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mssha.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\setupn.exe
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qutil.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qagent.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\onex.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-02-04 22:09:58 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-02-04 22:09:57 ----D---- C:\WINDOWS\system32\cs
2010-02-04 22:09:57 ----D---- C:\WINDOWS\system32\bits
2010-02-04 22:09:57 ----D---- C:\WINDOWS\l2schemas
2010-02-04 22:05:46 ----D---- C:\WINDOWS\network diagnostic
2010-02-04 22:04:34 ----A---- C:\WINDOWS\004975_.tmp
2010-02-04 21:51:54 ----N---- C:\WINDOWS\system32\spmsg2.dll
2010-02-04 21:51:49 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-02-04 21:51:32 ----D---- C:\WINDOWS\system32\cs-CZ
2010-02-04 21:49:12 ----D---- C:\WINDOWS\system32\XPSViewer
2010-02-04 21:49:08 ----D---- C:\Program Files\MSBuild
2010-02-04 21:49:05 ----D---- C:\WINDOWS\system32\en-US
2010-02-04 21:48:59 ----D---- C:\Program Files\Reference Assemblies
2010-02-04 21:48:07 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-02-04 21:48:06 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-04 21:48:06 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-04 21:47:22 ----RSD---- C:\WINDOWS\assembly
2010-02-04 21:46:41 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-04 21:45:21 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2010-02-04 21:45:15 ----D---- C:\Program Files\MSXML 6.0
2010-02-04 21:01:46 ----D---- C:\Documents and Settings\XXX\Data aplikací\Macromedia
2010-02-04 21:01:33 ----D---- C:\Documents and Settings\XXX\Data aplikací\Opera
2010-02-04 21:01:10 ----D---- C:\Program Files\Opera
2010-02-04 21:00:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\Adobe
2010-02-04 20:59:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-02-04 20:59:38 ----D---- C:\Program Files\Common Files\Adobe
2010-02-04 20:59:38 ----D---- C:\Program Files\Adobe
2010-02-04 20:51:47 ----D---- C:\Documents and Settings\XXX\Data aplikací\ICQ
2010-02-04 20:45:02 ----D---- C:\Documents and Settings\XXX\Data aplikací\Help
2010-02-04 20:44:57 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-02-04 20:43:22 ----D---- C:\WINDOWS\SoftwareDistribution
2010-02-04 20:41:50 ----SD---- C:\WINDOWS\system32\Microsoft
2010-02-04 20:36:53 ----N---- C:\WINDOWS\system32\proxycfg.exe
2010-02-04 20:36:53 ----N---- C:\WINDOWS\system32\logman.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\dxdiagn.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\d3d9.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\btpanui.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bthserv.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bthci.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\blastcln.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\auditusr.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-02-04 20:36:47 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2010-02-04 20:36:47 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdno1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinben.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_qcx.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_qc.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_32.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir41_qcx.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir41_qc.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fwcfg.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fsquirt.exe
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fltmc.exe
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fltlib.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-02-04 20:36:46 ----A---- C:\WINDOWS\system32\httpapi.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\xpob2res.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\p2p.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mspmsnsv.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\msdadiag.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\MP4SDMOD.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\MP43DMOD.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\kbdukx.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\w3ssl.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\twext.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\smbinst.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slserv.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slgen.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\powercfg.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2psvc.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2010-02-04 20:36:44 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2010-02-04 20:36:44 ----A---- C:\WINDOWS\system32\strmfilt.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\WMSPDMOE.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmspdmod.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmsdmoe2.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmpdxm.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmpasf.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmp.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmerror.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\winshfhc.dll
2010-02-04 20:36:43 ----A---- C:\WINDOWS\system32\wmidx.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\xmlprov.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wuaueng1.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wuauclt1.exe
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wshbth.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wscntfy.exe
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wmvdmoe2.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\slrundll.exe
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wups.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wscsvc.dll
2010-02-04 20:36:41 ----D---- C:\WINDOWS\peernet
2010-02-04 20:36:40 ----D---- C:\WINDOWS\provisioning
2010-02-04 20:35:20 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-04 20:32:24 ----A---- C:\WINDOWS\002021_.tmp
2010-02-04 20:32:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-02-04 20:31:58 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-02-04 20:30:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-04 20:30:14 ----D---- C:\WINDOWS\EHome
2010-02-04 20:26:34 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2010-02-04 20:26:32 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2010-02-04 20:26:14 ----D---- C:\Program Files\ATI Technologies
2010-02-04 20:26:11 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-04 20:25:36 ----D---- C:\Program Files\Common Files\InstallShield
2010-02-04 20:17:57 ----SHD---- C:\WINDOWS\Installer
2010-02-04 20:17:53 ----D---- C:\Documents and Settings\XXX\Data aplikací\Identities
2010-02-04 20:17:50 ----HD---- C:\Program Files\Uninstall Information
2010-02-04 20:17:45 ----ASH---- C:\Documents and Settings\XXX\Data aplikací\desktop.ini
2010-02-04 20:17:44 ----SD---- C:\Documents and Settings\XXX\Data aplikací\Microsoft
2010-02-04 20:16:45 ----A---- C:\WINDOWS\system32\wpa.bak
2010-02-04 20:05:09 ----A---- C:\WINDOWS\system32\h323log.txt
2010-02-04 19:58:03 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-02-04 19:56:51 ----A---- C:\WINDOWS\system32\usbui.dll
2010-02-04 19:55:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-04 19:55:48 ----D---- C:\Program Files\Common Files\ODBC
2010-02-04 19:55:48 ----A---- C:\WINDOWS\ODBCINST.INI
2010-02-04 19:55:45 ----RD---- C:\Program Files
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\irclass.dll
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-02-04 19:55:29 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-02-04 19:55:29 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-02-04 19:55:27 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-02-04 19:55:27 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-02-04 19:55:27 ----A---- C:\WINDOWS\system32\batt.dll
2010-02-04 19:55:27 ----A---- C:\WINDOWS\notepad.exe
2010-02-04 19:55:26 ----A---- C:\WINDOWS\system32\storprop.dll
2010-02-04 19:55:17 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-02-04 19:55:13 ----RA---- C:\WINDOWS\SET7.tmp
2010-02-04 19:55:10 ----RA---- C:\WINDOWS\SET3.tmp
2010-02-04 19:55:04 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-04 19:55:04 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-04 19:54:58 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-02-04 19:54:37 ----D---- C:\Documents and Settings
2010-02-04 19:53:59 ----RASH---- C:\boot.ini
2010-02-04 19:50:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-04 19:50:13 ----RSD---- C:\WINDOWS\Fonts
2010-02-04 19:50:13 ----RD---- C:\WINDOWS\Web
2010-02-04 19:50:13 ----HD---- C:\WINDOWS\inf
2010-02-04 19:50:13 ----D---- C:\WINDOWS\WinSxS
2010-02-04 19:50:13 ----D---- C:\WINDOWS\twain_32
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Temp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\wins
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\wbem
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\usmt
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\spool
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ShellExt
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\Setup
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ras
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\oobe
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\npp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\mui
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\inetsrv
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\IME
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\icsxml
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ias
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\export
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\drivers
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\dhcp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\config
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\3com_dmi
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\3076
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\2052
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1054
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1042
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1041
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1037
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1033
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1031
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1029
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1028
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1025
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system
2010-02-04 19:50:13 ----D---- C:\WINDOWS\security
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Resources
2010-02-04 19:50:13 ----D---- C:\WINDOWS\repair
2010-02-04 19:50:13 ----D---- C:\WINDOWS\mui
2010-02-04 19:50:13 ----D---- C:\WINDOWS\msapps
2010-02-04 19:50:13 ----D---- C:\WINDOWS\msagent
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Media
2010-02-04 19:50:13 ----D---- C:\WINDOWS\java
2010-02-04 19:50:13 ----D---- C:\WINDOWS\ime
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Help
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Driver Cache
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Debug
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Cursors
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Connection Wizard
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Config
2010-02-04 19:50:13 ----D---- C:\WINDOWS\AppPatch
2010-02-04 19:50:13 ----D---- C:\WINDOWS\addins
2010-02-04 19:50:13 ----D---- C:\WINDOWS
2010-02-04 19:15:20 ----SHD---- C:\System Volume Information
2010-02-04 19:15:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-04 19:12:12 ----D---- C:\WINDOWS\system32\xircom
2010-02-04 19:12:12 ----D---- C:\Program Files\xerox
2010-02-04 19:12:12 ----D---- C:\Program Files\microsoft frontpage
2010-02-04 19:12:02 ----A---- C:\WINDOWS\control.ini
2010-02-04 19:11:50 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-02-04 19:10:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-04 19:10:56 ----RD---- C:\WINDOWS\Offline Web Pages
2010-02-04 19:10:56 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-02-04 19:10:49 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-02-04 19:10:21 ----D---- C:\WINDOWS\system32\DirectX
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\atrace.dll
2010-02-04 19:09:49 ----A---- C:\WINDOWS\system32\desktop.ini
2010-02-04 19:09:49 ----A---- C:\WINDOWS\desktop.ini
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-02-04 19:09:40 ----A---- C:\WINDOWS\system32\acctres.dll
2010-02-04 19:09:39 ----D---- C:\Program Files\Common Files\Services
2010-02-04 19:09:38 ----A---- C:\WINDOWS\system32\inetres.dll
2010-02-04 19:09:34 ----SD---- C:\WINDOWS\Tasks
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\isign32.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-02-04 19:09:31 ----D---- C:\Program Files\Common Files\MSSoap
2010-02-04 19:09:26 ----D---- C:\WINDOWS\system32\Macromed
2010-02-04 19:09:26 ----D---- C:\WINDOWS\srchasst
2010-02-04 19:09:25 ----N---- C:\WINDOWS\system32\qmgr.dll
2010-02-04 19:09:25 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-02-04 19:09:24 ----D---- C:\Program Files\Movie Maker
2010-02-04 19:09:20 ----D---- C:\WINDOWS\PCHealth
2010-02-04 19:09:19 ----N---- C:\WINDOWS\system32\srsvc.dll
2010-02-04 19:09:19 ----D---- C:\WINDOWS\system32\Restore
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\srclient.dll
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\ils.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\msconf.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-02-04 19:09:16 ----D---- C:\Program Files\NetMeeting
2010-02-04 19:09:16 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-02-04 19:09:16 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-02-04 19:09:15 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-02-04 19:09:14 ----N---- C:\WINDOWS\system32\schedsvc.dll
2010-02-04 19:09:14 ----D---- C:\Program Files\Outlook Express
2010-02-04 19:09:14 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-02-04 19:09:14 ----A---- C:\WINDOWS\system32\mstask.dll
2010-02-04 19:09:11 ----D---- C:\Program Files\Common Files\System
2010-02-04 19:09:08 ----D---- C:\Program Files\Internet Explorer
2010-02-04 19:08:49 ----D---- C:\Program Files\ComPlus Applications
2010-02-04 19:08:47 ----A---- C:\WINDOWS\vbaddin.ini
2010-02-04 19:08:47 ----A---- C:\WINDOWS\vb.ini
2010-02-04 19:08:43 ----D---- C:\WINDOWS\Registration
2010-02-04 19:08:09 ----HD---- C:\Program Files\WindowsUpdate
2010-02-04 19:08:09 ----D---- C:\Program Files\Online Services
2010-02-04 19:08:07 ----D---- C:\Program Files\Windows Media Player
2010-02-04 19:08:00 ----D---- C:\Program Files\Messenger
2010-02-04 19:07:55 ----D---- C:\Program Files\MSN Gaming Zone
2010-02-04 19:07:55 ----A---- C:\WINDOWS\system32\write.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\hticons.dll
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avwav.dll
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-02-04 19:07:42 ----A---- C:\WINDOWS\system32\winchat.exe
2010-02-04 19:07:35 ----A---- C:\WINDOWS\system32\charmap.exe
2010-02-04 19:07:35 ----A---- C:\WINDOWS\system32\getuname.dll
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\winmine.exe
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\sol.exe
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\calc.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\tskill.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\reset.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\freecell.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tscon.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\shadow.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\regini.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msg.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\logoff.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\colbact.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\stclient.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comuid.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-02-04 19:07:27 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-02-04 19:07:27 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-02-04 19:07:15 ----D---- C:\Program Files\Windows NT
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-02-04 19:07:14 ----N---- C:\WINDOWS\system32\wuauclt.exe
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\spider.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-02-04 19:07:12 ----N---- C:\WINDOWS\system32\termsrv.dll
2010-02-04 19:07:12 ----D---- C:\WINDOWS\system32\MsDtc
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-02-04 19:07:11 ----D---- C:\WINDOWS\system32\Com
2010-02-04 19:07:11 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-02-04 19:07:11 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-02-04 19:07:08 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-12-22 06:09:51 ----N---- C:\WINDOWS\system32\ieencode.dll

======List of files/folders modified in the last 3 months======

2010-02-28 14:34:19 ----A---- C:\WINDOWS\system.ini
2010-02-22 19:34:24 ----A---- C:\WINDOWS\win.ini
2010-02-04 20:33:17 ----RASH---- C:\NTDETECT.COM
2009-12-22 06:09:53 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-12-21 20:08:42 ----N---- C:\WINDOWS\system32\wininet.dll
2009-12-21 20:08:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-12-21 20:08:41 ----N---- C:\WINDOWS\system32\occache.dll
2009-12-21 20:08:41 ----N---- C:\WINDOWS\system32\mshtml.dll
2009-12-21 20:08:38 ----N---- C:\WINDOWS\system32\jsproxy.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\msfeeds.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2009-12-21 20:08:37 ----N---- C:\WINDOWS\system32\iepeers.dll
2009-12-21 20:08:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-12-21 20:08:35 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2009-12-21 14:18:29 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2009-12-14 08:10:03 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-12-09 11:11:07 ----N---- C:\WINDOWS\system32\ntoskrnl.exe
2009-12-09 11:11:07 ----N---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-12-09 06:55:34 ----A---- C:\WINDOWS\system32\jscript.dll
2009-12-08 10:25:31 ----A---- C:\WINDOWS\system32\shlwapi.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-09-11 108792]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-09-11 55768]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-04-16 12032]
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2010-02-06 51072]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-09-11 116008]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-09-11 135048]
R2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-09-21 2278784]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-02-21 1505792]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-06-19 33096]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2003-04-16 12160]
R3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-13 70144]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WinDriver6;WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [2009-09-02 195424]
S2 TVicPort;TVicPort; C:\WINDOWS\system32\drivers\TVicPort.sys [2005-03-30 14544]
S3 catchme;catchme; \??\C:\DOCUME~1\FILIPS~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 rockusb;Driver for rockusb Device; C:\WINDOWS\system32\DRIVERS\rockusb.sys [2006-03-22 73984]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbser;USB-232 Emulation Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-02-21 405504]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-09-11 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-02-13 153376]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2003-09-12 114688]
S2 Cadence License Manager;Cadence License Manager; C:\OrCAD licence\lmgrd.exe [2002-08-09 608768]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-03-03 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-09-11 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

Dobrý večer
Vy jste před pár dny použil combofix? Našel by jste ještě na disku C log?

Jaké jsou problémy s počítačem?

Používáte externí disky, pamětové karty, USB klíče?

Stáhněte SystemLook
http://jpshortstuff.247fixes.com/SystemLook.exe

- uložte ho na plochu a spustte.
- do okénka zkopírujte

Kód: Vybrat vše

:filefind
62.exe

- klikněte na Look, proběhne sken, na konci se zobrazí log, jehož obsah zkopírujete sem

[fildo_pb]

log som už nenašiel
používam externý disk, ktorý mám stále pripojený ku počítaču
predtým som mal nejaký vírus, nešiel mi otvoriť žiadny disk(len pravým - prieskumník), tak som skúsil combofix a pomohlo to....

tu je log zo SystemLook

SystemLook v1.0 by jpshortstuff (11.01.10)
Log created at 16:56 on 07/03/2010 by XXX (Administrator - Elevation successful)

========== filefind ==========

Searching for "62.exe"
No files found.

-=End Of File=-

[motji]

Pokud používáte flešky, externí disky, pamětové karty, připojte je k pc

Stáhněte na plochu UsbFix
-spusťte, zvolte jazyk E - potvrdťe enter
-klikněte na volbu 2 - enter
- po skenu sem vložte log , pokud na Vás nevyskočí, najdete ho C:\UsbFix.txt


Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[fildo_pb]

############################## | UsbFix V6.098 |

User : XXX (Administrators) # FILIP1-2WJPO9S7
Update on 03/03/2010 by El Desaparecido , C_XX & Chimay8
Start at: 21:53:50 | 7.3.2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Celeron(R) CPU 2.40GHz
Microsoft Windows XP Home Edition (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : ESET Smart Security 4.0 4.0 [ Enabled | Updated ]
FW : ESET personal firewall[ Enabled ]4.0.467.0

A:\ -> Disketová jednotka 3 1/2"
C:\ -> Místní pevný disk # 38,28 Go (11,81 Go free) # NTFS
D:\ -> Disk CD-ROM
E:\ -> Disk CD-ROM
F:\ -> Místní pevný disk # 465,76 Go (176,27 Go free) [STR 500G] # NTFS
G:\ -> Vyměnitelný disk # 1,88 Go (1,38 Go free) [STR 2G] # FAT32
H:\ -> Vyměnitelný disk # 982,05 Mo (968,58 Mo free) [STR 1G] # FAT32
I:\ -> Vyměnitelný disk # 1,88 Go (426,85 Mo free) [BIBKA] # FAT32

################## | Files # Infected Folders |

Deleted ! C:\Recycler\S-1-5-21-682003330-1958367476-839522115-1004

################## | Registry |


################## | Mountpoints2 |


################## | Listing of the present files |

[20.02.2010 21:30|--a------|211] C:\Boot.bak
[28.02.2010 14:24|-rahs----|281] C:\boot.ini
[16.04.2003 13:00|-rahs----|4952] C:\Bootfont.bin
[03.08.2004 23:00|--a------|261312] C:\cmldr
[04.02.2010 19:12|--a------|0] C:\CONFIG.SYS
[07.03.2010 21:51|--a------|190] C:\drwtsn32.log
[?|?|?] C:\hiberfil.sys
[04.02.2010 19:12|-rahs----|0] C:\IO.SYS
[04.02.2010 19:12|-rahs----|0] C:\MSDOS.SYS
[04.02.2010 20:33|-rahs----|47564] C:\NTDETECT.COM
[04.02.2010 22:05|-rahs----|250576] C:\ntldr
[?|?|?] C:\pagefile.sys
[01.03.2010 19:52|--a------|230432] C:\StiImg.dat
[07.03.2010 21:57|--a------|1843] C:\UsbFix.txt
[14.04.2008 08:57|--a------|331776] G:\netsetup.exe
[01.12.2009 19:47|--a------|372736] G:\Prep. YD.doc
[08.02.2010 18:23|--a------|52224] I:\m“j n zor na fungovanie naçej spoloźnosti.doc
[19.02.2010 21:38|--a------|46592] I:\Renesancia.doc
[19.02.2010 14:52|--a------|934912] I:\MVV- Polonskě.doc
[19.02.2010 15:05|--a------|1567744] I:\TVV- Zemanźˇkov .doc
[26.02.2010 14:28|--a------|773632] I:\1 Rok.ppt
[27.02.2010 14:56|--a------|36352] I:\hry.doc

################## | Vaccination |

# C:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# F:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# G:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# H:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# I:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).

################## | Upload |

Please send the file : C:\UsbFix_Upload_Me_FILIP1-2WJPO9S7.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .

################## | ! End of report # UsbFix V6.098 ! |


Malwarebytes' Anti-Malware 1.44
Verzia databázy: 3833
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

8.3.2010 5:52:42
mbam-log-2010-03-08 (05-52-35).txt

Typ kontroly: Úplná (C:\|F:\|G:\|H:\|I:\|)
Objektov kontrolovaných: 334847
Uplynutý cas: 1 hour(s), 58 minute(s), 2 second(s)

Infikovaných procesov pamäte: 0
Infikovaných modulov pamäte: 0
Infikovaných registracných klúcov: 0
Infikovaných registracných hodnôt: 0
Infikovaných registracných údajov položiek: 0
Infikovaných priecinkov: 0
Infikovaných súborov: 2

Infikovaných procesov pamäte:
(Žiadne škodlivé položky)

Infikovaných modulov pamäte:
(Žiadne škodlivé položky)

Infikovaných registracných klúcov:
(Žiadne škodlivé položky)

Infikovaných registracných hodnôt:
(Žiadne škodlivé položky)

Infikovaných registracných údajov položiek:
(Žiadne škodlivé položky)

Infikovaných priecinkov:
(Žiadne škodlivé položky)

Infikovaných súborov:
F:\Install program\Adobe Soundbooth CS3\Adobe Soundbooth CS3\Keygen\KeyGen.exe (Malware.Packer.Gen) -> No action taken.
F:\Install program\Revelation\Revelation.v2.0.1.100.exe (HackTool.SnadBoy) -> No action taken.

[motji]

Co našel mbam, smažte a poprosím o nový log ze Rsitu.
Jak to vypadá s počítačem?

[fildo_pb]

Logfile of random's system information tool 1.06 (written by random/random)
Run by XXX at 2010-03-08 18:35:07
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 12 GB (31%) free of 39 GB
Total RAM: 1023 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:35:14, on 8.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\ICQ7.0\ICQ.exe
C:\Program Files\Opera 10.50 Beta\Opera.exe
C:\Documents and Settings\XXX\Plocha\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\XXX.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.0\ICQ.exe" silent loginmode=4
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Cadence License Manager - GLOBEtrotter Software Inc. - C:\OrCAD licence\lmgrd.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

--
End of file - 2824 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-09-16 69632]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-09-11 2054360]
"CHotkey"=C:\WINDOWS\mHotkey.exe [2004-12-08 550912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ICQ"=C:\Program Files\ICQ7.0\ICQ.exe [2010-02-11 133368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-09-12 335872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.0\ICQ.exe [2010-02-11 133368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrnStatusMX]
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [2007-08-29 1077248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2006-10-23 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Synchronizer.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\ADOBEC~1.EXE [2006-10-23 734872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^ScanPanel.lnk]
C:\SCANPA~1\ScnPanel.exe [2009-11-21 1933312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\PROGRA~1\WINDOW~4\WINDOW~1.EXE [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-02-21 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=255
"NoActiveDesktop"=1
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\OrCAD\OrCAD_10.3\tools\bin\cdsNameServer.exe"="C:\OrCAD\OrCAD_10.3\tools\bin\cdsNameServer.exe:*:Enabled:cdsNameServer"
"C:\OrCAD\OrCAD_10.3\tools\bin\cdsMsgServer.exe"="C:\OrCAD\OrCAD_10.3\tools\bin\cdsMsgServer.exe:*:Enabled:cdsMsgServer"
"C:\Program Files\Opera 10.50 Beta\opera.exe"="C:\Program Files\Opera 10.50 Beta\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 3 months======

2010-03-07 22:05:55 ----D---- C:\Documents and Settings\XXX\Data aplikací\Malwarebytes
2010-03-07 22:05:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-03-07 22:05:42 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-07 21:57:20 ----RASHD---- C:\autorun.inf
2010-03-07 21:53:47 ----A---- C:\UsbFix.txt
2010-03-07 20:17:41 ----D---- C:\UsbFix
2010-03-07 19:53:20 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-03-04 19:10:01 ----D---- C:\rsit
2010-03-04 16:31:37 ----D---- C:\Program Files\Trend Micro
2010-03-03 20:11:28 ----D---- C:\Program Files\Common Files\Autodesk
2010-03-03 20:08:02 ----D---- C:\Program Files\DWG TrueView 2007
2010-03-03 20:07:15 ----D---- C:\Program Files\Microsoft WSE
2010-03-03 19:25:51 ----D---- C:\Program Files\Autodesk
2010-03-03 19:25:16 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-03-03 18:04:12 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-03-03 18:04:12 ----D---- C:\Program Files\AutoCAD 2008
2010-03-03 18:04:12 ----D---- C:\Documents and Settings\XXX\Data aplikací\Autodesk
2010-03-03 18:04:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Autodesk
2010-03-02 17:02:46 ----A---- C:\WINDOWS\is-O33V2.exe
2010-03-01 16:07:05 ----D---- C:\Program Files\Ask.com
2010-03-01 16:06:39 ----D---- C:\Program Files\uTorrent
2010-03-01 16:05:54 ----D---- C:\Documents and Settings\XXX\Data aplikací\uTorrent
2010-02-28 22:15:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Office Genuine Advantage
2010-02-28 18:37:17 ----D---- C:\DOWNLOAD
2010-02-28 17:46:17 ----D---- C:\Program Files\Zone Labs
2010-02-28 17:46:00 ----D---- C:\WINDOWS\Internet Logs
2010-02-28 16:30:47 ----D---- C:\Program Files\Opera 10.50 Beta
2010-02-28 14:41:19 ----SHD---- C:\RECYCLER
2010-02-28 14:24:55 ----A---- C:\Boot.bak
2010-02-28 14:24:48 ----RASHD---- C:\cmdcons
2010-02-27 17:56:59 ----D---- C:\Documents and Settings\XXX\Data aplikací\FormEdik
2010-02-27 17:56:48 ----D---- C:\Program Files\FormEdik
2010-02-24 12:54:10 ----D---- C:\Program Files\QIP
2010-02-24 12:49:34 ----D---- C:\Documents and Settings\XXX\Data aplikací\QIP
2010-02-24 12:48:32 ----D---- C:\Program Files\QIP Infium
2010-02-24 12:32:28 ----D---- C:\Program Files\ICQ7.0
2010-02-22 00:11:33 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-02-22 00:06:12 ----D---- C:\totalcmd
2010-02-22 00:06:12 ----A---- C:\WINDOWS\wincmd.ini
2010-02-21 18:44:11 ----D---- C:\Documents and Settings\XXX\Data aplikací\TeraCopy
2010-02-21 18:43:56 ----D---- C:\Program Files\TeraCopy
2010-02-16 20:31:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
2010-02-14 20:53:08 ----D---- C:\WINDOWS\system32\winnt
2010-02-14 20:53:08 ----D---- C:\WINDOWS\system32\win9598
2010-02-14 20:53:08 ----A---- C:\WINDOWS\system32\ociw32.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\sscsdk32.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\ntwdblib.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\msjet35.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\mitmin30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\mitmdl30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\midlg30.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfwpg60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfwmf60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lftif60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lftga60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpsd60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpng60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfpct60n.dll
2010-02-14 20:53:07 ----A---- C:\WINDOWS\system32\lfmsp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\orant71.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\mxintl30.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\midlin30.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfpcx60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfmac60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lffax60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfeps60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfcmp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\lfbmp60n.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crutl13.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crsyb13.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\cror813.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\cror713.dll
2010-02-14 20:53:06 ----A---- C:\WINDOWS\system32\crgup13.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crflt13.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crdb213.dll
2010-02-14 20:53:05 ----A---- C:\WINDOWS\system32\crbas13.dll
2010-02-14 20:52:41 ----D---- C:\Program Files\Common Files\Orcad
2010-02-14 20:51:30 ----D---- C:\WINDOWS\crystal
2010-02-14 20:49:10 ----D---- C:\PSD_Data
2010-02-14 20:48:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Macrovision
2010-02-14 20:48:01 ----A---- C:\WINDOWS\system32\lmgr326b.dll
2010-02-13 19:46:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-02-13 19:45:54 ----D---- C:\Program Files\Common Files\Java
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\javaws.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\javaw.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\java.exe
2010-02-13 19:45:31 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-02-13 19:45:07 ----D---- C:\Program Files\Java
2010-02-13 19:44:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\Sun
2010-02-11 17:12:42 ----D---- C:\allegro
2010-02-11 17:06:35 ----A---- C:\WINDOWS\capture.INI
2010-02-11 16:32:51 ----D---- C:\OrCad Kniznice
2010-02-11 16:32:51 ----D---- C:\FLEXLM
2010-02-11 16:32:50 ----D---- C:\OrCAD licence
2010-02-11 16:15:27 ----D---- C:\OrCAD
2010-02-08 19:43:00 ----D---- C:\WINDOWS\system32\languages
2010-02-08 19:36:39 ----A---- C:\WINDOWS\iun6002.exe
2010-02-08 19:36:30 ----D---- C:\Program Files\Codec Pack - All In 1
2010-02-07 21:05:53 ----D---- C:\Program Files\MCS Electronics
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\wd_utils.dll
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\msxml4a.dll
2010-02-07 12:54:35 ----RA---- C:\WINDOWS\system32\msvcr71.dll
2010-02-07 12:54:35 ----A---- C:\WINDOWS\system32\BCGCBPRO731.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\vc6-re200l.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\RWUXThemeS.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\msvcp71.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\MFC71.dll
2010-02-07 12:54:30 ----RA---- C:\WINDOWS\system32\atl71.dll
2010-02-07 11:09:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Atmel
2010-02-07 11:07:15 ----A---- C:\WINDOWS\basavr.ini
2010-02-07 11:03:08 ----A---- C:\WINDOWS\system32\wdapi811.dll
2010-02-07 11:03:08 ----A---- C:\WINDOWS\system32\wdapi1001.dll
2010-02-07 11:02:14 ----A---- C:\WINDOWS\system32\wdapi1010.dll
2010-02-07 11:02:14 ----A---- C:\WINDOWS\system32\wdapi1002.dll
2010-02-07 11:02:03 ----D---- C:\Program Files\Atmel
2010-02-07 10:12:05 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-02-07 00:22:10 ----A---- C:\WINDOWS\ODBC.INI
2010-02-07 00:22:00 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-02-07 00:20:31 ----D---- C:\Program Files\Common Files\DESIGNER
2010-02-07 00:20:16 ----D---- C:\WINDOWS\SHELLNEW
2010-02-07 00:20:07 ----D---- C:\Program Files\Microsoft.NET
2010-02-07 00:20:07 ----D---- C:\Program Files\Microsoft Office
2010-02-07 00:19:42 ----D---- C:\Program Files\PhotoFiltre
2010-02-07 00:17:45 ----RD---- C:\MSOCache
2010-02-07 00:13:08 ----D---- C:\Documents and Settings\XXX\Data aplikací\skypePM
2010-02-07 00:12:05 ----D---- C:\Documents and Settings\XXX\Data aplikací\Skype
2010-02-07 00:11:57 ----D---- C:\Program Files\Common Files\Skype
2010-02-07 00:11:50 ----RD---- C:\Program Files\Skype
2010-02-07 00:11:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-02-06 23:58:13 ----D---- C:\Program Files\Windows Media Connect 2
2010-02-06 23:57:57 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-02-06 23:27:31 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-02-06 23:22:43 ----D---- C:\WINDOWS\system32\LogFiles
2010-02-06 23:22:37 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-02-06 23:18:06 ----D---- C:\Documents and Settings\XXX\Data aplikací\COWON
2010-02-06 23:15:38 ----D---- C:\Program Files\MSXML 4.0
2010-02-06 23:09:06 ----A---- C:\WINDOWS\system32\ZTAG.DLL
2010-02-06 23:09:06 ----A---- C:\WINDOWS\system32\ZSPOOL.DLL
2010-02-06 23:09:04 ----A---- C:\WINDOWS\system32\ZIMF.DLL
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPMCoSetup.dll
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPIPMXRes.dll
2010-02-06 23:09:01 ----A---- C:\WINDOWS\system32\HPIPMX.dll
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215LM.DLL
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215LI.DLL
2010-02-06 23:09:00 ----A---- C:\WINDOWS\system32\CP1215EWS.dll
2010-02-06 23:07:35 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-06 23:06:15 ----D---- C:\Program Files\Hewlett-Packard
2010-02-06 23:06:01 ----D---- C:\Program Files\HP
2010-02-06 23:06:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\HPSSUPPLY
2010-02-06 23:04:55 ----D---- C:\Documents and Settings\XXX\Data aplikací\Hewlett-Packard
2010-02-06 23:04:20 ----D---- C:\Documents and Settings\XXX\Data aplikací\HP
2010-02-06 23:00:42 ----SHD---- C:\WINDOWS\ftpcache
2010-02-06 22:59:37 ----D---- C:\Program Files\Common Files\COWON
2010-02-06 22:59:33 ----D---- C:\Program Files\JetAudio
2010-02-06 22:48:35 ----D---- C:\Program Files\Crystal Decisions
2010-02-06 22:48:35 ----D---- C:\Program Files\Common Files\Crystal Decisions
2010-02-06 22:48:35 ----D---- C:\ALFA
2010-02-06 22:48:33 ----A---- C:\WINDOWS\system32\ANGELVDD.DLL
2010-02-06 22:46:35 ----D---- C:\Program Files\AVIConverter
2010-02-06 22:46:13 ----D---- C:\AlfaIns
2010-02-06 22:37:08 ----A---- C:\WINDOWS\system32\PAStiSvc.exe
2010-02-06 22:36:34 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-02-06 22:35:51 ----D---- C:\WINDOWS\Album
2010-02-06 22:35:49 ----D---- C:\WINDOWS\PixArt
2010-02-06 22:35:49 ----D---- C:\Program Files\VideoCAM GE111
2010-02-06 22:35:49 ----D---- C:\Program Files\Common Files\PCCamera
2010-02-06 22:35:20 ----D---- C:\WINDOWS\Downloaded Installations
2010-02-06 22:33:51 ----A---- C:\WINDOWS\6816BadPixelInfo.txt
2010-02-06 22:15:58 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2010-02-06 22:10:03 ----D---- C:\Documents and Settings\XXX\Data aplikací\Windows Search
2010-02-06 21:30:39 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-02-06 21:30:21 ----D---- C:\Documents and Settings\XXX\Data aplikací\Windows Desktop Search
2010-02-06 21:29:32 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-02-06 21:29:32 ----D---- C:\Program Files\Windows Desktop Search
2010-02-06 21:29:10 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-02-06 21:25:28 ----D---- C:\WINDOWS\system32\URTTEMP
2010-02-06 21:20:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-02-06 21:03:42 ----D---- C:\WINDOWS\pss
2010-02-05 16:36:40 ----A---- C:\WINDOWS\stophid.exe
2010-02-05 16:36:39 ----A---- C:\WINDOWS\PIC.dll
2010-02-05 16:36:39 ----A---- C:\WINDOWS\mHotkey.exe
2010-02-05 16:36:38 ----A---- C:\WINDOWS\HKNTDLL.dll
2010-02-05 16:36:38 ----A---- C:\WINDOWS\HIDMNT.dll
2010-02-05 16:35:48 ----D---- C:\Documents and Settings\XXX\Data aplikací\InstallShield
2010-02-05 16:35:26 ----A---- C:\WINDOWS\ScnPanel.ini
2010-02-05 16:35:26 ----A---- C:\WINDOWS\Ausba4.ini
2010-02-05 16:35:26 ----A---- C:\WINDOWS\Astra48U.ini
2010-02-05 16:35:25 ----A---- C:\WINDOWS\system32\Remove4009.exe
2010-02-05 16:35:06 ----D---- C:\ScanPanel
2010-02-05 16:35:06 ----A---- C:\WINDOWS\system32\48UMicro.dll
2010-02-05 16:35:05 ----N---- C:\WINDOWS\Ausba4.dll
2010-02-05 16:35:05 ----A---- C:\WINDOWS\GetKey.dll
2010-02-05 16:35:05 ----A---- C:\WINDOWS\A4.dll
2010-02-05 16:35:01 ----N---- C:\WINDOWS\Astra48U142.ini
2010-02-05 16:30:25 ----D---- C:\Documents and Settings\XXX\Data aplikací\DMCache
2010-02-05 16:29:49 ----D---- C:\WINDOWS\ie8updates
2010-02-05 16:28:20 ----D---- C:\WINDOWS\WBEM
2010-02-05 16:25:33 ----HDC---- C:\WINDOWS\ie8
2010-02-05 16:24:14 ----D---- C:\Documents and Settings\XXX\Data aplikací\ESET
2010-02-05 16:21:28 ----D---- C:\Program Files\ESET
2010-02-05 16:21:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-02-05 16:20:36 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-02-05 16:20:21 ----N---- C:\WINDOWS\system32\ChCfg.exe
2010-02-05 16:20:21 ----A---- C:\WINDOWS\system32\RTLCPAPI.dll
2010-02-05 16:20:21 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-02-05 16:20:19 ----A---- C:\WINDOWS\system32\RTLCPL.EXE
2010-02-05 16:20:09 ----N---- C:\WINDOWS\alcupd.exe
2010-02-05 16:20:09 ----N---- C:\WINDOWS\alcrmv.exe
2010-02-05 16:18:30 ----D---- C:\Program Files\Intel
2010-02-05 16:15:08 ----D---- C:\Program Files\WinRAR
2010-02-05 16:10:41 ----A---- C:\WINDOWS\system32\MRT.exe
2010-02-05 16:09:41 ----D---- C:\Program Files\CCleaner
2010-02-05 15:45:46 ----D---- C:\WINDOWS\Prefetch
2010-02-04 22:16:42 ----D---- C:\WINDOWS\system32\PreInstall
2010-02-04 22:16:40 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-04 22:10:06 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\credssp.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-02-04 22:10:05 ----N---- C:\WINDOWS\system32\azroles.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-02-04 22:10:04 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-02-04 22:10:03 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napstat.exe
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mssha.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-02-04 22:10:02 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\setupn.exe
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qutil.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\qagent.dll
2010-02-04 22:10:01 ----N---- C:\WINDOWS\system32\onex.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-02-04 22:09:59 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-02-04 22:09:58 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-02-04 22:09:57 ----D---- C:\WINDOWS\system32\cs
2010-02-04 22:09:57 ----D---- C:\WINDOWS\system32\bits
2010-02-04 22:09:57 ----D---- C:\WINDOWS\l2schemas
2010-02-04 22:05:46 ----D---- C:\WINDOWS\network diagnostic
2010-02-04 22:04:34 ----A---- C:\WINDOWS\004975_.tmp
2010-02-04 21:51:54 ----N---- C:\WINDOWS\system32\spmsg2.dll
2010-02-04 21:51:49 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-02-04 21:51:32 ----D---- C:\WINDOWS\system32\cs-CZ
2010-02-04 21:49:12 ----D---- C:\WINDOWS\system32\XPSViewer
2010-02-04 21:49:08 ----D---- C:\Program Files\MSBuild
2010-02-04 21:49:05 ----D---- C:\WINDOWS\system32\en-US
2010-02-04 21:48:59 ----D---- C:\Program Files\Reference Assemblies
2010-02-04 21:48:07 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-02-04 21:48:06 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-02-04 21:48:06 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-02-04 21:47:22 ----RSD---- C:\WINDOWS\assembly
2010-02-04 21:46:41 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-04 21:45:21 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2010-02-04 21:45:15 ----D---- C:\Program Files\MSXML 6.0
2010-02-04 21:01:46 ----D---- C:\Documents and Settings\XXX\Data aplikací\Macromedia
2010-02-04 21:01:33 ----D---- C:\Documents and Settings\XXX\Data aplikací\Opera
2010-02-04 21:01:10 ----D---- C:\Program Files\Opera
2010-02-04 21:00:51 ----D---- C:\Documents and Settings\XXX\Data aplikací\Adobe
2010-02-04 20:59:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-02-04 20:59:38 ----D---- C:\Program Files\Common Files\Adobe
2010-02-04 20:59:38 ----D---- C:\Program Files\Adobe
2010-02-04 20:51:47 ----D---- C:\Documents and Settings\XXX\Data aplikací\ICQ
2010-02-04 20:45:02 ----D---- C:\Documents and Settings\XXX\Data aplikací\Help
2010-02-04 20:44:57 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-02-04 20:43:22 ----D---- C:\WINDOWS\SoftwareDistribution
2010-02-04 20:41:50 ----SD---- C:\WINDOWS\system32\Microsoft
2010-02-04 20:36:53 ----N---- C:\WINDOWS\system32\proxycfg.exe
2010-02-04 20:36:53 ----N---- C:\WINDOWS\system32\logman.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\dxdiagn.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\d3d9.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\btpanui.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bthserv.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bthci.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\blastcln.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\auditusr.exe
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-02-04 20:36:47 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-02-04 20:36:47 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2010-02-04 20:36:47 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdno1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinben.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_qcx.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_qc.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir50_32.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir41_qcx.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\ir41_qc.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fwcfg.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fsquirt.exe
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fltmc.exe
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\fltlib.dll
2010-02-04 20:36:46 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-02-04 20:36:46 ----A---- C:\WINDOWS\system32\httpapi.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\xpob2res.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\p2p.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mspmsnsv.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\msdadiag.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\MP4SDMOD.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\MP43DMOD.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-02-04 20:36:45 ----N---- C:\WINDOWS\system32\kbdukx.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\w3ssl.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\twext.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\smbinst.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slserv.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slgen.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\powercfg.exe
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2psvc.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2010-02-04 20:36:44 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2010-02-04 20:36:44 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2010-02-04 20:36:44 ----A---- C:\WINDOWS\system32\strmfilt.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\WMSPDMOE.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmspdmod.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmsdmoe2.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmpdxm.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmpasf.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmp.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\wmerror.dll
2010-02-04 20:36:43 ----N---- C:\WINDOWS\system32\winshfhc.dll
2010-02-04 20:36:43 ----A---- C:\WINDOWS\system32\wmidx.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\xmlprov.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wuaueng1.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wuauclt1.exe
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wshbth.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wscntfy.exe
2010-02-04 20:36:42 ----N---- C:\WINDOWS\system32\wmvdmoe2.dll
2010-02-04 20:36:42 ----N---- C:\WINDOWS\slrundll.exe
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wups.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-02-04 20:36:42 ----A---- C:\WINDOWS\system32\wscsvc.dll
2010-02-04 20:36:41 ----D---- C:\WINDOWS\peernet
2010-02-04 20:36:40 ----D---- C:\WINDOWS\provisioning
2010-02-04 20:35:20 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-04 20:32:24 ----A---- C:\WINDOWS\002021_.tmp
2010-02-04 20:32:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-02-04 20:31:58 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-02-04 20:30:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-04 20:30:14 ----D---- C:\WINDOWS\EHome
2010-02-04 20:26:34 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2010-02-04 20:26:32 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2010-02-04 20:26:14 ----D---- C:\Program Files\ATI Technologies
2010-02-04 20:26:11 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-04 20:25:36 ----D---- C:\Program Files\Common Files\InstallShield
2010-02-04 20:17:57 ----SHD---- C:\WINDOWS\Installer
2010-02-04 20:17:53 ----D---- C:\Documents and Settings\XXX\Data aplikací\Identities
2010-02-04 20:17:50 ----HD---- C:\Program Files\Uninstall Information
2010-02-04 20:17:45 ----ASH---- C:\Documents and Settings\XXX\Data aplikací\desktop.ini
2010-02-04 20:17:44 ----SD---- C:\Documents and Settings\XXX\Data aplikací\Microsoft
2010-02-04 20:16:45 ----A---- C:\WINDOWS\system32\wpa.bak
2010-02-04 20:05:09 ----A---- C:\WINDOWS\system32\h323log.txt
2010-02-04 19:58:03 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-02-04 19:56:51 ----A---- C:\WINDOWS\system32\usbui.dll
2010-02-04 19:55:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-04 19:55:48 ----D---- C:\Program Files\Common Files\ODBC
2010-02-04 19:55:48 ----A---- C:\WINDOWS\ODBCINST.INI
2010-02-04 19:55:45 ----RD---- C:\Program Files
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-04 19:55:45 ----D---- C:\Program Files\Common Files
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-02-04 19:55:41 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-02-04 19:55:39 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-02-04 19:55:37 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-02-04 19:55:35 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-02-04 19:55:31 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\irclass.dll
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-02-04 19:55:30 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-02-04 19:55:29 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-02-04 19:55:29 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-02-04 19:55:27 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-02-04 19:55:27 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-02-04 19:55:27 ----A---- C:\WINDOWS\system32\batt.dll
2010-02-04 19:55:27 ----A---- C:\WINDOWS\notepad.exe
2010-02-04 19:55:26 ----A---- C:\WINDOWS\system32\storprop.dll
2010-02-04 19:55:17 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-02-04 19:55:13 ----RA---- C:\WINDOWS\SET7.tmp
2010-02-04 19:55:10 ----RA---- C:\WINDOWS\SET3.tmp
2010-02-04 19:55:04 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-04 19:55:04 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-04 19:54:58 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-02-04 19:54:37 ----D---- C:\Documents and Settings
2010-02-04 19:53:59 ----RASH---- C:\boot.ini
2010-02-04 19:50:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-04 19:50:13 ----RSD---- C:\WINDOWS\Fonts
2010-02-04 19:50:13 ----RD---- C:\WINDOWS\Web
2010-02-04 19:50:13 ----HD---- C:\WINDOWS\inf
2010-02-04 19:50:13 ----D---- C:\WINDOWS\WinSxS
2010-02-04 19:50:13 ----D---- C:\WINDOWS\twain_32
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Temp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\wins
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\wbem
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\usmt
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\spool
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ShellExt
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\Setup
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ras
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\oobe
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\npp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\mui
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\inetsrv
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\IME
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\icsxml
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\ias
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\export
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\drivers
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\dhcp
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\config
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\3com_dmi
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\3076
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\2052
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1054
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1042
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1041
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1037
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1033
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1031
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1029
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1028
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32\1025
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system32
2010-02-04 19:50:13 ----D---- C:\WINDOWS\system
2010-02-04 19:50:13 ----D---- C:\WINDOWS\security
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Resources
2010-02-04 19:50:13 ----D---- C:\WINDOWS\repair
2010-02-04 19:50:13 ----D---- C:\WINDOWS\mui
2010-02-04 19:50:13 ----D---- C:\WINDOWS\msapps
2010-02-04 19:50:13 ----D---- C:\WINDOWS\msagent
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Media
2010-02-04 19:50:13 ----D---- C:\WINDOWS\java
2010-02-04 19:50:13 ----D---- C:\WINDOWS\ime
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Help
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Driver Cache
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Debug
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Cursors
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Connection Wizard
2010-02-04 19:50:13 ----D---- C:\WINDOWS\Config
2010-02-04 19:50:13 ----D---- C:\WINDOWS\AppPatch
2010-02-04 19:50:13 ----D---- C:\WINDOWS\addins
2010-02-04 19:50:13 ----D---- C:\WINDOWS
2010-02-04 19:15:20 ----SHD---- C:\System Volume Information
2010-02-04 19:15:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-04 19:12:12 ----D---- C:\WINDOWS\system32\xircom
2010-02-04 19:12:12 ----D---- C:\Program Files\xerox
2010-02-04 19:12:12 ----D---- C:\Program Files\microsoft frontpage
2010-02-04 19:12:02 ----A---- C:\WINDOWS\control.ini
2010-02-04 19:11:50 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-02-04 19:10:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-02-04 19:10:56 ----RD---- C:\WINDOWS\Offline Web Pages
2010-02-04 19:10:56 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-02-04 19:10:49 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-02-04 19:10:21 ----D---- C:\WINDOWS\system32\DirectX
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-02-04 19:09:52 ----A---- C:\WINDOWS\system32\atrace.dll
2010-02-04 19:09:49 ----A---- C:\WINDOWS\system32\desktop.ini
2010-02-04 19:09:49 ----A---- C:\WINDOWS\desktop.ini
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-02-04 19:09:42 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-02-04 19:09:40 ----A---- C:\WINDOWS\system32\acctres.dll
2010-02-04 19:09:39 ----D---- C:\Program Files\Common Files\Services
2010-02-04 19:09:38 ----A---- C:\WINDOWS\system32\inetres.dll
2010-02-04 19:09:34 ----SD---- C:\WINDOWS\Tasks
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\isign32.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-02-04 19:09:34 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-02-04 19:09:31 ----D---- C:\Program Files\Common Files\MSSoap
2010-02-04 19:09:26 ----D---- C:\WINDOWS\system32\Macromed
2010-02-04 19:09:26 ----D---- C:\WINDOWS\srchasst
2010-02-04 19:09:25 ----N---- C:\WINDOWS\system32\qmgr.dll
2010-02-04 19:09:25 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-02-04 19:09:24 ----D---- C:\Program Files\Movie Maker
2010-02-04 19:09:20 ----D---- C:\WINDOWS\PCHealth
2010-02-04 19:09:19 ----N---- C:\WINDOWS\system32\srsvc.dll
2010-02-04 19:09:19 ----D---- C:\WINDOWS\system32\Restore
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\srclient.dll
2010-02-04 19:09:19 ----A---- C:\WINDOWS\system32\ils.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\msconf.dll
2010-02-04 19:09:18 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-02-04 19:09:16 ----D---- C:\Program Files\NetMeeting
2010-02-04 19:09:16 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-02-04 19:09:16 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-02-04 19:09:15 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-02-04 19:09:14 ----N---- C:\WINDOWS\system32\schedsvc.dll
2010-02-04 19:09:14 ----D---- C:\Program Files\Outlook Express
2010-02-04 19:09:14 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-02-04 19:09:14 ----A---- C:\WINDOWS\system32\mstask.dll
2010-02-04 19:09:11 ----D---- C:\Program Files\Common Files\System
2010-02-04 19:09:08 ----D---- C:\Program Files\Internet Explorer
2010-02-04 19:08:49 ----D---- C:\Program Files\ComPlus Applications
2010-02-04 19:08:47 ----A---- C:\WINDOWS\vbaddin.ini
2010-02-04 19:08:47 ----A---- C:\WINDOWS\vb.ini
2010-02-04 19:08:43 ----D---- C:\WINDOWS\Registration
2010-02-04 19:08:09 ----HD---- C:\Program Files\WindowsUpdate
2010-02-04 19:08:09 ----D---- C:\Program Files\Online Services
2010-02-04 19:08:07 ----D---- C:\Program Files\Windows Media Player
2010-02-04 19:08:00 ----D---- C:\Program Files\Messenger
2010-02-04 19:07:55 ----D---- C:\Program Files\MSN Gaming Zone
2010-02-04 19:07:55 ----A---- C:\WINDOWS\system32\write.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\hticons.dll
2010-02-04 19:07:44 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avwav.dll
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-02-04 19:07:43 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-02-04 19:07:42 ----A---- C:\WINDOWS\system32\winchat.exe
2010-02-04 19:07:35 ----A---- C:\WINDOWS\system32\charmap.exe
2010-02-04 19:07:35 ----A---- C:\WINDOWS\system32\getuname.dll
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\winmine.exe
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\sol.exe
2010-02-04 19:07:34 ----A---- C:\WINDOWS\system32\calc.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\tskill.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\reset.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-02-04 19:07:33 ----A---- C:\WINDOWS\system32\freecell.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\tscon.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\shadow.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\regini.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-02-04 19:07:32 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msg.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\logoff.exe
2010-02-04 19:07:31 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-02-04 19:07:30 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-02-04 19:07:29 ----A---- C:\WINDOWS\system32\colbact.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\stclient.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comuid.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-02-04 19:07:28 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-02-04 19:07:27 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-02-04 19:07:27 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-02-04 19:07:20 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-02-04 19:07:15 ----D---- C:\Program Files\Windows NT
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-02-04 19:07:15 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-02-04 19:07:14 ----N---- C:\WINDOWS\system32\wuauclt.exe
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-02-04 19:07:14 ----A---- C:\WINDOWS\system32\spider.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-02-04 19:07:13 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-02-04 19:07:12 ----N---- C:\WINDOWS\system32\termsrv.dll
2010-02-04 19:07:12 ----D---- C:\WINDOWS\system32\MsDtc
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-02-04 19:07:12 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-02-04 19:07:11 ----D---- C:\WINDOWS\system32\Com
2010-02-04 19:07:11 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-02-04 19:07:11 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-02-04 19:07:08 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-12-22 06:09:51 ----N---- C:\WINDOWS\system32\ieencode.dll

======List of files/folders modified in the last 3 months======

2010-02-28 14:34:19 ----A---- C:\WINDOWS\system.ini
2010-02-22 19:34:24 ----A---- C:\WINDOWS\win.ini
2010-02-04 20:33:17 ----RASH---- C:\NTDETECT.COM
2009-12-22 06:09:53 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-12-21 20:08:42 ----N---- C:\WINDOWS\system32\wininet.dll
2009-12-21 20:08:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-12-21 20:08:41 ----N---- C:\WINDOWS\system32\occache.dll
2009-12-21 20:08:41 ----N---- C:\WINDOWS\system32\mshtml.dll
2009-12-21 20:08:38 ----N---- C:\WINDOWS\system32\jsproxy.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\msfeeds.dll
2009-12-21 20:08:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2009-12-21 20:08:37 ----N---- C:\WINDOWS\system32\iepeers.dll
2009-12-21 20:08:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-12-21 20:08:35 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2009-12-21 14:18:29 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2009-12-14 08:10:03 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-12-09 11:11:07 ----N---- C:\WINDOWS\system32\ntoskrnl.exe
2009-12-09 11:11:07 ----N---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-12-09 06:55:34 ----A---- C:\WINDOWS\system32\jscript.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-09-11 108792]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-09-11 55768]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2010-02-06 51072]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-09-11 116008]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-09-11 135048]
R2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
R2 TVicPort;TVicPort; C:\WINDOWS\system32\drivers\TVicPort.sys [2005-03-30 14544]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-09-21 2278784]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-02-21 1505792]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-06-19 33096]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2003-04-16 12160]
R3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-13 70144]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WinDriver6;WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [2009-09-02 195424]
S3 catchme;catchme; \??\C:\DOCUME~1\FILIPS~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 rockusb;Driver for rockusb Device; C:\WINDOWS\system32\DRIVERS\rockusb.sys [2006-03-22 73984]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbser;USB-232 Emulation Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-04-16 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-02-21 405504]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-09-11 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-02-13 153376]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2003-09-12 114688]
S2 Cadence License Manager;Cadence License Manager; C:\OrCAD licence\lmgrd.exe [2002-08-09 608768]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-03-03 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-09-11 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

smažte
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\UsbFix.txt
C:\UsbFix
C:\Program Files\Ask.com


Otestujte na www.virustotal.com
C:\WINDOWS\is-O33V2.exe
C:\WINDOWS\A4.dll
A ten předchozí soubor C:\WINDOWS\system32\browserchoice.exe

[fildo_pb]

C:\WINDOWS\system32\browserchoice.exe
Antivirus Version Last Update Result
a-squared 4.5.0.50 2010.03.07 -
AhnLab-V3 5.0.0.2 2010.03.07 -
AntiVir 8.2.1.180 2010.03.05 -
Antiy-AVL 2.0.3.7 2010.03.05 -
Authentium 5.2.0.5 2010.03.06 -
Avast 4.8.1351.0 2010.03.07 -
Avast5 5.0.332.0 2010.03.07 -
AVG 9.0.0.787 2010.03.07 -
BitDefender 7.2 2010.03.07 -
CAT-QuickHeal 10.00 2010.03.06 -
ClamAV 0.96.0.0-git 2010.03.06 -
Comodo 4091 2010.02.28 -
DrWeb 5.0.1.12222 2010.03.07 -
eSafe 7.0.17.0 2010.03.04 -
eTrust-Vet 35.2.7342 2010.03.05 -
F-Prot 4.5.1.85 2010.03.06 -
F-Secure 9.0.15370.0 2010.03.07 -
Fortinet 4.0.14.0 2010.03.07 -
GData 19 2010.03.07 -
Ikarus T3.1.1.80.0 2010.03.07 -
Jiangmin 13.0.900 2010.03.07 -
K7AntiVirus 7.10.990 2010.03.04 -
Kaspersky 7.0.0.125 2010.03.07 -
McAfee 5912 2010.03.06 -
McAfee+Artemis 5912 2010.03.06 -
McAfee-GW-Edition 6.8.5 2010.03.07 -
Microsoft 1.5502 2010.03.07 -
NOD32 4922 2010.03.07 -
Norman 6.04.08 2010.03.07 -
nProtect 2009.1.8.0 2010.03.07 -
Panda 10.0.2.2 2010.03.07 -
PCTools 7.0.3.5 2010.03.04 -
Prevx 3.0 2010.03.08 -
Rising 22.37.06.04 2010.03.07 -
Sophos 4.51.0 2010.03.07 -
Sunbelt 5780 2010.03.07 -
Symantec 20091.2.0.41 2010.03.07 -
TheHacker 6.5.1.9.223 2010.03.07 -
TrendMicro 9.120.0.1004 2010.03.07 -
VBA32 3.12.12.2 2010.03.05 -
ViRobot 2010.3.5.2214 2010.03.05 -
VirusBuster 5.0.27.0 2010.03.06 -
Additional information
File size: 293376 bytes
MD5...: da1919d896dbd5895e138932ae9e398b
SHA1..: 361bee6e2535d9fc10a01ac6686be55d854fc5ba
SHA256: 4c5fb3c35ca7c2e10ae2920afd40e854c123219901c15a80941ac9f53eef97d7
ssdeep: 6144:IEesYclzRCayeopvGE0zM6s4D8e8FIBK86dNvMXfAo:IEerclzRCayeopvG
NzM6s4D8e8FIBK8f
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x3363
timedatestamp.....: 0x4b737c6f (Thu Feb 11 03:41:35 2010)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x34ca 0x3600 6.18 e0356f94745647bc2bed78b680e83512
.data 0x5000 0x68c 0x400 5.80 28fcfd5ab0eb9c208220c87444240f30
.rsrc 0x6000 0x44000 0x43400 6.41 1370a78bf18215c408206d0638b25934
.reloc 0x4a000 0x648 0x800 2.72 cb9cda0ca1762d2b27ddcf4dd8860ae5

( 10 imports )
> ADVAPI32.dll: RegCloseKey, RegCreateKeyExW, GetTokenInformation, OpenProcessToken, CreateProcessAsUserW, SetTokenInformation, GetLengthSid, ConvertStringSidToSidW, DuplicateTokenEx
> KERNEL32.dll: GetLastError, VerifyVersionInfoW, VerSetConditionMask, FreeLibrary, GetProcAddress, LoadLibraryW, CloseHandle, GetCurrentProcess, GetUserGeoID, GetExitCodeProcess, WaitForSingleObject, LocalFree, GetModuleHandleW, lstrcmpA, GetModuleFileNameW, UnhandledExceptionFilter, TerminateProcess, GetSystemTimeAsFileTime, GetCurrentProcessId, GetCurrentThreadId, GetTickCount, QueryPerformanceCounter, GetModuleHandleA, SetUnhandledExceptionFilter, GetStartupInfoA, InterlockedCompareExchange, Sleep, InterlockedExchange
> USER32.dll: LoadStringW
> msvcrt.dll: _controlfp, _vsnwprintf, memset, __3@YAXPAX@Z, wcschr, _wcsnicmp, _terminate@@YAXXZ, __set_app_type, __p__fmode, __p__commode, __setusermatherr, _amsg_exit, _initterm, _acmdln, exit, _ismbblead, _XcptFilter, _exit, _cexit, __getmainargs, _wtoi, __2@YAPAXI@Z
> ole32.dll: CoUninitialize, CoTaskMemFree, CoCreateInstance, CoInitializeEx
> ntdll.dll: RtlUnwind
> SHELL32.dll: -, SHGetFolderPathW, -, -, ShellExecuteW, SHBindToParent
> SHLWAPI.dll: PathCombineW, PathAddExtensionW, -, SHRegGetBoolUSValueW, SHRegGetUSValueW, SHDeleteValueW, PathFindFileNameW, -, SHRegSetUSValueW, SHSetValueW
> WININET.dll: InternetGetCookieW, InternetSetCookieW
> OLEAUT32.dll: -, -

( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Browser Choice
original name: browserchoice.exe
internal name: Browser Choice
file version.: 6.1.7600.16526 (win7_gdr.100210-1504)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

C:\WINDOWS\A4.dll
Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.04.07 -
AhnLab-V3 5.0.0.2 2009.04.07 -
AntiVir 7.9.0.138 2009.04.07 -
Antiy-AVL 2.0.3.1 2009.04.07 -
Authentium 5.1.2.4 2009.04.07 -
Avast 4.8.1335.0 2009.04.06 -
AVG 8.5.0.285 2009.04.07 -
BitDefender 7.2 2009.04.07 -
CAT-QuickHeal 10.00 2009.04.07 -
ClamAV 0.94.1 2009.04.07 -
Comodo 1102 2009.04.07 -
DrWeb 4.44.0.09170 2009.04.07 -
eSafe 7.0.17.0 2009.04.06 -
eTrust-Vet 31.6.6442 2009.04.07 -
F-Prot 4.4.4.56 2009.04.07 -
F-Secure 8.0.14470.0 2009.04.07 -
Fortinet 3.117.0.0 2009.04.07 -
GData 19 2009.04.07 -
Ikarus T3.1.1.49.0 2009.04.07 -
K7AntiVirus 7.10.695 2009.04.07 -
Kaspersky 7.0.0.125 2009.04.07 -
McAfee 5576 2009.04.06 -
McAfee+Artemis 5576 2009.04.06 -
McAfee-GW-Edition 6.7.6 2009.04.07 -
Microsoft 1.4502 2009.04.07 -
NOD32 3992 2009.04.07 -
Norman 6.00.06 2009.04.07 -
nProtect 2009.1.8.0 2009.04.07 -
Panda 10.0.0.14 2009.04.06 -
PCTools 4.4.2.0 2009.04.06 -
Prevx1 V2 2009.04.07 -
Rising 21.24.12.00 2009.04.07 -
Sophos 4.40.0 2009.04.07 -
Sunbelt 3.2.1858.2 2009.04.06 -
Symantec 1.4.4.12 2009.04.07 -
TheHacker 6.3.4.0.303 2009.04.07 -
TrendMicro 8.700.0.1004 2009.04.07 -
VBA32 3.12.10.2 2009.04.07 -
ViRobot 2009.4.7.1682 2009.04.07 -
VirusBuster 4.6.5.0 2009.04.06 -
Additional information
File size: 167936 bytes
MD5 : 370647190bc9170ca790070161ce6b1d
SHA1 : 9658890f99a17b4c80b93d307853b451dcc98636
SHA256: 20a7b04bd7fa276d6ccfd04baa2411424560b76a9dec05c97bee8cdcc0d30661
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x179F2
timedatestamp.....: 0x3CC8FCA4 (Fri Apr 26 09:07:16 2002)
machinetype.......: 0x14C (Intel I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x1ED22 0x1F000 6.70 26a34536061ae4c4ce8ef2d4585a9c24
.rdata 0x20000 0x158B 0x2000 4.34 cbd31ac30bfbf4e923b478aa5c47be65
.data 0x22000 0x3D8AC 0x2000 3.66 5401f186a84eba6c32896650ca003283
.MYDATAS 0x60000 0xB87 0x1000 3.58 57dc409a9f666984abc3565f8822d424
.reloc 0x61000 0x3B02 0x4000 5.27 054764620e56b5873e035a2aec17ca1f

( 3 imports )

> gdi32.dll: GetStockObject
> kernel32.dll: GlobalLock, GlobalUnlock, GetVersionExA, GetSystemPowerStatus, lstrcatA, GlobalFree, GlobalAlloc, GetWindowsDirectoryA, WaitForSingleObject, CreateThread, CreateEventA, PulseEvent, Sleep, CloseHandle, GetExitCodeThread, ResetEvent, SetEvent, GetPrivateProfileIntA, _lclose, OpenFile, SetFileAttributesA, WritePrivateProfileStringA, _lwrite, _lcreat, _lread, _lopen, GlobalHandle, GetLastError, DeviceIoControl, CreateFileA, WriteFile, ReadFile, lstrcpyA, TlsSetValue, GetModuleFileNameA, DeleteCriticalSection, RtlUnwind, SetEndOfFile, RaiseException, LCMapStringW, LCMapStringA, SleepEx, GetCommandLineA, GetVersion, HeapFree, HeapAlloc, GetCurrentThreadId, GetTickCount, TlsAlloc, TlsFree, SetLastError, TlsGetValue, GetProcAddress, GetModuleHandleA, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, ExitProcess, TerminateProcess, GetCurrentProcess, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, GetStringTypeW, FreeEnvironmentStringsA, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, HeapDestroy, HeapCreate, VirtualFree, VirtualAlloc, HeapReAlloc, GetCPInfo, InterlockedDecrement, InterlockedIncrement, SetFilePointer, SetStdHandle, FlushFileBuffers, GetACP, GetOEMCP, LoadLibraryA, MultiByteToWideChar, GetStringTypeA
> user32.dll: GetFocus, PeekMessageA, SetRect, CopyRect, SetRectEmpty, DefWindowProcA, GetClassInfoA, LoadIconA, LoadCursorA, RegisterClassA, CreateWindowExA, DestroyWindow, UnregisterClassA, wsprintfA, MessageBeep, MessageBoxA

( 1 exports )

> ART_AbortSCAN, ART_SCAN_CheckAutoScanButton, ART_SCAN_ChkDevHasBeenRemoved, ART_SCAN_EndBatchScan, ART_SCAN_EndModule, ART_SCAN_EndScan, ART_SCAN_FindBalance, ART_SCAN_GetData, ART_SCAN_GetDllCount, ART_SCAN_GetDrvCap, ART_SCAN_GetInfo, ART_SCAN_GetInterfaceInfo, ART_SCAN_GetLastError, ART_SCAN_GetLptMode, ART_SCAN_GetMaxScanSize, ART_SCAN_IfADFWork, ART_SCAN_InitModule, ART_SCAN_Park, ART_SCAN_ResetAutoScanButton, ART_SCAN_SetFocusWnd, ART_SCAN_SetParam, ART_SCAN_StartBatchScan, ART_SCAN_StartScan, ART_SCAN_TurnLamp, ART_SCAN_WarmUpLamp, Flora_Entry
TrID : File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
ssdeep: 3072:Ld92EJgcydv4NOLtK/lNW41KMvxuBOerNBD6XnZPaopMuO+9E:Ld9Ngcy54ELtAOMvxuIerr6XFW
PEiD : Armadillo v1.xx - v2.xx
RDS : NSRL Reference Data Set
-

C:\WINDOWS\is-O33V2.exe

Antivirus Version Last Update Result
a-squared 4.5.0.50 2010.03.07 -
AhnLab-V3 5.0.0.2 2010.03.07 -
AntiVir 8.2.1.180 2010.03.05 -
Antiy-AVL 2.0.3.7 2010.03.05 -
Authentium 5.2.0.5 2010.03.06 -
Avast 4.8.1351.0 2010.03.07 -
Avast5 5.0.332.0 2010.03.07 -
AVG 9.0.0.787 2010.03.07 -
BitDefender 7.2 2010.03.07 -
CAT-QuickHeal 10.00 2010.03.06 -
ClamAV 0.96.0.0-git 2010.03.06 -
Comodo 4091 2010.02.28 -
DrWeb 5.0.1.12222 2010.03.07 -
eSafe 7.0.17.0 2010.03.04 Win32.Banker
eTrust-Vet 35.2.7342 2010.03.05 -
F-Prot 4.5.1.85 2010.03.06 -
F-Secure 9.0.15370.0 2010.03.07 -
Fortinet 4.0.14.0 2010.03.07 -
GData 19 2010.03.07 -
Ikarus T3.1.1.80.0 2010.03.07 -
Jiangmin 13.0.900 2010.03.07 -
K7AntiVirus 7.10.990 2010.03.04 -
Kaspersky 7.0.0.125 2010.03.07 -
McAfee 5912 2010.03.06 -
McAfee+Artemis 5912 2010.03.06 -
McAfee-GW-Edition 6.8.5 2010.03.07 Heuristic.BehavesLike.Win32.Spyware.J
Microsoft 1.5502 2010.03.07 -
NOD32 4922 2010.03.07 -
Norman 6.04.08 2010.03.07 -
nProtect 2009.1.8.0 2010.03.07 -
Panda 10.0.2.2 2010.03.07 -
PCTools 7.0.3.5 2010.03.04 -
Prevx 3.0 2010.03.08 -
Rising 22.37.06.04 2010.03.07 -
Sophos 4.51.0 2010.03.07 -
Sunbelt 5780 2010.03.07 -
Symantec 20091.2.0.41 2010.03.07 -
TheHacker 6.5.1.9.223 2010.03.07 -
TrendMicro 9.120.0.1004 2010.03.07 -
VBA32 3.12.12.2 2010.03.05 -
ViRobot 2010.3.5.2214 2010.03.05 -
VirusBuster 5.0.27.0 2010.03.06 -
Additional information
File size: 685056 bytes
MD5 : faa7a3c2f20d54b0a0d6f3437fc11d50
SHA1 : d04c079e558a4493c7ee460ef38a8fa4c043d6fc
SHA256: acb7971737aa8cdec071733700243079620fc72b8779d6a9433304b6725f5424
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x90B04
timedatestamp.....: 0x2A425E19 (Sat Jun 20 00:22:17 1992)
machinetype.......: 0x14C (Intel I386)

( 8 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0x8FD34 0x8FE00 6.59 14845ac96af400d883c79c670404b4d2
DATA 0x91000 0xF70 0x1000 4.30 5b5b5131230aa2d505134437519c9eed
BSS 0x92000 0x13AC 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.idata 0x94000 0x25A4 0x2600 4.93 e31473a4f3c3c5e310b54a1695d2dc0a
.tls 0x97000 0x8 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0x98000 0x18 0x200 0.20 2576789ccaafa41177b70528c836b8df
.reloc 0x99000 0x850C 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0xA2000 0x13A00 0x13A00 4.92 9aff204abe7ef34a0c023eb372259982

( 0 imports )


( 0 exports )
TrID : File type identification
Windows OCX File (86.8%)
Win32 Executable Delphi generic (10.3%)
Generic Win/DOS Executable (1.4%)
DOS Executable Generic (1.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
ThreatExpert: http://www.threatexpert.com/report.aspx ... 437fc11d50
ssdeep: 12288:v/vksLWtSNrPi37NzHDA6Y1gbl5d7Ifoz4mrNNpRpzqjxy:HvksLWtkrPi37NzHDA6Yg5dsfoTzsxy
sigcheck: publisher....: n/a
copyright....: n/a
product......: n/a
description..: Setup/Uninstall
original name: n/a
internal name: n/a
file version.: 51.49.0.0
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
PEiD : -
CWSandbox: http://research.sunbelt-software.com/pa ... 437fc11d50
RDS : NSRL Reference Data Set
-

[motji]

Jak to vypadá s počítačem?

[fildo_pb]

no s počítačom to vyzerá vcelku dobre, až na to, že mi napísalo, že je vírus v Combofix.exe a v priečinku System Volume Information...

[motji]

no s počítačom to vyzerá vcelku dobre, až na to, že mi napísalo, že je vírus v Combofix.exe a v priečinku System Volume Information...

A to Vám napsalo co? Váš antivir?
Combofix - falešná detekce, navíc combofix už by jste mít v počítači neměl .
Obnovu systému jsme čistili přes T-cleaner, ale můžete ji vypnout, restartovat počítače a zase zapnout, tím se smažou body obnovy (viz SVI v podpise).

[fildo_pb]

Win32/Agent trojský kôň - obi dvoje

ale s počítačom to už vyzerá dobre...

[motji]

Ještě smažte tento soubor C:\WINDOWS\is-O33V2.exe, a pokud nejsou problémy, je to vše