prosim o kontrolu logu viry win32 Vyřešeno

[Damned]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený zeleně:

File::
c:\documents and settings\All Users\Application Data\TEMP\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\PostBuild.exe

Folder::
c:\documents and settings\All Users\Application Data\TEMP
c:\program files\Webteh

DirLook::
c:\program files\PVD15

RegNull::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]





Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.


Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

[Reklama]

[pikass]

Tak tady je ten novi log

ComboFix 09-07-13.01 - Petr 15.07.2009 16:55.6.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.1526.1019 [GMT 1:00]
Spuštěný z: c:\documents and settings\Petr\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Petr\Desktop\CFScript.txt
AV: avast! antivirus 4.8.1335 [VPS 090714-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Sunbelt Personal Firewall *disabled* {82B1150E-9B37-49FC-83EB-D52197D900D0}

FILE ::
"c:\documents and settings\All Users\Application Data\TEMP\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\PostBuild.exe"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\PostBuild.exe
c:\documents and settings\All Users\Application Data\TEMP\1493A0EF.TMP
c:\documents and settings\All Users\Application Data\TEMP\30FD0CBD.TMP
c:\documents and settings\All Users\Application Data\TEMP\CB0AACC9.TMP
c:\program files\Webteh
c:\program files\Webteh\BSplayer\AC3 Filter\_changes_eng.txt
c:\program files\Webteh\BSplayer\AC3 Filter\_changes_rus.txt
c:\program files\Webteh\BSplayer\AC3 Filter\_readme.txt
c:\program files\Webteh\BSplayer\AC3 Filter\ac3config.exe
c:\program files\Webteh\BSplayer\AC3 Filter\ac3config.exe.manifest
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter.acm
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter.ax
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter.ax.manifest
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter_reg_presets.reg
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter_reg_renderers_win2k.reg
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter_reg_renderers_win9x.reg
c:\program files\Webteh\BSplayer\AC3 Filter\ac3filter_reg_reset.reg
c:\program files\Webteh\BSplayer\AC3 Filter\dialog_patch.exe
c:\program files\Webteh\BSplayer\AC3 Filter\doc\ac3filter_eng.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\doc\ac3filter_rus.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\doc\loudness_eng.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\doc\loudness_rus.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\doc\spdif_eng.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\doc\spdif_rus.pdf
c:\program files\Webteh\BSplayer\AC3 Filter\GPL_eng.txt
c:\program files\Webteh\BSplayer\AC3 Filter\GPL_rus.txt
c:\program files\Webteh\BSplayer\AC3 Filter\iconv.dll
c:\program files\Webteh\BSplayer\AC3 Filter\lang\ac3filter.pot
c:\program files\Webteh\BSplayer\AC3 Filter\lang\fre.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\ger.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\hun.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\ind.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\ita.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\kor.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\pol.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\por.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\rus.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\slo.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\spa.po
c:\program files\Webteh\BSplayer\AC3 Filter\lang\zho.po
c:\program files\Webteh\BSplayer\AC3 Filter\uninstall.exe
c:\program files\Webteh\BSplayer\AC3 Filter\unreg.log
c:\program files\Webteh\BSplayer\bplay.exe
c:\program files\Webteh\BSplayer\bslib\bslib.dll
c:\program files\Webteh\BSplayer\bslib\BSPMLIB.DAT
c:\program files\Webteh\BSplayer\bslib\BSPMLIB2.DAT
c:\program files\Webteh\BSplayer\bslib\pcnt.dat
c:\program files\Webteh\BSplayer\bspcodecdl.exe
c:\program files\Webteh\BSplayer\bspfilters.sam
c:\program files\Webteh\BSplayer\bsplay.exe
c:\program files\Webteh\BSplayer\bsplayer.exe
c:\program files\Webteh\BSplayer\bsplayer.exe.manifest
c:\program files\Webteh\BSplayer\BSplayer.xml
c:\program files\Webteh\BSplayer\bsplist.bsl
c:\program files\Webteh\BSplayer\bsrendv2.dll
c:\program files\Webteh\BSplayer\doc\cmdline.txt
c:\program files\Webteh\BSplayer\doc\ini_files.html
c:\program files\Webteh\BSplayer\EQ.xml
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\andreas_78er.matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\andreas_doppelte_99er.matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\andreas_einfache_99er.matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Bulletproof's Heavy Compression Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Bulletproof's High Quality Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\CG-Animation Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_autogk_sharp.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_avc_hr.cfg
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v1.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v3ehr.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v3hr.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v3lr.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v3uhr_rev2.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\eqm_v3ulr_rev3.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\hvs-best-picture.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\hvs-better-picture.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\hvs-good-picture.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Low Bitrate Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\MPEG.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\pvcd.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\q_matrix.cfg
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\q_matrix_def.cfg
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\q_matrix2.cfg
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Soulhunters V3.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Soulhunters V5.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Standard.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Ultimate Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Ultra Low Bitrate Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\custom matrices\Very Low Bitrate Matrix.xcm
c:\program files\Webteh\BSplayer\FFDShow\ff_kernelDeint.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_liba52.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_libdts.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_libfaad2.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_libmad.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_realaac.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_samplerate.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_theora.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_tremor.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_unrar.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_wmv9.dll
c:\program files\Webteh\BSplayer\FFDShow\ff_x264.dll
c:\program files\Webteh\BSplayer\FFDShow\ffdshow.ax
c:\program files\Webteh\BSplayer\FFDShow\ffdshow.ax.manifest
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1026.bg
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1028.tc
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1029.cz
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1031.de
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1033.en
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1034.es
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1035.fi
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1036.fr
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1038.hu
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1040.it
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1041.ja
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1041.jp
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1045.pl
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1046.br
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1049.ru
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1051.sk
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.1053.se
c:\program files\Webteh\BSplayer\FFDShow\languages\ffdshow.2052.sc
c:\program files\Webteh\BSplayer\FFDShow\libavcodec.dll
c:\program files\Webteh\BSplayer\FFDShow\libmpeg2_ff.dll
c:\program files\Webteh\BSplayer\FFDShow\libmplayer.dll
c:\program files\Webteh\BSplayer\FFDShow\msvcp71.dll
c:\program files\Webteh\BSplayer\FFDShow\msvcr71.dll
c:\program files\Webteh\BSplayer\FFDShow\openIE.js
c:\program files\Webteh\BSplayer\FFDShow\pthreadGC2.dll
c:\program files\Webteh\BSplayer\FFDShow\TomsMoComp_ff.dll
c:\program files\Webteh\BSplayer\FFDShow\unins000.dat
c:\program files\Webteh\BSplayer\FFDShow\unins000.exe
c:\program files\Webteh\BSplayer\FFDShow\unreg.log
c:\program files\Webteh\BSplayer\FFDShow\xvidcore.dll
c:\program files\Webteh\BSplayer\Flash Video (FLV)\FLVSplitter.ax
c:\program files\Webteh\BSplayer\Flash Video (FLV)\unreg.log
c:\program files\Webteh\BSplayer\Haali media splitter\avi.dll
c:\program files\Webteh\BSplayer\Haali media splitter\avs.dll
c:\program files\Webteh\BSplayer\Haali media splitter\avss.dll
c:\program files\Webteh\BSplayer\Haali media splitter\cue2xml.js
c:\program files\Webteh\BSplayer\Haali media splitter\dsmux.exe
c:\program files\Webteh\BSplayer\Haali media splitter\dxr.dll
c:\program files\Webteh\BSplayer\Haali media splitter\gdsmux.exe
c:\program files\Webteh\BSplayer\Haali media splitter\mkunicode.dll
c:\program files\Webteh\BSplayer\Haali media splitter\mkv2vfr.exe
c:\program files\Webteh\BSplayer\Haali media splitter\mkx.dll
c:\program files\Webteh\BSplayer\Haali media splitter\mkzlib.dll
c:\program files\Webteh\BSplayer\Haali media splitter\mmfinfo.dll
c:\program files\Webteh\BSplayer\Haali media splitter\mp4.dll
c:\program files\Webteh\BSplayer\Haali media splitter\ogm.dll
c:\program files\Webteh\BSplayer\Haali media splitter\splitter.ax
c:\program files\Webteh\BSplayer\Haali media splitter\ts.dll
c:\program files\Webteh\BSplayer\Haali media splitter\uninstall.exe
c:\program files\Webteh\BSplayer\Haali media splitter\unreg.log
c:\program files\Webteh\BSplayer\changes.txt
c:\program files\Webteh\BSplayer\insfiles\BSplayer.xml
c:\program files\Webteh\BSplayer\insfiles\BSPMLIB.DAT
c:\program files\Webteh\BSplayer\insfiles\BSPMLIB2.DAT
c:\program files\Webteh\BSplayer\insfiles\EQ.xml
c:\program files\Webteh\BSplayer\lang\Arabic.lng
c:\program files\Webteh\BSplayer\lang\Arabic2.lng
c:\program files\Webteh\BSplayer\lang\Belarusian.lng
c:\program files\Webteh\BSplayer\lang\Bosnian.lng
c:\program files\Webteh\BSplayer\lang\Breton.lng
c:\program files\Webteh\BSplayer\lang\Bulgarian.lng
c:\program files\Webteh\BSplayer\lang\Catalan.lng
c:\program files\Webteh\BSplayer\lang\Croatian.lng
c:\program files\Webteh\BSplayer\lang\Czech.lng
c:\program files\Webteh\BSplayer\lang\Danish.lng
c:\program files\Webteh\BSplayer\lang\Dutch.lng
c:\program files\Webteh\BSplayer\lang\English.lng
c:\program files\Webteh\BSplayer\lang\Esperanto.lng
c:\program files\Webteh\BSplayer\lang\Estonian.lng
c:\program files\Webteh\BSplayer\lang\Finnish.lng
c:\program files\Webteh\BSplayer\lang\French.lng
c:\program files\Webteh\BSplayer\lang\Galician.lng
c:\program files\Webteh\BSplayer\lang\German.lng
c:\program files\Webteh\BSplayer\lang\Greek.lng
c:\program files\Webteh\BSplayer\lang\Hebrew.lng
c:\program files\Webteh\BSplayer\lang\Hungarian.lng
c:\program files\Webteh\BSplayer\lang\Chinese_Simplified.lng
c:\program files\Webteh\BSplayer\lang\Chinese_Traditional.lng
c:\program files\Webteh\BSplayer\lang\Italian.lng
c:\program files\Webteh\BSplayer\lang\lang_changes.txt
c:\program files\Webteh\BSplayer\lang\Latvian.lng
c:\program files\Webteh\BSplayer\lang\Lithuanian.lng
c:\program files\Webteh\BSplayer\lang\Macedonian.lng
c:\program files\Webteh\BSplayer\lang\Norwegian.lng
c:\program files\Webteh\BSplayer\lang\Polish.lng
c:\program files\Webteh\BSplayer\lang\Portuguese.lng
c:\program files\Webteh\BSplayer\lang\Portuguese_Brazilian.lng
c:\program files\Webteh\BSplayer\lang\Romanian.lng
c:\program files\Webteh\BSplayer\lang\Russian.lng
c:\program files\Webteh\BSplayer\lang\Serbian (Cyrillic).lng
c:\program files\Webteh\BSplayer\lang\Serbian (Latin).lng
c:\program files\Webteh\BSplayer\lang\Slovak.lng
c:\program files\Webteh\BSplayer\lang\Slovenian.lng
c:\program files\Webteh\BSplayer\lang\Spanish.lng
c:\program files\Webteh\BSplayer\lang\Swedish.lng
c:\program files\Webteh\BSplayer\lang\Turkish.lng
c:\program files\Webteh\BSplayer\lang\Ukrainian.lng
c:\program files\Webteh\BSplayer\lang\Uzbek.lng
c:\program files\Webteh\BSplayer\lang\Valenciŕ.lng
c:\program files\Webteh\BSplayer\Media\Umek - Posing As Me clip.mp3
c:\program files\Webteh\BSplayer\mmkeybsupp.dll
c:\program files\Webteh\BSplayer\MPEG2 decoder\Mpeg2DecFilter.ax
c:\program files\Webteh\BSplayer\MPEG2 decoder\unreg.log
c:\program files\Webteh\BSplayer\plugins\oldskin.dll
c:\program files\Webteh\BSplayer\RealMedia splitter\RealMediaSplitter.ax
c:\program files\Webteh\BSplayer\RealMedia splitter\unreg.log
c:\program files\Webteh\BSplayer\sdk\bsp.h
c:\program files\Webteh\BSplayer\sdk\bsp.pas
c:\program files\Webteh\BSplayer\sdk\plugins\bspplg.h
c:\program files\Webteh\BSplayer\sdk\plugins\bspplg.pas
c:\program files\Webteh\BSplayer\sdk\plugins\C\Sample\sample_plugin.def
c:\program files\Webteh\BSplayer\sdk\plugins\C\Sample\sample_plugin.dsp
c:\program files\Webteh\BSplayer\sdk\plugins\C\Sample\sample_plugin.dsw
c:\program files\Webteh\BSplayer\sdk\plugins\C\Sample\sampleplugin.c
c:\program files\Webteh\BSplayer\sdk\plugins\C\sample_subtitles\sample_sub.c
c:\program files\Webteh\BSplayer\sdk\plugins\C\sample_subtitles\sample_sub.def
c:\program files\Webteh\BSplayer\sdk\plugins\C\sample_subtitles\sample_subtitles.dsp
c:\program files\Webteh\BSplayer\sdk\plugins\C\sample_subtitles\sample_subtitles.dsw
c:\program files\Webteh\BSplayer\sdk\plugins\Delphi\sample\sample_plugin.dpr
c:\program files\Webteh\BSplayer\sdk\plugins\Delphi\sample_subtitles\sample_sub.dpr
c:\program files\Webteh\BSplayer\Skins\Base\actaspbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\actsubbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\actsubpbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\actvolbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b1u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b3a.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b3d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b3n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b3u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b4a.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b4d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b4n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b4u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b5a.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b5d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b5n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b5u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b6n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b7n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b8.bmp
c:\program files\Webteh\BSplayer\Skins\Base\b8n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\balbtnn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btn_dn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btn_ln.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btn_rn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btn_un.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btncolorn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btngrp1bg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btnmenun.bmp
c:\program files\Webteh\BSplayer\Skins\Base\btnmenuu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eq.ini
c:\program files\Webteh\BSplayer\Skins\Base\eqbtn1a.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eqbtn1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eqbtn2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eqbtn2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eqbtnn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\eqmain.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn1u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn3n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn3u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn4n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exabtn4u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exaudioa.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exaudion.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exaudiou.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn1u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn3n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn3u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn4n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdbtn4u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdvda.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdvdn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exdvdu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exitn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exitu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exradioa.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exradion.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exradiou.bmp
c:\program files\Webteh\BSplayer\Skins\Base\extbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\extva.bmp
c:\program files\Webteh\BSplayer\Skins\Base\extvn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\extvu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn1a.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn3n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn3u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn4n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn4u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn5n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn5u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn6n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn6u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn7n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn7u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn8n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvbtn8u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvideoa.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvideon.bmp
c:\program files\Webteh\BSplayer\Skins\Base\exvideou.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsactbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb1d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb1n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb1u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb2d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb3d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb3n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb3u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb4d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb4n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb4u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb5d.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb5n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsb5u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsmain.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsn.BMP
c:\program files\Webteh\BSplayer\Skins\Base\fsnextd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsnextn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsnextu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsopend.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsopenn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsopenu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fspaused.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fspausen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fspauseu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsplayd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsplayn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsplayu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsprevd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsprevn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsprevu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsseek.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsseeku.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsstopd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsstopn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsstopu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\fsu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\grp2.bmp
c:\program files\Webteh\BSplayer\Skins\Base\main.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\arr2n.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\arr2u.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\arrn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\arru.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\audiosec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\audiosec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\bgmedia.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\bottomsec.ini
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnaddn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnaddpln.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnclosed.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnclosen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btncloseu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnmaxd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnmaxn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnmaxu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnmind.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnminn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnminu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnnextd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnnextn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnnextu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnpaused.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnpausen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnpauseu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnplayd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnplayn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnplayu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnprevd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnprevn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnprevu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrefresha.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrefreshn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrepa.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrepn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrestd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrestn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnrestu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnshufa.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\btnshufn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\busy.mng
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ctrlsimg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\dvdsec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\dvdsec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\edb.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ede.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\img_bar1.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ltbm.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\main.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\media_tv_sep_top.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_adddn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_adddu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addfln.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addflu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addfn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addfu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addln.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_addlu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_pausen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_pauseu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_playn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_playu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_refrn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_refru.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\ml_video_defaultbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\othersec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\pic_place.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\podsec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\podsec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\radiosec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\radiosec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\searchbtn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\seek.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\seekbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\seekbtnd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\seekbtnn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\seekbtnu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\skin.ini
c:\program files\Webteh\BSplayer\Skins\Base\medialib\thumbaudio.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\thumbbg.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\thumbbga.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\tvsec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\tvsec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\videosec.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\videosec_big.bmp
c:\program files\Webteh\BSplayer\Skins\Base\medialib\volume.bmp
c:\program files\Webteh\BSplayer\Skins\Base\minimizen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\minimizeu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\mutea.bmp
c:\program files\Webteh\BSplayer\Skins\Base\muted.bmp
c:\program files\Webteh\BSplayer\Skins\Base\muten.bmp
c:\program files\Webteh\BSplayer\Skins\Base\muteu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\nextd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\nextn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\nextu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\opend.bmp
c:\program files\Webteh\BSplayer\Skins\Base\openn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\openu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\paused.bmp
c:\program files\Webteh\BSplayer\Skins\Base\pausen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\pauseu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\playd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\playn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\playu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\plist.ini
c:\program files\Webteh\BSplayer\Skins\Base\prevd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\prevn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\prevu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\rgn.dat
c:\program files\Webteh\BSplayer\Skins\Base\rgnfs.dat
c:\program files\Webteh\BSplayer\Skins\Base\seek.bmp
c:\program files\Webteh\BSplayer\Skins\Base\seeku.bmp
c:\program files\Webteh\BSplayer\Skins\Base\skin.ini
c:\program files\Webteh\BSplayer\Skins\Base\skinfs.ini
c:\program files\Webteh\BSplayer\Skins\Base\sm_closed.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_closen.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_closeu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_maxd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_maxn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_maxu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_mind.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_minn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\sm_minu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\smenud.bmp
c:\program files\Webteh\BSplayer\Skins\Base\smenun.bmp
c:\program files\Webteh\BSplayer\Skins\Base\smenuu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\stopd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\stopn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\stopu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\voldd.bmp
c:\program files\Webteh\BSplayer\Skins\Base\voldn.bmp
c:\program files\Webteh\BSplayer\Skins\Base\voldu.bmp
c:\program files\Webteh\BSplayer\Skins\Base\volud.bmp
c:\program files\Webteh\BSplayer\Skins\Base\volume.bmp
c:\program files\Webteh\BSplayer\Skins\Base\volun.bmp
c:\program files\Webteh\BSplayer\Skins\Base\voluu.bmp
c:\program files\Webteh\BSplayer\Skins\Bat lite.bsz
c:\program files\Webteh\BSplayer\Skins\BSplayer.v1.bsz
c:\program files\Webteh\BSplayer\Skins\mediaBOX v-1.bsz
c:\program files\Webteh\BSplayer\Skins\MediaBOX V-2.bsz
c:\program files\Webteh\BSplayer\uninstall.EXE

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-06-15 do 2009-07-15 )))))))))))))))))))))))))))))))
.

2009-07-15 00:35 . 2009-07-15 00:35 -------- d-----w- c:\windows\LastGood
2009-07-13 19:09 . 2009-07-13 12:36 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-13 19:09 . 2009-07-13 12:36 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-07-13 19:09 . 2009-07-13 19:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-07-12 09:37 . 2009-07-12 09:37 -------- d-sh--w- c:\documents and settings\Petr\IECompatCache
2009-07-11 11:28 . 2009-07-11 11:28 -------- d-----w- c:\program files\PVD15
2009-07-06 17:08 . 2009-07-06 17:08 -------- d-sh--w- c:\documents and settings\Petr\PrivacIE
2009-07-05 20:45 . 2001-09-12 01:21 98304 ----a-w- c:\windows\system32\tsccvid.dll
2009-06-30 16:12 . 2008-12-11 12:31 27904 ----a-w- c:\windows\system32\uxtuneup.dll
2009-06-30 16:12 . 2009-06-30 16:12 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-06-27 13:08 . 2009-06-27 13:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony
2009-06-26 17:18 . 2009-06-26 17:18 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-06-26 16:57 . 2009-06-26 16:57 -------- d-sh--w- c:\documents and settings\Petr\IETldCache
2009-06-26 16:00 . 2009-06-02 10:12 102912 ------w- c:\windows\system32\dllcache\iecompat.dll
2009-06-26 16:00 . 2009-06-26 16:00 -------- d-----w- c:\windows\ie8updates
2009-06-26 16:00 . 2009-04-30 21:22 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2009-06-26 16:00 . 2009-04-30 21:22 246272 ------w- c:\windows\system32\dllcache\ieproxy.dll
2009-06-26 15:57 . 2009-06-26 15:57 -------- d--h--w- c:\windows\ie8
2009-06-22 17:26 . 2009-06-29 17:34 314712 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\threatwork.exe
2009-06-22 17:26 . 2009-07-13 17:30 25440 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\savapibridge.dll
2009-06-22 17:26 . 2009-06-29 17:33 169312 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lavamessage.dll
2009-06-22 17:26 . 2009-06-29 17:33 348496 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lavalicense.dll
2009-06-22 17:26 . 2009-06-29 17:33 298336 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\UpdateManager.dll
2009-06-22 17:25 . 2009-07-13 17:29 1630560 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Resources.dll
2009-06-22 17:25 . 2009-06-29 17:30 85352 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Drivers\32\AAWDriverTool.exe
2009-06-22 17:25 . 2009-06-29 17:30 664424 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\CEAPI.dll
2009-06-22 17:25 . 2009-06-29 17:29 563064 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe
2009-06-22 17:25 . 2009-06-29 17:29 566632 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe
2009-06-22 17:25 . 2009-07-13 17:29 2353480 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
2009-06-22 17:25 . 2009-06-29 17:27 629072 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWWSC.exe
2009-06-22 17:25 . 2009-07-13 17:29 520024 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWTray.exe
2009-06-22 17:25 . 2009-07-13 17:29 1029456 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWService.exe
2009-06-16 14:36 . 2009-06-16 14:36 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2009-06-16 14:36 . 2009-06-16 14:36 119808 ------w- c:\windows\system32\dllcache\t2embed.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-14 10:32 . 2006-08-22 05:12 12 ----a-w- c:\windows\bthservsdp.dat
2009-06-30 16:12 . 2009-01-11 21:44 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2009-06-29 17:33 . 2009-06-01 17:46 84832 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\ShellExt.dll
2009-06-29 17:31 . 2009-06-01 17:35 246128 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\RPAPI.dll
2009-06-29 17:30 . 2009-06-01 17:35 40288 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\PrivacyClean.dll
2009-06-16 14:36 . 2004-08-04 04:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2004-08-04 04:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-03 19:09 . 2004-08-04 04:00 1291264 ----a-w- c:\windows\system32\quartz.dll
2009-06-01 17:47 . 2009-06-01 17:47 15688 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lsdelete.exe
2009-06-01 17:47 . 2009-03-16 18:12 15688 ----a-w- c:\windows\system32\lsdelete.exe
2009-05-31 19:17 . 2009-05-31 19:17 -------- d-----w- c:\program files\Conduit
2009-05-30 08:47 . 2009-05-30 08:47 -------- d-----w- c:\documents and settings\Petr\Application Data\Publish Providers
2009-05-30 08:45 . 2009-05-30 08:45 -------- d-----w- c:\documents and settings\Petr\Application Data\Sony
2009-05-25 19:57 . 2009-05-25 19:57 -------- d-----w- c:\program files\Sony Setup
2009-05-24 15:46 . 2007-03-10 11:34 46944 ----a-w- c:\documents and settings\Petr\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-23 07:35 . 2009-05-23 07:35 -------- d-----w- c:\documents and settings\All Users\Application Data\SmartSound Software Inc
2009-05-23 07:35 . 2009-05-23 07:35 -------- d-----w- c:\program files\SmartSound Software
2009-05-13 05:15 . 2006-01-09 10:08 915456 ----a-w- c:\windows\system32\wininet.dll
2009-05-07 15:32 . 2004-08-04 04:00 345600 ----a-w- c:\windows\system32\localspl.dll
2009-04-27 17:27 . 2009-04-27 17:27 64160 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Drivers\32\lbd.sys
2009-04-27 17:27 . 2009-03-16 17:24 64160 ----a-w- c:\windows\system32\drivers\Lbd.sys
2009-04-17 12:26 . 2004-08-04 04:00 1847168 ----a-w- c:\windows\system32\win32k.sys
2004-12-07 08:13 . 2004-12-07 08:13 976020 ----a-w- c:\program files\BDAXP.cab
2009-06-16 20:55 . 2008-06-22 07:34 134648 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\program files\PVD15 ----

2009-07-11 11:54 . 2009-07-13 18:02 532 ----a-w- c:\program files\PVD15\WinPsaciStroj.ini
2009-07-11 11:28 . 2009-07-11 11:28 45 ----a-w- c:\program files\PVD15\WinPsaciStroj.url
2009-07-11 11:28 . 2006-10-04 15:25 3663 ----a-w- c:\program files\PVD15\README.TXT
2009-07-11 11:28 . 2006-10-04 13:48 65014 ----a-w- c:\program files\PVD15\PV10CC.dat
2009-07-11 11:28 . 2003-01-02 12:26 30285 ----a-w- c:\program files\PVD15\PV10CBZ.dat
2009-07-11 11:28 . 2003-01-02 12:26 30834 ----a-w- c:\program files\PVD15\PV10CBY.dat
2009-07-11 11:28 . 2006-10-04 13:48 24879 ----a-w- c:\program files\PVD15\PV10CA.dat
2009-07-11 11:28 . 2006-10-04 15:26 1122 ----a-w- c:\program files\PVD15\LICENCE.TXT
2009-07-11 11:28 . 2003-01-14 14:24 33659 ----a-w- c:\program files\PVD15\PV10.HLP
2009-07-11 11:28 . 2006-10-04 14:37 605184 ----a-w- c:\program files\PVD15\WinPsaciStroj.exe
2009-07-11 11:28 . 2009-07-11 11:28 670701 ----a-w- c:\program files\PVD15\unins000.exe
2009-07-11 11:28 . 2009-07-11 11:28 2491 ----a-w- c:\program files\PVD15\unins000.dat


((((((((((((((((((((((((((((( SnapShot@2009-07-13_20.41.01 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-14 15:39 . 2009-07-14 15:39 16384 c:\windows\Temp\Perflib_Perfdata_3cc.dat
+ 2009-07-14 15:39 . 2009-07-14 15:39 16384 c:\windows\Temp\Perflib_Perfdata_3a8.dat
+ 2008-05-07 05:12 . 2009-06-03 19:09 1291264 c:\windows\system32\dllcache\quartz.dll
+ 2007-04-04 11:32 . 2009-07-07 15:10 24539592 c:\windows\system32\MRT.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Svátky a výročí"="c:\program files\OKsoftware\Svátky a výročí\Vyroci.exe" [2002-11-29 4749824]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2007-01-05 204288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-08-10 352256]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-07-13 520024]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\documents and settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
"PHIME2002A"=c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
"PHIME2002ASync"=c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
"ntiMUI"=c:\program files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
"tsnp2std"=c:\windows\tsnp2std.exe
"PCSuiteTrayApplication"=c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
"snp2std"=c:\windows\vsnp2std.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"d:\\HRY\\NFS U2\\SPEED2.EXE"=
"d:\\HRY\\nfs most wantet\\speed.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"d:\\Phone\\Skype.exe"=

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [16.3.2009 18:24 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [15.5.2008 18:31 114768]
R1 kbfilter;Keyboard Filter Driver;c:\windows\system32\drivers\kbfilter.sys [12.1.2008 16:25 12856]
R1 prodrv03;Star Force copy protection driver v3;c:\windows\system32\drivers\prodrv03.sys [30.3.2008 10:55 115968]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [4.4.2009 17:10 270888]
R1 sbhips;Sunbelt HIPS Driver;c:\windows\system32\drivers\sbhips.sys [21.6.2008 4:54 66600]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [15.5.2008 18:31 20560]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 8:22 70912]
R2 SbPF.Launcher;SbPF.Launcher;c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [31.10.2008 7:24 95528]
R2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [31.10.2008 7:24 1365288]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [11.1.2009 22:44 603904]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [4.4.2009 17:10 65576]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [18.1.2009 21:34 1029456]
S4 AutoSyncService;Memeo AutoSync ;c:\program files\Memeo\AutoSync\MemeoService.exe [6.7.2007 17:28 31768]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Obsah adresáře 'Naplánované úlohy'

2009-07-13 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 17:29]

2009-07-15 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/def ... earch.html
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: ÓA±EIO3«ÁéIÂÔO(&B)
TCP: {F30B0D9C-6DBF-4F30-BA7A-265D561B5F4C} = 10.0.0.4,10.0.0.2
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
FF - ProfilePath - c:\documents and settings\Petr\Application Data\Mozilla\Firefox\Profiles\bhw1u3w5.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q=
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 1750559&q=
FF - component: c:\documents and settings\Petr\Application Data\Mozilla\Firefox\Profiles\bhw1u3w5.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}\platform\WINNT\components\EbayAccessService.dll
FF - component: c:\documents and settings\Petr\Application Data\Mozilla\Firefox\Profiles\bhw1u3w5.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}\platform\WINNT\components\EbayFormSubmitObserver.dll
FF - component: c:\documents and settings\Petr\Application Data\Mozilla\Firefox\Profiles\bhw1u3w5.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\FFAlert.dll
FF - component: c:\documents and settings\Petr\Application Data\Mozilla\Firefox\Profiles\bhw1u3w5.default\extensions\piclens@cooliris.com\components\coolirisstub.dll

---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.interval - 600000
FF - user.js: content.switch.threshold - 600000
FF - user.js: nglayout.initialpaint.delay - 600
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-15 17:11
Windows 5.1.2600 Service Pack 3 FAT NTAPI

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-4193024368-3511700768-2906882624-1005\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
Celkový čas: 2009-07-15 17:15
ComboFix-quarantined-files.txt 2009-07-15 16:15
ComboFix2.txt 2009-07-13 20:44

Před spuštěním: 2 445 099 008 bytes free
Po spuštění: 2 392 637 440 bytes free

708 --- E O F --- 2009-07-15 03:06

[Damned]

Smazalo se vše, co by mělo dělat neplechu.
Pokud by ti avast! zahlásil na externím disku nákazu, dej jí smazat, nebo umístit do karantény.

Odinstaluj ComboFix.
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix[mezera]/u

takže jestli nejsou problémy,tak vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš

(pozn.Pokud máš AVG, před stažením T-Cleaneru a po dobu čištění deaktivuj AVG, následně T-Cleaner smaž
a zapni si AVG.)


Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni select all found, pak klik empty selected.
Pokud chceš zachovat svoje uložená hesla, klikni na No.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache,
cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer,
Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
*****************************************************************************************************************************************
Stáhni si MWAV: http://www.microworldsystems.com/downlo ... s/mwav.exe a proveď s ním kontrolu (i na spyware) všech souborů a disků.

Problém by si tam již mít neměl. Označ topic za vyřešený (zelená fajfka) a měj se.

[pikass]

tak tan mwavmi nasel dost spamu jeste nejak e skodlive veci am t hodit log z toho programu?

[Damned]

Jasně, klidně ho sem dej.

[pikass]

nejde mi tu dat tel log z toho mwav nechce se to odeslat muzu nejak jinak odstranit ty spamy a infikovane soubory dik za radu