Kontrola logu zpomalený pc

Leandra · Příspěvekod **Leandra** » 14 bře 2010 01:28

Ahoj lidičky mám zpomalený pc mohl by mi někdo projet preventivku díky.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:27:41, on 14.3.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\WINDOWS\ALCWZRD.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
D:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\system32\wscntfy.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
D:\WINDOWS\system32\svchost.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
D:\WINDOWS\explorer.exe
D:\Program Files\Windows Media Player\wmplayer.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 5151 bytes

Reklama

Damned · Příspěvekod **Damned** » 14 bře 2010 03:01

Co ti oznamuje štít Windows vedle hodin?

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Leandra · Příspěvekod **Leandra** » 14 bře 2010 12:18

Já ho měla vyplej, zapomněla sem ho zapnout, protože sem měla nainstalovanej nějakej z netu a nedávno sem ho odinstalovala a zapomněla zapnout Firewall.

Tady kdyby si chtěl se zapnutím štítem:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:12:53, on 14.3.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\WINDOWS\ALCWZRD.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
D:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 5003 bytes

Mbam:
Malwarebytes' Anti-Malware 1.44
Verze databáze: 3759
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

14.3.2010 12:18:30
mbam-log-2010-03-14 (12-18-30).txt

Typ kontroly: Rychlá kontrola
Zkontrolované objekty: 115987
Uplynulý čas: 4 minute(s), 34 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
(Nebyly nalezeny žádné škodlivé položky)

Damned · Příspěvekod **Damned** » 14 bře 2010 15:29

Vypni rezidentní štít antiviru (pokud máš tak i antispyware).
Stáhni si ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

Leandra · Příspěvekod **Leandra** » 14 bře 2010 15:48

ComboFix 10-03-13.03 - PoKaRko 14.03.2010 15:37:15.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1466 [GMT 1:00]
Spuštěný z: d:\documents and settings\PoKaRko\Plocha\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100313-2] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

d:\windows\system32\BReWErS.dll
d:\windows\system32\Ijl11.dll
d:\windows\system32\vbpng1.dll
d:\windows\system32\win.ini

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-14 do 2010-03-14 )))))))))))))))))))))))))))))))
.

2010-03-14 12:33 . 2010-03-14 12:41 -------- d-----w- c:\program files\Startup Manager
2010-03-13 12:13 . 2009-03-09 14:27 453456 ----a-w- d:\windows\system32\d3dx10_41.dll
2010-03-13 12:13 . 2009-03-09 14:27 4178264 ----a-w- d:\windows\system32\D3DX9_41.dll
2010-03-13 12:13 . 2009-03-09 14:27 1846632 ----a-w- d:\windows\system32\D3DCompiler_41.dll
2010-03-13 12:13 . 2009-03-16 13:18 69448 ----a-w- d:\windows\system32\XAPOFX1_3.dll
2010-03-13 12:13 . 2009-03-16 13:18 517448 ----a-w- d:\windows\system32\XAudio2_4.dll
2010-03-13 12:13 . 2009-03-16 13:18 235352 ----a-w- d:\windows\system32\xactengine3_4.dll
2010-03-13 12:13 . 2009-03-16 13:18 22360 ----a-w- d:\windows\system32\X3DAudio1_6.dll
2010-03-13 00:23 . 2004-08-17 13:49 1032704 ----a-w- d:\windows\hacked.exe_original.exe
2010-03-13 00:23 . 2004-08-17 13:49 1032704 ----a-w- d:\windows\explorer2.exe
2010-03-13 00:06 . 2010-03-13 10:38 -------- d-----w- c:\program files\RegScrubXP
2010-03-13 00:06 . 2010-03-13 00:07 -------- d-----w- c:\program files\BillP Studios
2010-03-13 00:04 . 2010-03-13 00:04 -------- d-----w- c:\program files\Sunbelt Software
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- c:\program files\AIM
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- d:\program files\Common Files\Software Update Utility
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- d:\program files\Common Files\AOL
2010-03-04 23:35 . 2010-03-04 23:35 -------- d-----w- c:\program files\Corban Software
2010-03-03 12:13 . 2010-03-05 07:15 -------- d-----w- c:\program files\Skype Recorder
2010-03-02 17:06 . 2010-03-02 17:10 -------- d-----w- c:\program files\AV VCS 3.0
2010-03-02 16:37 . 2010-03-02 17:25 -------- d-----w- c:\program files\AV Vcs 4.0 DIAMOND
2010-03-02 16:29 . 2010-03-02 16:29 -------- d-----w- d:\program files\Common Files\Screaming Bee
2010-03-02 16:28 . 2010-03-02 16:28 -------- d-----w- c:\program files\Screaming Bee
2010-03-02 14:58 . 2010-03-02 15:01 -------- d-----w- c:\program files\GStudio7
2010-03-02 14:58 . 2010-03-02 14:58 -------- d-----w- d:\windows\Downloaded Installations
2010-03-02 13:23 . 2010-03-02 13:23 400 ----a-w- d:\windows\system32\drivers\biusvhm144.dat
2010-03-02 13:23 . 2010-03-02 13:23 -------- d-----w- c:\program files\Rhinoceros 4.0
2010-02-28 00:05 . 2010-02-28 00:06 -------- d-----w- c:\program files\Kopie - Metin2_CZ
2010-02-27 23:46 . 2004-08-17 13:49 221184 ----a-w- d:\windows\system32\wmpns.dll
2010-02-27 22:37 . 2010-02-27 22:37 -------- d-----w- c:\program files\TeamViewer3
2010-02-27 22:34 . 2010-02-27 22:52 -------- d-----w- d:\documents and settings\PoKaRko\.VirtualBox
2010-02-27 22:32 . 2009-12-17 14:02 123280 ----a-w- d:\windows\system32\drivers\VBoxDrv.sys
2010-02-27 22:32 . 2009-12-17 14:02 41616 ----a-w- d:\windows\system32\drivers\VBoxUSBMon.sys
2010-02-27 22:32 . 2010-02-27 22:32 -------- d-----w- c:\program files\Sun
2010-02-27 22:12 . 2010-02-27 22:16 -------- d-----w- d:\documents and settings\PoKaRko\temp
2010-02-27 22:05 . 2010-02-27 22:05 -------- d-----w- c:\program files\Opera
2010-02-27 16:21 . 2010-02-27 16:44 -------- d-----w- c:\program files\ICQ6.5
2010-02-27 16:15 . 2010-02-27 16:23 -------- d-----w- c:\program files\ICQ6
2010-02-26 22:56 . 2010-02-26 22:58 -------- d-----w- c:\program files\ScreenShots
2010-02-21 18:06 . 2010-02-21 18:06 -------- d--h--w- d:\windows\PIF
2010-02-20 20:37 . 2010-02-20 21:30 -------- d-----w- c:\program files\VirtualDJ
2010-02-19 13:56 . 2009-11-24 23:49 48560 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2010-02-19 13:56 . 2009-11-24 23:48 23120 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2010-02-19 13:56 . 2009-11-24 23:47 27408 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2010-02-19 13:56 . 2009-11-24 23:51 93424 ----a-w- d:\windows\system32\drivers\aswmon.sys
2010-02-19 13:56 . 2009-11-24 23:50 94160 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2010-02-19 13:56 . 2009-11-24 23:50 114768 ----a-w- d:\windows\system32\drivers\aswSP.sys
2010-02-19 13:56 . 2009-11-24 23:50 20560 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2010-02-19 13:56 . 2009-11-24 23:47 97480 ----a-w- d:\windows\system32\AvastSS.scr
2010-02-19 13:56 . 2009-11-24 23:54 1280480 ----a-w- d:\windows\system32\aswBoot.exe
2010-02-19 00:57 . 2010-02-19 00:57 -------- d-----w- c:\program files\Defraggler
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\UC.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\RAR.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\PKZIP.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\PKUNZIP.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\NOCLOSE.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\LHA.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\ARJ.PIF
2010-02-17 21:04 . 2010-02-27 15:43 25280 ----a-w- d:\windows\system32\drivers\hamachi.sys
2010-02-17 16:51 . 2010-02-19 01:56 -------- d-----w- c:\program files\FlightGear
2010-02-16 23:14 . 2010-02-16 23:17 -------- d-----w- d:\program files\Common Files\Autodesk Shared
2010-02-16 23:14 . 2010-02-19 01:55 -------- d-----w- c:\program files\Autodesk
2010-02-16 17:28 . 2010-02-16 17:28 -------- d-----w- D:\a20c7a66ddbbc64be89aa6
2010-02-16 12:44 . 2010-02-16 12:44 0 ----a-w- d:\windows\nsreg.dat
2010-02-16 11:52 . 2001-05-16 16:54 309616 ----a-w- d:\windows\system32\wmv8dmod.dll
2010-02-16 11:52 . 2001-05-11 12:18 420240 ----a-w- d:\windows\system32\mpg4c32.dll
2010-02-16 11:48 . 2010-02-19 01:56 -------- d-----w- c:\program files\MAGIX
2010-02-16 11:48 . 2007-04-27 09:43 120200 ----a-w- d:\windows\system32\DLLDEV32i.dll
2010-02-16 11:48 . 2010-02-16 11:51 -------- d-----w- d:\program files\Common Files\MAGIX Services
2010-02-14 23:56 . 2010-02-14 23:56 -------- d-----w- c:\program files\Flash Movie Player
2010-02-14 10:14 . 2010-02-14 10:14 -------- d-----w- c:\program files\Google
2010-02-14 08:55 . 2010-02-19 02:03 -------- d-----w- c:\program files\Handball Simulator 2010
2010-02-13 20:54 . 2010-02-15 07:15 -------- d-----w- c:\program files\majstersveta
2010-02-12 22:05 . 2005-10-21 01:47 12800 ------w- d:\windows\system32\drivers\usb8023x.sys
2010-02-12 22:05 . 2005-10-21 01:47 30592 ------w- d:\windows\system32\drivers\rndismpx.sys
2010-02-12 22:05 . 2010-02-12 22:05 -------- d-----w- c:\program files\Microsoft ActiveSync
2010-02-12 20:10 . 2008-10-15 05:22 452440 ----a-w- d:\windows\system32\d3dx10_40.dll
2010-02-12 20:10 . 2008-10-15 05:22 2036576 ----a-w- d:\windows\system32\D3DCompiler_40.dll
2010-02-12 20:10 . 2008-10-27 09:04 514384 ----a-w- d:\windows\system32\XAudio2_3.dll
2010-02-12 20:10 . 2008-10-27 09:04 70992 ----a-w- d:\windows\system32\XAPOFX1_2.dll
2010-02-12 20:10 . 2008-10-15 05:22 4379984 ----a-w- d:\windows\system32\D3DX9_40.dll
2010-02-12 20:10 . 2008-10-27 09:04 235856 ----a-w- d:\windows\system32\xactengine3_3.dll
2010-02-12 20:10 . 2008-10-27 09:04 23376 ----a-w- d:\windows\system32\X3DAudio1_5.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-14 11:23 . 2009-11-28 22:20 -------- d-----w- c:\program files\Metin2_CZ
2010-03-14 00:36 . 2010-02-11 10:54 66872 ----a-w- d:\windows\system32\PnkBstrA.exe
2010-03-13 13:05 . 2010-01-22 20:40 81920 ----a-w- d:\windows\system32\OpenAL32.dll
2010-03-13 12:04 . 2009-10-17 13:50 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-13 00:20 . 2001-11-24 18:02 432004 ----a-w- d:\windows\system32\perfh005.dat
2010-03-13 00:20 . 2001-11-24 18:02 79062 ----a-w- d:\windows\system32\perfc005.dat
2010-03-10 15:19 . 2010-01-22 20:40 444952 ----a-w- d:\windows\system32\wrap_oal.dll
2010-03-02 13:23 . 2010-03-02 13:23 400 ----a-w- d:\windows\system32\drivers\egxkxz_445.set
2010-03-02 07:39 . 2009-10-18 12:10 -------- d-----w- c:\program files\CCleaner
2010-02-27 15:43 . 2009-10-29 18:44 -------- d-----w- c:\program files\Hamachi
2010-02-27 02:02 . 2010-01-30 01:00 2277888 ----a-w- d:\windows\system32\TUKernel.exe
2010-02-19 13:56 . 2010-02-03 18:19 -------- d-----w- c:\program files\Alwil Software
2010-02-19 02:03 . 2009-10-18 11:11 -------- d-----w- c:\program files\Miranda IM
2010-02-17 08:20 . 2009-10-17 14:39 -------- d-----w- c:\program files\uTorrent
2010-02-16 10:51 . 2010-01-22 21:02 107888 ----a-w- d:\windows\system32\CmdLineExt.dll
2010-02-16 07:01 . 2009-12-28 15:55 -------- d-----w- c:\program files\HTML Help Workshop
2010-02-16 00:19 . 2010-02-03 14:38 -------- d-----w- c:\program files\AutocompletePro
2010-02-16 00:17 . 2010-01-29 23:01 -------- d-----w- c:\program files\Antares Audio Technologies
2010-02-12 23:07 . 2009-10-17 14:15 -------- d-----w- c:\program files\SpeedFan
2010-02-12 11:49 . 2010-01-29 22:01 -------- d-----w- c:\program files\Sony Setup
2010-02-12 11:03 . 2010-01-22 16:57 2426 ----a-w- d:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-02-11 13:19 . 2009-12-11 20:04 -------- d-----w- c:\program files\Microsoft SQL Server
2010-02-11 13:01 . 2009-11-17 16:28 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-11 12:58 . 2010-02-11 12:57 -------- d-----w- d:\program files\Common Files\Merge Modules
2010-02-11 10:54 . 2010-02-11 10:54 138184 ----a-w- d:\windows\system32\drivers\PnkBstrK.sys
2010-02-11 10:54 . 2010-02-11 10:54 183112 ----a-w- d:\windows\system32\PnkBstrB.exe
2010-02-10 15:27 . 2010-02-10 15:30 1261056 ----a-w- d:\windows\setup_rangers.exe
2010-02-06 22:49 . 2009-11-17 09:30 -------- d-----w- c:\program files\RegCleaner
2010-02-06 21:21 . 2010-02-06 21:21 -------- d-----w- c:\program files\JoWooD
2010-02-06 17:24 . 2010-02-06 17:24 -------- d-----w- d:\program files\Common Files\Java
2010-02-06 17:23 . 2010-02-06 17:23 411368 ----a-w- d:\windows\system32\deploytk.dll
2010-02-06 16:00 . 2010-02-06 15:58 -------- d-----w- c:\program files\Driver Genius 9 pro
2010-02-06 11:39 . 2010-02-06 11:39 -------- d-----w- c:\program files\Pivot Stickfigure Animator
2010-02-06 01:09 . 2010-01-22 16:57 8972 ----a-w- d:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-02-05 15:20 . 2010-02-05 15:20 56 ---ha-w- d:\windows\system32\ezsidmv.dat
2010-02-05 15:19 . 2010-02-05 15:19 -------- d-----w- d:\program files\Common Files\Skype
2010-02-05 15:19 . 2009-10-17 14:16 -------- d-----r- c:\program files\Skype
2010-02-05 13:58 . 2010-02-05 13:58 0 ---ha-w- d:\windows\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf
2010-02-05 13:58 . 2010-02-05 13:58 0 ---ha-w- d:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2010-02-03 15:50 . 2009-11-21 13:54 -------- d-----w- c:\program files\Total Video Converter
2010-02-03 14:25 . 2010-02-03 14:25 -------- d-----w- c:\program files\FreshDevices
2010-01-31 23:49 . 2010-01-31 23:49 -------- d-----w- c:\program files\EA GAMES
2010-01-30 00:50 . 2010-01-30 00:46 163456 ----a-w- d:\windows\system32\drivers\vidstub.sys
2010-01-30 00:47 . 2010-01-30 00:47 -------- d-----w- d:\program files\Common Files\Stardock
2010-01-30 00:46 . 2010-01-30 00:46 -------- d-----w- c:\program files\Stardock
2010-01-30 00:41 . 2010-01-30 00:42 49152 ----a-w- d:\windows\system32\DirSize.dll
2010-01-29 23:22 . 2010-01-29 23:22 -------- d-----w- d:\program files\Common Files\PACE Anti-Piracy
2010-01-29 23:02 . 2010-01-29 23:02 -------- d-----w- c:\program files\InterLok
2010-01-29 22:33 . 2010-01-29 22:30 -------- d-----w- c:\program files\Sierra On-Line
2010-01-29 22:31 . 2010-01-29 22:31 -------- d-----w- c:\program files\Sony
2010-01-28 23:39 . 2010-01-28 23:39 -------- d-----w- c:\program files\CoffeeCup Software
2010-01-24 10:57 . 2009-12-21 00:14 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-24 01:01 . 2010-01-24 00:44 -------- d-----w- d:\program files\Common Files\Adobe
2010-01-24 00:47 . 2010-01-24 00:47 -------- d-----w- d:\program files\Common Files\Macrovision Shared
2010-01-23 08:56 . 2010-01-02 23:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-22 21:50 . 2009-10-17 14:09 -------- d-s---w- c:\program files\HLSW
2010-01-22 20:40 . 2010-01-22 20:40 -------- d-----w- c:\program files\OpenAL
2010-01-22 19:34 . 2010-01-22 19:34 -------- d-----w- d:\program files\Common Files\Blizzard Entertainment
2010-01-22 17:58 . 2010-01-22 17:58 737280 ----a-w- d:\windows\iun6002.exe
2010-01-22 17:43 . 2009-11-22 19:41 -------- d-----w- c:\program files\WinSCP
2010-01-22 17:20 . 2010-01-22 17:20 0 ----a-w- d:\windows\ativpsrm.bin
2010-01-22 17:11 . 2010-01-22 17:11 294912 ----a-w- d:\windows\HideWin.exe
2010-01-22 17:09 . 2010-01-22 17:08 -------- d-----w- d:\program files\Common Files\InstallShield
2010-01-13 21:04 . 2010-01-13 21:03 -------- d-----w- c:\program files\AGEIA Technologies
2010-01-13 19:25 . 2010-01-13 19:25 -------- d-----w- c:\program files\ASIO4ALL v2
2010-01-13 19:23 . 2009-12-18 22:28 -------- d-----w- c:\program files\Image-Line
2010-01-13 19:12 . 2009-12-15 18:41 -------- d-----w- c:\program files\Samurize
2010-01-13 19:08 . 2009-12-11 21:25 -------- d-----w- c:\program files\FreeFixer
2010-01-07 15:07 . 2010-01-23 08:56 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2010-01-23 08:56 19160 ----a-w- d:\windows\system32\drivers\mbam.sys
2009-12-17 14:02 . 2009-12-17 14:02 99152 ----a-w- d:\windows\system32\drivers\VBoxNetAdp.sys
2009-12-17 14:02 . 2009-12-17 14:02 133648 ----a-w- d:\windows\system32\VBoxNetFltNotify.dll
2009-12-17 14:02 . 2009-12-17 14:02 110096 ----a-w- d:\windows\system32\drivers\VBoxNetFlt.sys
.

------- Sigcheck -------

[-] 2001-11-24 17:58 . 15AFB5576C32CC292E5DD469D96B4909 . 924432 . . [4.1.6140] . . d:\windows\system32\mfc40u.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2010-02-08 2343632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="d:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]
"SoundMan"="SOUNDMAN.EXE" [2005-06-21 90112]
"AlcWzrd"="ALCWZRD.EXE" [2005-07-13 2806272]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 61952]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-01-07 1394000]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="d:\documents and settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\Metin2_CZ\\metin2.bin"=
"c:\\Program Files\\Metin2_CZ\\metin2client.bin"=
"d:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"c:\\hry\\Valve\\hl.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\hry\\Free Running\\FreeRunning.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"c:\\hry\\Cossacks - Napoleonic Wars\\Data\\engine.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\hry\\Valve\\hlds.exe"=
"c:\\Program Files\\Autodesk\\3dsMax8\\3dsmax.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
"c:\\Program Files\\Kopie - Metin2_CZ\\mc.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\hry\\Enemy Territory - QUAKE Wars\\etqw.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

R0 d347bus;d347bus;d:\windows\system32\drivers\d347bus.sys [23.1.2010 17:57 155136]
R0 d347prt;d347prt;d:\windows\system32\drivers\d347prt.sys [23.1.2010 17:57 5248]
R1 aswSP;avast! Self Protection;d:\windows\system32\drivers\aswSP.sys [19.2.2010 14:56 114768]
R1 VBoxDrv;VirtualBox Service;d:\windows\system32\drivers\VBoxDrv.sys [27.2.2010 23:32 123280]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;d:\windows\system32\drivers\VBoxUSBMon.sys [27.2.2010 23:32 41616]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [19.2.2010 14:56 20560]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [30.10.2009 15:05 1021256]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
R3 VBoxNetFlt;VBoxNetFlt Service;d:\windows\system32\drivers\VBoxNetFlt.sys [17.12.2009 15:02 110096]
S0 vax347b;vax347b;d:\windows\system32\drivers\vax347b.sys [6.2.2010 1:40 159616]
S0 vax347s;vax347s;d:\windows\system32\drivers\vax347s.sys [6.2.2010 1:40 5248]
S3 ggflt;SEMC USB Flash Driver Filter;d:\windows\system32\drivers\ggflt.sys [25.2.2009 8:16 13352]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;d:\windows\system32\drivers\ScreamingBAudio.sys --> d:\windows\system32\drivers\ScreamingBAudio.sys [?]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;d:\windows\system32\drivers\VBoxNetAdp.sys [17.12.2009 15:02 99152]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
FF - ProfilePath - d:\documents and settings\PoKaRko\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: d:\program files\Windows Media Player\npdrmv2.dll
FF - plugin: d:\program files\Windows Media Player\npdsplay.dll
FF - plugin: d:\program files\Windows Media Player\npwmsdrm.dll

---- NASTAVENÍ FIREFOXU ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 600000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 600000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(948)
d:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2010-03-14 15:43:42
ComboFix-quarantined-files.txt 2010-03-14 14:43

Před spuštěním: Volných bajtů: 25 841 250 304
Po spuštění: Volných bajtů: 25 799 528 448

- - End Of File - - A01AA9EDEF2367A82838E6B8AF6E4B68

Damned · Příspěvekod **Damned** » 14 bře 2010 16:19

Červený soubor zkontroluj na Virustotalu a vlož sem odkaz na výsledek.
Pokud ho nenajdeš, dej si zobrazit skryté a systémové soubory. Pokud ti nabídne, že soubor už kontroloval,
nech ho zkontrolovat znovu, a počkej až se objeví "Dokončeno" a výsledek.Potom sem zkopíruj adresní řádek.

d:\windows\hacked.exe_original.exe
d:\windows\explorer2.exe
*****************************************************************************************************************************************
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený zeleně:

File::
d:\windows\system32\drivers\biusvhm144.dat
d:\windows\nsreg.dat
d:\windows\system32\drivers\egxkxz_445.set
d:\windows\setup_rangers.exe
d:\windows\ativpsrm.bin

Folder::
D:\a20c7a66ddbbc64be89aa6

DirLook::
d:\windows\PIF

Registry::
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=-

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.

- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu

Leandra · Příspěvekod **Leandra** » 14 bře 2010 16:59

ComboFix 10-03-13.03 - Leandra 14.03.2010 16:45:51.5.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1561 [GMT 1:00]
Spuštěný z: d:\documents and settings\Leandra\Plocha\ComboFix.exe
Použité ovládací přepínače :: d:\documents and settings\Leandra\Plocha\CFScript.txt
AV: avast! antivirus 4.8.1368 [VPS 100313-2] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

FILE ::
"d:\windows\ativpsrm.bin"
"d:\windows\nsreg.dat"
"d:\windows\setup_rangers.exe"
"d:\windows\system32\drivers\biusvhm144.dat"
"d:\windows\system32\drivers\egxkxz_445.set"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

D:\a20c7a66ddbbc64be89aa6
d:\windows\ativpsrm.bin
d:\windows\nsreg.dat
d:\windows\setup_rangers.exe
d:\windows\system32\drivers\biusvhm144.dat
d:\windows\system32\drivers\egxkxz_445.set

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-14 do 2010-03-14 )))))))))))))))))))))))))))))))
.

2010-03-14 12:33 . 2010-03-14 12:41 -------- d-----w- c:\program files\Startup Manager
2010-03-13 12:13 . 2009-03-09 14:27 453456 ----a-w- d:\windows\system32\d3dx10_41.dll
2010-03-13 12:13 . 2009-03-09 14:27 4178264 ----a-w- d:\windows\system32\D3DX9_41.dll
2010-03-13 12:13 . 2009-03-09 14:27 1846632 ----a-w- d:\windows\system32\D3DCompiler_41.dll
2010-03-13 12:13 . 2009-03-16 13:18 69448 ----a-w- d:\windows\system32\XAPOFX1_3.dll
2010-03-13 12:13 . 2009-03-16 13:18 517448 ----a-w- d:\windows\system32\XAudio2_4.dll
2010-03-13 12:13 . 2009-03-16 13:18 235352 ----a-w- d:\windows\system32\xactengine3_4.dll
2010-03-13 12:13 . 2009-03-16 13:18 22360 ----a-w- d:\windows\system32\X3DAudio1_6.dll
2010-03-13 00:23 . 2004-08-17 13:49 1032704 ----a-w- d:\windows\hacked.exe_original.exe
2010-03-13 00:23 . 2004-08-17 13:49 1032704 ----a-w- d:\windows\explorer2.exe
2010-03-13 00:06 . 2010-03-13 10:38 -------- d-----w- c:\program files\RegScrubXP
2010-03-13 00:06 . 2010-03-13 00:07 -------- d-----w- c:\program files\BillP Studios
2010-03-13 00:04 . 2010-03-13 00:04 -------- d-----w- c:\program files\Sunbelt Software
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- c:\program files\AIM
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- d:\program files\Common Files\Software Update Utility
2010-03-11 18:12 . 2010-03-11 18:12 -------- d-----w- d:\program files\Common Files\AOL
2010-03-04 23:35 . 2010-03-04 23:35 -------- d-----w- c:\program files\Corban Software
2010-03-03 12:13 . 2010-03-05 07:15 -------- d-----w- c:\program files\Skype Recorder
2010-03-02 17:06 . 2010-03-02 17:10 -------- d-----w- c:\program files\AV VCS 3.0
2010-03-02 16:37 . 2010-03-02 17:25 -------- d-----w- c:\program files\AV Vcs 4.0 DIAMOND
2010-03-02 16:29 . 2010-03-02 16:29 -------- d-----w- d:\program files\Common Files\Screaming Bee
2010-03-02 16:28 . 2010-03-02 16:28 -------- d-----w- c:\program files\Screaming Bee
2010-03-02 14:58 . 2010-03-02 15:01 -------- d-----w- c:\program files\GStudio7
2010-03-02 14:58 . 2010-03-02 14:58 -------- d-----w- d:\windows\Downloaded Installations
2010-03-02 13:23 . 2010-03-02 13:23 -------- d-----w- c:\program files\Rhinoceros 4.0
2010-02-28 00:05 . 2010-02-28 00:06 -------- d-----w- c:\program files\Kopie - Metin2_CZ
2010-02-27 23:46 . 2004-08-17 13:49 221184 ----a-w- d:\windows\system32\wmpns.dll
2010-02-27 22:37 . 2010-02-27 22:37 -------- d-----w- c:\program files\TeamViewer3
2010-02-27 22:34 . 2010-02-27 22:52 -------- d-----w- d:\documents and settings\Leandra\.VirtualBox
2010-02-27 22:32 . 2009-12-17 14:02 123280 ----a-w- d:\windows\system32\drivers\VBoxDrv.sys
2010-02-27 22:32 . 2009-12-17 14:02 41616 ----a-w- d:\windows\system32\drivers\VBoxUSBMon.sys
2010-02-27 22:32 . 2010-02-27 22:32 -------- d-----w- c:\program files\Sun
2010-02-27 22:12 . 2010-02-27 22:16 -------- d-----w- d:\documents and settings\Leandra\temp
2010-02-27 22:05 . 2010-02-27 22:05 -------- d-----w- c:\program files\Opera
2010-02-27 16:21 . 2010-02-27 16:44 -------- d-----w- c:\program files\ICQ6.5
2010-02-27 16:15 . 2010-02-27 16:23 -------- d-----w- c:\program files\ICQ6
2010-02-26 22:56 . 2010-02-26 22:58 -------- d-----w- c:\program files\ScreenShots
2010-02-21 18:06 . 2010-02-21 18:06 -------- d--h--w- d:\windows\PIF
2010-02-20 20:37 . 2010-02-20 21:30 -------- d-----w- c:\program files\VirtualDJ
2010-02-19 13:56 . 2009-11-24 23:49 48560 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2010-02-19 13:56 . 2009-11-24 23:48 23120 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2010-02-19 13:56 . 2009-11-24 23:47 27408 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2010-02-19 13:56 . 2009-11-24 23:51 93424 ----a-w- d:\windows\system32\drivers\aswmon.sys
2010-02-19 13:56 . 2009-11-24 23:50 94160 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2010-02-19 13:56 . 2009-11-24 23:50 114768 ----a-w- d:\windows\system32\drivers\aswSP.sys
2010-02-19 13:56 . 2009-11-24 23:50 20560 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2010-02-19 13:56 . 2009-11-24 23:47 97480 ----a-w- d:\windows\system32\AvastSS.scr
2010-02-19 13:56 . 2009-11-24 23:54 1280480 ----a-w- d:\windows\system32\aswBoot.exe
2010-02-19 00:57 . 2010-02-19 00:57 -------- d-----w- c:\program files\Defraggler
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\UC.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\RAR.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\PKZIP.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\PKUNZIP.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\NOCLOSE.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\LHA.PIF
2010-02-18 08:16 . 2009-09-24 06:50 545 ----a-w- d:\windows\ARJ.PIF
2010-02-17 21:04 . 2010-02-27 15:43 25280 ----a-w- d:\windows\system32\drivers\hamachi.sys
2010-02-17 16:51 . 2010-02-19 01:56 -------- d-----w- c:\program files\FlightGear
2010-02-16 23:14 . 2010-02-16 23:17 -------- d-----w- d:\program files\Common Files\Autodesk Shared
2010-02-16 23:14 . 2010-02-19 01:55 -------- d-----w- c:\program files\Autodesk
2010-02-16 11:52 . 2001-05-16 16:54 309616 ----a-w- d:\windows\system32\wmv8dmod.dll
2010-02-16 11:52 . 2001-05-11 12:18 420240 ----a-w- d:\windows\system32\mpg4c32.dll
2010-02-16 11:48 . 2010-02-19 01:56 -------- d-----w- c:\program files\MAGIX
2010-02-16 11:48 . 2007-04-27 09:43 120200 ----a-w- d:\windows\system32\DLLDEV32i.dll
2010-02-16 11:48 . 2010-02-16 11:51 -------- d-----w- d:\program files\Common Files\MAGIX Services
2010-02-14 23:56 . 2010-02-14 23:56 -------- d-----w- c:\program files\Flash Movie Player
2010-02-14 10:14 . 2010-02-14 10:14 -------- d-----w- c:\program files\Google
2010-02-14 08:55 . 2010-02-19 02:03 -------- d-----w- c:\program files\Handball Simulator 2010
2010-02-13 20:54 . 2010-02-15 07:15 -------- d-----w- c:\program files\majstersveta
2010-02-12 22:05 . 2005-10-21 01:47 12800 ------w- d:\windows\system32\drivers\usb8023x.sys
2010-02-12 22:05 . 2005-10-21 01:47 30592 ------w- d:\windows\system32\drivers\rndismpx.sys
2010-02-12 22:05 . 2010-02-12 22:05 -------- d-----w- c:\program files\Microsoft ActiveSync
2010-02-12 20:10 . 2008-10-15 05:22 452440 ----a-w- d:\windows\system32\d3dx10_40.dll
2010-02-12 20:10 . 2008-10-15 05:22 2036576 ----a-w- d:\windows\system32\D3DCompiler_40.dll
2010-02-12 20:10 . 2008-10-27 09:04 514384 ----a-w- d:\windows\system32\XAudio2_3.dll
2010-02-12 20:10 . 2008-10-27 09:04 70992 ----a-w- d:\windows\system32\XAPOFX1_2.dll
2010-02-12 20:10 . 2008-10-15 05:22 4379984 ----a-w- d:\windows\system32\D3DX9_40.dll
2010-02-12 20:10 . 2008-10-27 09:04 235856 ----a-w- d:\windows\system32\xactengine3_3.dll
2010-02-12 20:10 . 2008-10-27 09:04 23376 ----a-w- d:\windows\system32\X3DAudio1_5.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-14 11:23 . 2009-11-28 22:20 -------- d-----w- c:\program files\Metin2_CZ
2010-03-14 00:36 . 2010-02-11 10:54 66872 ----a-w- d:\windows\system32\PnkBstrA.exe
2010-03-13 13:05 . 2010-01-22 20:40 81920 ----a-w- d:\windows\system32\OpenAL32.dll
2010-03-13 12:04 . 2009-10-17 13:50 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-13 00:20 . 2001-11-24 18:02 432004 ----a-w- d:\windows\system32\perfh005.dat
2010-03-13 00:20 . 2001-11-24 18:02 79062 ----a-w- d:\windows\system32\perfc005.dat
2010-03-10 15:19 . 2010-01-22 20:40 444952 ----a-w- d:\windows\system32\wrap_oal.dll
2010-03-02 07:39 . 2009-10-18 12:10 -------- d-----w- c:\program files\CCleaner
2010-02-27 15:43 . 2009-10-29 18:44 -------- d-----w- c:\program files\Hamachi
2010-02-27 02:02 . 2010-01-30 01:00 2277888 ----a-w- d:\windows\system32\TUKernel.exe
2010-02-19 13:56 . 2010-02-03 18:19 -------- d-----w- c:\program files\Alwil Software
2010-02-19 02:03 . 2009-10-18 11:11 -------- d-----w- c:\program files\Miranda IM
2010-02-17 08:20 . 2009-10-17 14:39 -------- d-----w- c:\program files\uTorrent
2010-02-16 10:51 . 2010-01-22 21:02 107888 ----a-w- d:\windows\system32\CmdLineExt.dll
2010-02-16 07:01 . 2009-12-28 15:55 -------- d-----w- c:\program files\HTML Help Workshop
2010-02-16 00:19 . 2010-02-03 14:38 -------- d-----w- c:\program files\AutocompletePro
2010-02-16 00:17 . 2010-01-29 23:01 -------- d-----w- c:\program files\Antares Audio Technologies
2010-02-12 23:07 . 2009-10-17 14:15 -------- d-----w- c:\program files\SpeedFan
2010-02-12 11:49 . 2010-01-29 22:01 -------- d-----w- c:\program files\Sony Setup
2010-02-12 11:03 . 2010-01-22 16:57 2426 ----a-w- d:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-02-11 13:19 . 2009-12-11 20:04 -------- d-----w- c:\program files\Microsoft SQL Server
2010-02-11 13:01 . 2009-11-17 16:28 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-11 12:58 . 2010-02-11 12:57 -------- d-----w- d:\program files\Common Files\Merge Modules
2010-02-11 10:54 . 2010-02-11 10:54 138184 ----a-w- d:\windows\system32\drivers\PnkBstrK.sys
2010-02-11 10:54 . 2010-02-11 10:54 183112 ----a-w- d:\windows\system32\PnkBstrB.exe
2010-02-06 22:49 . 2009-11-17 09:30 -------- d-----w- c:\program files\RegCleaner
2010-02-06 21:21 . 2010-02-06 21:21 -------- d-----w- c:\program files\JoWooD
2010-02-06 17:24 . 2010-02-06 17:24 -------- d-----w- d:\program files\Common Files\Java
2010-02-06 17:23 . 2010-02-06 17:23 411368 ----a-w- d:\windows\system32\deploytk.dll
2010-02-06 16:00 . 2010-02-06 15:58 -------- d-----w- c:\program files\Driver Genius 9 pro
2010-02-06 11:39 . 2010-02-06 11:39 -------- d-----w- c:\program files\Pivot Stickfigure Animator
2010-02-06 01:09 . 2010-01-22 16:57 8972 ----a-w- d:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-02-05 15:20 . 2010-02-05 15:20 56 ---ha-w- d:\windows\system32\ezsidmv.dat
2010-02-05 15:19 . 2010-02-05 15:19 -------- d-----w- d:\program files\Common Files\Skype
2010-02-05 15:19 . 2009-10-17 14:16 -------- d-----r- c:\program files\Skype
2010-02-05 13:58 . 2010-02-05 13:58 0 ---ha-w- d:\windows\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf
2010-02-05 13:58 . 2010-02-05 13:58 0 ---ha-w- d:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2010-02-03 15:50 . 2009-11-21 13:54 -------- d-----w- c:\program files\Total Video Converter
2010-02-03 14:25 . 2010-02-03 14:25 -------- d-----w- c:\program files\FreshDevices
2010-01-31 23:49 . 2010-01-31 23:49 -------- d-----w- c:\program files\EA GAMES
2010-01-30 00:50 . 2010-01-30 00:46 163456 ----a-w- d:\windows\system32\drivers\vidstub.sys
2010-01-30 00:47 . 2010-01-30 00:47 -------- d-----w- d:\program files\Common Files\Stardock
2010-01-30 00:46 . 2010-01-30 00:46 -------- d-----w- c:\program files\Stardock
2010-01-30 00:41 . 2010-01-30 00:42 49152 ----a-w- d:\windows\system32\DirSize.dll
2010-01-29 23:22 . 2010-01-29 23:22 -------- d-----w- d:\program files\Common Files\PACE Anti-Piracy
2010-01-29 23:02 . 2010-01-29 23:02 -------- d-----w- c:\program files\InterLok
2010-01-29 22:33 . 2010-01-29 22:30 -------- d-----w- c:\program files\Sierra On-Line
2010-01-29 22:31 . 2010-01-29 22:31 -------- d-----w- c:\program files\Sony
2010-01-28 23:39 . 2010-01-28 23:39 -------- d-----w- c:\program files\CoffeeCup Software
2010-01-24 10:57 . 2009-12-21 00:14 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-24 01:01 . 2010-01-24 00:44 -------- d-----w- d:\program files\Common Files\Adobe
2010-01-24 00:47 . 2010-01-24 00:47 -------- d-----w- d:\program files\Common Files\Macrovision Shared
2010-01-23 08:56 . 2010-01-02 23:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-22 21:50 . 2009-10-17 14:09 -------- d-s---w- c:\program files\HLSW
2010-01-22 20:40 . 2010-01-22 20:40 -------- d-----w- c:\program files\OpenAL
2010-01-22 19:34 . 2010-01-22 19:34 -------- d-----w- d:\program files\Common Files\Blizzard Entertainment
2010-01-22 17:58 . 2010-01-22 17:58 737280 ----a-w- d:\windows\iun6002.exe
2010-01-22 17:43 . 2009-11-22 19:41 -------- d-----w- c:\program files\WinSCP
2010-01-22 17:11 . 2010-01-22 17:11 294912 ----a-w- d:\windows\HideWin.exe
2010-01-22 17:09 . 2010-01-22 17:08 -------- d-----w- d:\program files\Common Files\InstallShield
2010-01-13 21:04 . 2010-01-13 21:03 -------- d-----w- c:\program files\AGEIA Technologies
2010-01-13 19:25 . 2010-01-13 19:25 -------- d-----w- c:\program files\ASIO4ALL v2
2010-01-13 19:23 . 2009-12-18 22:28 -------- d-----w- c:\program files\Image-Line
2010-01-13 19:12 . 2009-12-15 18:41 -------- d-----w- c:\program files\Samurize
2010-01-13 19:08 . 2009-12-11 21:25 -------- d-----w- c:\program files\FreeFixer
2010-01-07 15:07 . 2010-01-23 08:56 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2010-01-23 08:56 19160 ----a-w- d:\windows\system32\drivers\mbam.sys
2009-12-17 14:02 . 2009-12-17 14:02 99152 ----a-w- d:\windows\system32\drivers\VBoxNetAdp.sys
2009-12-17 14:02 . 2009-12-17 14:02 133648 ----a-w- d:\windows\system32\VBoxNetFltNotify.dll
2009-12-17 14:02 . 2009-12-17 14:02 110096 ----a-w- d:\windows\system32\drivers\VBoxNetFlt.sys
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of d:\windows\PIF ----

------- Sigcheck -------

[-] 2001-11-24 17:58 . 15AFB5576C32CC292E5DD469D96B4909 . 924432 . . [4.1.6140] . . d:\windows\system32\mfc40u.dll
.
((((((((((((((((((((((((((((( SnapShot@2010-03-14_14.42.13 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-03-14 15:52 . 2010-03-14 15:52 16384 d:\windows\Temp\Perflib_Perfdata_75c.dat
+ 2010-03-14 15:52 . 2010-03-14 15:52 16384 d:\windows\Temp\Perflib_Perfdata_278.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2010-02-08 2343632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="d:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]
"SoundMan"="SOUNDMAN.EXE" [2005-06-21 90112]
"AlcWzrd"="ALCWZRD.EXE" [2005-07-13 2806272]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 61952]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="d:\documents and settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"d:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\Metin2_CZ\\metin2.bin"=
"c:\\Program Files\\Metin2_CZ\\metin2client.bin"=
"d:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"c:\\hry\\Valve\\hl.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\hry\\Free Running\\FreeRunning.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\hry\\Cossacks - Napoleonic Wars\\Data\\engine.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\hry\\Valve\\hlds.exe"=
"c:\\Program Files\\Autodesk\\3dsMax8\\3dsmax.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
"c:\\Program Files\\Kopie - Metin2_CZ\\mc.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\hry\\Enemy Territory - QUAKE Wars\\etqw.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

R0 d347bus;d347bus;d:\windows\system32\drivers\d347bus.sys [23.1.2010 17:57 155136]
R0 d347prt;d347prt;d:\windows\system32\drivers\d347prt.sys [23.1.2010 17:57 5248]
R1 aswSP;avast! Self Protection;d:\windows\system32\drivers\aswSP.sys [19.2.2010 14:56 114768]
R1 VBoxDrv;VirtualBox Service;d:\windows\system32\drivers\VBoxDrv.sys [27.2.2010 23:32 123280]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;d:\windows\system32\drivers\VBoxUSBMon.sys [27.2.2010 23:32 41616]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [19.2.2010 14:56 20560]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [30.10.2009 15:05 1021256]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
R3 VBoxNetFlt;VBoxNetFlt Service;d:\windows\system32\drivers\VBoxNetFlt.sys [17.12.2009 15:02 110096]
S0 vax347s;vax347s;d:\windows\system32\drivers\vax347s.sys [6.2.2010 1:40 5248]
S3 ggflt;SEMC USB Flash Driver Filter;d:\windows\system32\drivers\ggflt.sys [25.2.2009 8:16 13352]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;d:\windows\system32\drivers\ScreamingBAudio.sys --> d:\windows\system32\drivers\ScreamingBAudio.sys [?]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;d:\windows\system32\drivers\VBoxNetAdp.sys [17.12.2009 15:02 99152]
S4 vax347b;vax347b;d:\windows\system32\drivers\vax347b.sys [6.2.2010 1:40 159616]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
FF - ProfilePath - d:\documents and settings\Leandra\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\

---- NASTAVENÍ FIREFOXU ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 600000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 600000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-Space Rangers - d:\windows\setup_rangers.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-14 16:53
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: TUKERNEL.EXE CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8A304008]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf763bfc3
\Driver\ACPI -> ACPI.sys @ 0xf7560cb8
\Driver\atapi -> 0x8a304008
IoDeviceObjectType -> DeleteProcedure -> TUKERNEL.EXE @ 0x8059e1a2
ParseProcedure -> TUKERNEL.EXE @ 0x8057c745
\Device\Harddisk0\DR0 -> DeleteProcedure -> TUKERNEL.EXE @ 0x8059e1a2
ParseProcedure -> TUKERNEL.EXE @ 0x8057c745
NDIS: Realtek RTL8139 Family PCI Fast Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xf784bbc3
PacketIndicateHandler -> NDIS.sys @ 0xf7857b21
SendHandler -> NDIS.sys @ 0xf784bd33
Warning: possible MBR rootkit infection !
user & kernel MBR OK

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="FB6646591F5D92751C729385B3C602CB2997419178C218A60F1616AF49EB09598C79F28C9E4C50A6255F28DD6B58B1D6D8B59381380B795F321F8F2B207F189922D735218E280D062DB0ED8E57929A27E81C52DC9C33D266FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC7933A6171C11EC38DE3D5D575E7D6A3B9808FEBC9E127BECC74C8ECE25319F9729766C89337ACDAEA72F3D7856039496B730859CD608777C2A872537D295A84F1AACD3519E5E718EFBE3EC5477AE61B2EEB690B70668571A6C7A88BC288F5011B9E4083516EF945EB737BDDF5445A169F4F025D06FF8796C18943C6F11F72E389C037E015D074A00555EACBDA33D87474604ED02E1F54DC7518EBB8411E70C00AAEE9A22C9425C3B20922EB7B0D6773AB61C8C0E3B5E75E58F247154BBC36B0C9E96B8A9C50248B8BA1229B5DA148A176BE614D6F0F548609B1640DBBAAC7F5F8A6925CC4FEA3C88189D784717BB8F94DD170EE48B42CE3994A57C3D4B0C2E654F5D22E7F8E51E1C82FB6B9FE856874F5C6474642690CA546E9BEEBBBF8D946BA6696677E9A1864A957645166FB228448708B8A4F2EE2BFBEE455540FBA181A19B0C9A9D5A0F424D425ABCA558E2DA58D6C13D1A343019D9326FDF5979FB791E0FC45E219AE1D0434E787B6BE53E3DD392535CDB436BED802570B3364595335AB298C3698B15E6AED029232CF05DA0E0D804E0A68C7CB7620C9DEA2C02A91AB39090CF86A4E36DF5B842C5CE641F8A8E1B9D0BDA0F82BAD97BD39135E3394DEA82B8FC29EED081E345A568DDBF25355121EF0EFA61DFEB21E172A8ED3588A126B92238298AA172268B31880794D68DFE82CC132FA9BC765B7ADD2615D09E1EEE38E0E5FDA75D46CF734D959E0C5CB455AD8B36C42503380B5AFCF192AA487DB2D88ED9C78D52B3583C626F9BE1A50172E407062B2463C499E63B69EDC695B0C14446DEC59691A99774DD709863E4FBD93D9C87F3894FE1525C88DDD3BE5BD9537BAAB3E0AFF0C5CD81B161D2740FE1F2A130345A507F0B66475994154030517ED25F8921DD095E9C9CD403AF8DDD25884EA7F43882EEED698DA445A70CF1A2C2F18C86B335B6FA0BD1BE8735B852EB4B55ED2C0D41DBECD4E2659D23F6408D0054DE44EC601C5A02036E958F962B0F4D9D722DFEC04A9E84D39BBF45EAFE04FCC809D1411E1DE95263E5C78AD8F09C8760A64054C9004EB8BECBBF6EE455306275BCB0CA40E250ACFCA82F9B47EC54D3AB802179B70AF917D57D2724F6326BBD4F35D7C72E5B66282CC24DD7BCAC2EF1DFFC7FFDFAB55326A13BF08FC442C57F23ADAF19603836BDA1C098FB2A83D206B3997F161818C2537A95117C0AFC83FE12669645E56D034EE2B4FD6611079E96B258"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(948)
d:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2120)
d:\windows\system32\msi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
d:\windows\system32\Ati2evxx.exe
d:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
d:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
d:\windows\SOUNDMAN.EXE
d:\windows\ALCWZRD.EXE
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
d:\windows\system32\wdfmgr.exe
d:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\uTorrent\utorrent.exe
.
**************************************************************************
.
Celkový čas: 2010-03-14 16:56:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-03-14 15:56
ComboFix2.txt 2010-03-14 14:43

Před spuštěním: Volných bajtů: 25 679 257 600
Po spuštění: Volných bajtů: 25 636 552 704

- - End Of File - - 6B3A4A01DD25B5ADD993DE5999B31B6B

Damned · Příspěvekod **Damned** » 14 bře 2010 17:05

Start -> Spustit... a napiš do okna tento příkaz označený modře:
C:\WINDOWS\MBR.exe -f a dej Ok. mezi mbr.exe a -f je mezera
- pokud by tě bezpečnostní software upozornil na přepsání MBR tak to povol
- počkej až program proběhne a pak restartuj Pc
Po restartu Windows zadej červený příkaz (Start-->>Spustit):
C:\WINDOWS\MBR.exe a dej OK.
Spustí se znovu a log co vytvoří sem vlož (najdeš ho v C:\WINDOWS\MBR.log)

Dej mi sem pak ty výsledky z VT a popiš spouštění PC.

Leandra · Příspěvekod **Leandra** » 14 bře 2010 20:28

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK

Damned · Příspěvekod **Damned** » 14 bře 2010 21:00

Odinstaluj ComboFix ( nutné ) .
ComboFix se odinstaluje takto:
Start-Spustit a zadej Combofix[mezera]/uninstall

Stáhni si T-Cleaner ( nutné - smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš)

(pozn.Pokud máš AVG nebo Aviru, před stažením T-Cleaneru a po dobu čištění deaktivuj AVG i Aviru (i rezidenty), následně T-Cleaner smaž a zapni si AVG, Aviru.)
*****************************************************************************************************************************************
Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All. Zatrhni LOP Check a Purity Check. File age změň na 14 days. Všechny ostatní nastavení ponech jak jsou. Klikni na Run Scan. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj

Leandra · Příspěvekod **Leandra** » 14 bře 2010 21:29

Otl.txt

OTL logfile created on: 14.3.2010 21:24:38 - Run 3
OTL by OldTimer - Version 3.1.37.1 Folder = D:\Documents and Settings\Leandra\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 195,32 Gb Total Space | 62,63 Gb Free Space | 32,07% Space Free | Partition Type: NTFS
Drive D: | 37,56 Gb Total Space | 24,59 Gb Free Space | 65,46% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: VOJTOVO-PC
Current User Name: Leandra
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - D:\Documents and Settings\Leandra\Dokumenty\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe (IObit)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe ()
PRC - D:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
PRC - D:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (Rocket Division Software)
PRC - D:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation)
PRC - D:\WINDOWS\explorer.exe (Microsoft Corporation)

========== Modules (SafeList) ==========

MOD - D:\Documents and Settings\Leandra\Dokumenty\Downloads\OTL.exe (OldTimer Tools)
MOD - D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV - (TuneUp.Defrag) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FLEXnet Licensing Service) -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- D:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (NetTcpPortSharing) -- D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (Microsoft Office Groove Audit Service) -- D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (odserv) -- D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (mi-raysat_3dsmax8) -- C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe ()
SRV - (StarWindService) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (Rocket Division Software)

========== Driver Services (SafeList) ==========

DRV - (hamachi) -- D:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (BootScreen) -- D:\WINDOWS\System32\drivers\vidstub.sys ()
DRV - (VBoxDrv) -- D:\WINDOWS\system32\drivers\VBoxDrv.sys (Sun Microsystems, Inc.)
DRV - (VBoxNetFlt) -- D:\WINDOWS\system32\drivers\VBoxNetFlt.sys (Sun Microsystems, Inc.)
DRV - (VBoxNetAdp) -- D:\WINDOWS\system32\drivers\VBoxNetAdp.sys (Sun Microsystems, Inc.)
DRV - (VBoxUSBMon) -- D:\WINDOWS\system32\drivers\VBoxUSBMon.sys (Sun Microsystems, Inc.)
DRV - (aswMon2) -- D:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- D:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- D:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- D:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- D:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- D:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (ati2mtag) -- D:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (TPkd) -- D:\WINDOWS\system32\drivers\TPkd.sys (PACE Anti-Piracy, Inc.)
DRV - (ggsemc) -- D:\WINDOWS\system32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV - (ggflt) -- D:\WINDOWS\system32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV - (speedfan) -- D:\WINDOWS\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- D:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (vax347b) -- D:\WINDOWS\system32\drivers\vax347b.sys ( )
DRV - (HDAudBus) -- D:\WINDOWS\system32\drivers\Hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (HdAudAddService) -- D:\WINDOWS\system32\drivers\Hdaudio.sys (Windows (R) Server 2003 DDK provider)
DRV - (d347prt) -- D:\WINDOWS\System32\Drivers\d347prt.sys ( )
DRV - (d347bus) -- D:\WINDOWS\system32\DRIVERS\d347bus.sys ( )
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- D:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (vax347s) -- D:\WINDOWS\System32\Drivers\vax347s.sys ( )
DRV - (giveio) -- D:\WINDOWS\system32\giveio.sys ()

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.7
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.13
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:3.0.8

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.03.07 01:46:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.03.11 19:12:18 | 000,000,000 | ---D | M]

[2010.02.16 13:44:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Mozilla\Extensions
[2010.02.16 13:49:55 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\extensions
[2010.02.16 13:49:49 | 000,000,000 | ---D | M] (FlashGot) -- D:\Documents and Settings\Leandra\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2010.02.16 13:49:49 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- D:\Documents and Settings\Leandra\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2010.02.16 13:49:51 | 000,000,000 | ---D | M] (Download Statusbar) -- D:\Documents and Settings\Leandra\Data aplikací\Mozilla\Firefox\Profiles\1ii8yyw2.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010.03.07 01:46:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.11.03 02:45:38 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.11.03 02:45:38 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.11.03 02:45:38 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.11.03 02:45:38 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.11.03 02:45:38 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2010.03.14 16:51:55 | 000,000,027 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [AlcWzrd] D:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] D:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [SoundMan] D:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Advanced SystemCare 3] C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe (IObit)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (D:\Documents and Settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - D:\Documents and Settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - D:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: D:\Documents and Settings\Leandra\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.10.17 15:23:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010.03.14 13:33:50 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Data aplikací\Startup Manager
[2010.03.14 13:33:50 | 000,000,000 | ---D | C] -- C:\Program Files\Startup Manager
[2010.03.13 14:13:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Cold War
[2010.03.13 13:25:47 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\VirtuaTennis2009
[2010.03.13 13:24:53 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\VirtuaTennis2009
[2010.03.13 13:13:54 | 004,178,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DX9_41.dll
[2010.03.13 13:13:54 | 001,846,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_41.dll
[2010.03.13 13:13:54 | 000,453,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_41.dll
[2010.03.13 13:13:53 | 000,517,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_4.dll
[2010.03.13 13:13:53 | 000,069,448 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_3.dll
[2010.03.13 13:13:52 | 000,235,352 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_4.dll
[2010.03.13 13:13:52 | 000,022,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_6.dll
[2010.03.13 01:31:40 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Leandra\Recent
[2010.03.13 01:23:13 | 001,032,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\hacked.exe_original.exe
[2010.03.13 01:23:13 | 001,032,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\explorer2.exe
[2010.03.13 01:06:26 | 000,000,000 | ---D | C] -- C:\Program Files\RegScrubXP
[2010.03.13 01:06:25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Data aplikací\WinPatrol
[2010.03.13 01:06:11 | 000,000,000 | ---D | C] -- C:\Program Files\BillP Studios
[2010.03.13 01:04:49 | 000,000,000 | ---D | C] -- C:\Program Files\Sunbelt Software
[2010.03.13 01:04:33 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\Crack
[2010.03.11 19:12:32 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Data aplikací\acccore
[2010.03.11 19:12:30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\AIM
[2010.03.11 19:12:29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\AOL
[2010.03.11 19:12:26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Data aplikací\AIM
[2010.03.11 19:12:19 | 000,000,000 | ---D | C] -- C:\Program Files\AIM
[2010.03.11 19:12:18 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Software Update Utility
[2010.03.11 19:12:17 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AOL
[2010.03.06 02:53:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\Medía
[2010.03.05 00:35:21 | 000,000,000 | ---D | C] -- C:\Program Files\Corban Software
[2010.03.03 13:16:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\iFree
[2010.03.03 13:16:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Data aplikací\iFree
[2010.03.03 13:14:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Skype Call Recordings
[2010.03.03 13:13:40 | 000,000,000 | ---D | C] -- C:\Program Files\Skype Recorder
[2010.03.02 18:06:00 | 000,000,000 | ---D | C] -- C:\Program Files\AV VCS 3.0
[2010.03.02 17:37:43 | 000,000,000 | ---D | C] -- C:\Program Files\AV Vcs 4.0 DIAMOND
[2010.03.02 17:29:04 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Screaming Bee
[2010.03.02 17:29:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Data aplikací\Screaming Bee
[2010.03.02 17:28:26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Data aplikací\Screaming Bee
[2010.03.02 17:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\Screaming Bee
[2010.03.02 15:58:22 | 000,000,000 | ---D | C] -- C:\Program Files\GStudio7
[2010.03.02 15:58:02 | 000,000,000 | ---D | C] -- D:\WINDOWS\Downloaded Installations
[2010.03.02 14:23:12 | 000,000,000 | ---D | C] -- C:\Program Files\Rhinoceros 4.0
[2010.03.02 14:23:12 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Data aplikací\McNeel
[2010.03.01 22:51:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\WMTools Downloaded Files
[2010.03.01 22:41:29 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Filmy
[2010.02.28 22:13:12 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\ICQ
[2010.02.27 23:34:14 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\.VirtualBox
[2010.02.27 23:12:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\temp
[2010.02.27 22:32:36 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\MPlayer-1.0rc2-gui
[2010.02.21 19:06:48 | 000,000,000 | -H-D | C] -- D:\WINDOWS\PIF
[2010.02.20 23:10:49 | 000,396,288 | ---- | C] (Trend Micro Inc.) -- D:\Documents and Settings\Leandra\Plocha\a.exe
[2010.02.19 14:51:53 | 000,000,000 | ---D | C] -- D:\WINDOWS\RegisteredPackages
[2010.02.18 23:06:13 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\NHL09
[2010.02.17 00:19:20 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Adlm
[2010.02.16 15:59:50 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Stažené soubory
[2010.02.16 12:52:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\MAGIX downloads
[2010.02.16 12:51:15 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\MAGIX_Screenshare
[2010.02.16 12:48:48 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\MAGIX_MusicMaker16Premium_Download_Version
[2010.02.14 14:22:33 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Z-Software
[2010.02.14 09:31:27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\id Software
[2010.02.12 21:12:02 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Prototype
[2010.02.12 12:55:26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\VirtualDJ
[2010.02.11 20:37:27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\My Games
[2010.02.11 14:00:29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Visual Studio 2008
[2010.02.11 11:55:33 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\NFS Undercover
[2010.02.07 14:50:44 | 000,000,000 | ---D | C] -- D:\WINDOWS\Minidump
[2010.02.06 23:59:22 | 000,000,000 | ---D | M] -- D:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.02.06 22:54:16 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\JoWooD
[2010.02.06 01:40:17 | 000,159,616 | ---- | C] ( ) -- D:\WINDOWS\System32\drivers\vax347b.sys
[2010.02.06 01:40:17 | 000,005,248 | ---- | C] ( ) -- D:\WINDOWS\System32\drivers\vax347s.sys
[2010.02.01 00:43:26 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dokumenty\EA Games
[2010.01.29 23:35:53 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\My Videos
[2010.01.29 23:33:09 | 000,000,000 | ---D | C] -- D:\WINDOWS\solcache
[2010.01.29 23:23:33 | 000,304,128 | ---- | C] (InstallShield Software Corporation) -- D:\WINDOWS\IsUninst.exe
[2010.01.29 23:23:14 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\WINDOWS
[2010.01.29 23:22:53 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\XPSViewer
[2010.01.29 21:26:38 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Plocha\mp3
[2010.01.29 15:07:39 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\KONAMI
[2010.01.29 14:51:46 | 000,000,000 | ---D | C] -- D:\WINDOWS\pss
[2010.01.24 13:00:09 | 000,000,000 | ---D | M] -- D:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2010.01.23 23:58:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\DoctorWeb
[2010.01.23 17:57:00 | 000,155,136 | ---- | C] ( ) -- D:\WINDOWS\System32\drivers\d347bus.sys
[2010.01.23 17:57:00 | 000,005,248 | ---- | C] ( ) -- D:\WINDOWS\System32\drivers\d347prt.sys
[2010.01.23 12:14:23 | 000,000,000 | ---D | C] -- D:\WINDOWS\ServicePackFiles
[2010.01.23 01:13:48 | 000,000,000 | -H-D | C] -- D:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010.01.23 01:13:23 | 000,000,000 | -H-D | C] -- D:\WINDOWS\$hf_mig$
[2010.01.23 01:11:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\DriverGenius
[2010.01.22 22:03:16 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Codemasters
[2010.01.22 21:37:24 | 000,000,000 | ---D | C] -- D:\WINDOWS\Logs
[2010.01.22 20:57:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\EA Games
[2010.01.22 20:36:58 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\FIFA 10
[2010.01.22 18:58:44 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- D:\WINDOWS\iun6002.exe
[2010.01.22 18:48:50 | 000,000,000 | -HSD | C] -- D:\WINDOWS\Installer
[2010.01.22 18:48:26 | 000,127,024 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MSVIDEO.DLL
[2010.01.22 18:48:26 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\OLECLI.DLL
[2010.01.22 18:48:26 | 000,024,064 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\OLESVR.DLL
[2010.01.22 18:48:26 | 000,019,200 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\TAPI.DLL
[2010.01.22 18:48:26 | 000,013,600 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\WFWNET.DRV
[2010.01.22 18:48:26 | 000,009,291 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\VER.DLL
[2010.01.22 18:48:26 | 000,005,120 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SHELL.DLL
[2010.01.22 18:48:26 | 000,004,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\TIMER.DRV
[2010.01.22 18:48:26 | 000,003,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SYSTEM.DRV
[2010.01.22 18:48:26 | 000,002,176 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\VGA.DRV
[2010.01.22 18:48:26 | 000,001,744 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\SOUND.DRV
[2010.01.22 18:48:25 | 000,109,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\avifile.dll
[2010.01.22 18:48:25 | 000,073,568 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCIAVI.DRV
[2010.01.22 18:48:25 | 000,070,272 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\AVICAP.DLL
[2010.01.22 18:48:25 | 000,033,040 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\COMMDLG.DLL
[2010.01.22 18:48:25 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCIWAVE.DRV
[2010.01.22 18:48:25 | 000,025,296 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MCISEQ.DRV
[2010.01.22 18:48:25 | 000,009,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\LZEXPAND.DLL
[2010.01.22 18:48:25 | 000,002,032 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MOUSE.DRV
[2010.01.22 18:48:25 | 000,002,000 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\KEYBOARD.DRV
[2010.01.22 18:48:25 | 000,001,152 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MMTASK.TSK
[2010.01.22 18:48:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\taskman.exe
[2010.01.22 18:48:13 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\WINSPOOL.DRV
[2010.01.22 18:48:13 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\NOTEPAD.EXE
[2010.01.22 18:48:13 | 000,069,008 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\MMSYSTEM.DLL
[2010.01.22 18:48:04 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Nabídka Start
[2010.01.22 18:48:04 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty
[2010.01.22 18:48:04 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\All Users\Šablony
[2010.01.22 18:48:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Plocha
[2010.01.22 18:48:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Oblíbené položky
[2010.01.22 18:47:47 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\All Users\Data aplikací
[2010.01.22 18:40:49 | 000,000,000 | R-SD | C] -- D:\WINDOWS\Fonts
[2010.01.22 18:40:49 | 000,000,000 | R--D | C] -- D:\WINDOWS\Web
[2010.01.22 18:40:49 | 000,000,000 | -H-D | C] -- D:\WINDOWS\inf
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\WinSxS
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\twain_32
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Temp
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\system32
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\system
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\security
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Resources
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\repair
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Provisioning
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\pchealth
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\PeerNet
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\mui
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\msapps
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\msagent
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Media
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\java
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\ime
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Help
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\ehome
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Driver Cache
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Debug
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Cursors
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Connection Wizard
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\Config
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\AppPatch
[2010.01.22 18:40:49 | 000,000,000 | ---D | C] -- D:\WINDOWS\addins
[2010.01.22 18:36:45 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\Programy
[2010.01.22 18:36:41 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\hry
[2010.01.22 18:36:34 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Plocha\Driver-Genius
[2010.01.22 18:33:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Adobe
[2010.01.22 18:33:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\aaaaaaaaaaa
[2010.01.22 18:29:53 | 000,000,000 | ---D | C] -- D:\WINDOWS\SHELLNEW
[2010.01.22 18:21:30 | 000,000,000 | R-SD | C] -- D:\WINDOWS\assembly
[2010.01.22 18:21:13 | 000,000,000 | ---D | C] -- D:\WINDOWS\Microsoft.NET
[2010.01.22 18:17:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Downloads
[2010.01.22 18:14:08 | 000,000,000 | --SD | C] -- D:\Documents and Settings\Leandra\UserData
[2010.01.22 18:11:35 | 000,294,912 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\HideWin.exe
[2010.01.22 18:11:34 | 002,806,272 | ---- | C] (RealTek Semicoductor Corp.) -- D:\WINDOWS\ALCWZRD.EXE
[2010.01.22 18:11:34 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\ALCMTR.EXE
[2010.01.22 18:11:33 | 014,679,552 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\RTHDCPL.EXE
[2010.01.22 18:11:33 | 002,113,536 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\MicCal.exe
[2010.01.22 18:11:33 | 000,090,112 | ---- | C] (Realtek Semiconductor Corp.) -- D:\WINDOWS\SOUNDMAN.EXE
[2010.01.22 18:04:47 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Hudba
[2010.01.22 18:04:46 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Dokumenty\Obrázky
[2010.01.22 18:04:44 | 000,000,000 | --SD | C] -- D:\Documents and Settings\Leandra\Cookies
[2010.01.22 18:04:44 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Leandra\Data aplikací
[2010.01.22 18:04:44 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Nabídka Start
[2010.01.22 18:04:44 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Dokumenty
[2010.01.22 18:04:44 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Leandra\Local Settings
[2010.01.22 18:04:43 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Leandra\SendTo
[2010.01.22 18:04:43 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Plocha
[2010.01.22 18:04:43 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Leandra\Oblíbené položky
[2010.01.22 18:04:43 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Leandra\Šablony
[2010.01.22 18:04:43 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Leandra\Okolní tiskárny
[2010.01.22 18:04:43 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\Leandra\Okolní síť
[2010.01.22 18:03:16 | 000,000,000 | ---D | C] -- D:\WINDOWS\SoftwareDistribution
[2010.01.22 18:03:14 | 000,000,000 | ---D | C] -- D:\WINDOWS\Prefetch
[2010.01.22 18:03:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2010.01.22 18:02:46 | 000,000,000 | ---D | M] -- D:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2010.01.22 17:58:23 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\xircom
[2010.01.22 17:58:03 | 000,000,000 | --SD | M] -- D:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2010.01.22 17:58:03 | 000,000,000 | --SD | M] -- D:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2010.01.22 17:57:25 | 000,000,000 | --SD | C] -- D:\WINDOWS\Tasks
[2010.01.22 17:57:17 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\All Users\DRM
[2010.01.22 17:57:08 | 000,000,000 | --SD | C] -- D:\WINDOWS\Downloaded Program Files
[2010.01.22 17:57:08 | 000,000,000 | R--D | C] -- D:\WINDOWS\Offline Web Pages
[2010.01.22 17:55:57 | 000,000,000 | ---D | C] -- D:\WINDOWS\Úlohy
[2010.01.22 17:55:52 | 000,000,000 | ---D | C] -- D:\WINDOWS\srchasst
[2010.01.22 17:55:48 | 000,217,816 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuaucpl.cpl
[2010.01.22 17:55:48 | 000,166,912 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuauclt1.exe
[2010.01.22 17:55:48 | 000,053,472 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuauclt.exe
[2010.01.22 17:55:15 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty\Obrázky
[2010.01.22 17:54:39 | 000,000,000 | ---D | C] -- D:\WINDOWS\Registration
[2010.01.22 17:54:32 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty\Hudba
[2010.01.22 17:53:33 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty\Filmy
[2009.08.06 19:24:26 | 000,015,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wuaucpl.cpl.mui
[2004.08.17 14:49:30 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xcopy.exe
[2004.08.17 14:49:28 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\winhlp32.exe
[2004.08.17 14:49:28 | 000,147,968 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\regedit.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe
[2004.08.17 14:49:24 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\hh.exe
[2004.08.03 22:01:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wshom.ocx
[2001.11.24 19:10:56 | 000,032,256 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\wupdmgr.exe
[2001.11.24 19:09:30 | 000,256,419 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\winhelp.exe
[2001.11.24 19:06:30 | 000,049,680 | ---- | C] (Twain Working Group) -- D:\WINDOWS\twunk_16.exe
[2001.11.24 19:06:30 | 000,025,600 | ---- | C] (Twain Working Group) -- D:\WINDOWS\twunk_32.exe
[2001.11.24 19:05:30 | 000,005,532 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System\stdole.tlb

========== Files - Modified Within 14 Days ==========

[2010.03.14 17:12:26 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT
[2010.03.14 17:12:18 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2010.03.14 17:12:15 | 000,000,000 | ---- | M] () -- D:\WINDOWS\ativpsrm.bin
[2010.03.14 17:11:30 | 009,437,184 | -H-- | M] () -- D:\Documents and Settings\Leandra\NTUSER.DAT
[2010.03.14 17:11:30 | 000,000,178 | -HS- | M] () -- D:\Documents and Settings\Leandra\ntuser.ini
[2010.03.14 17:11:24 | 006,975,082 | -H-- | M] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\IconCache.db
[2010.03.14 17:06:22 | 000,048,640 | ---- | M] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.14 16:52:46 | 000,000,268 | ---- | M] () -- D:\WINDOWS\system.ini
[2010.03.14 16:51:55 | 000,000,027 | ---- | M] () -- D:\WINDOWS\System32\drivers\etc\hosts
[2010.03.14 14:08:34 | 000,041,630 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\procesy.JPG
[2010.03.14 13:33:51 | 000,000,586 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Startup Manager.lnk
[2010.03.14 01:34:23 | 000,000,773 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\fff.html
[2010.03.14 01:33:27 | 000,000,199 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\a.html
[2010.03.14 01:32:50 | 000,000,199 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\as.xhtml
[2010.03.14 01:32:02 | 000,000,199 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\a.xml
[2010.03.14 01:17:36 | 000,000,436 | ---- | M] () -- D:\Documents and Settings\All Users\Plocha\Fraps.lnk
[2010.03.13 14:10:26 | 000,000,567 | ---- | M] () -- D:\Documents and Settings\All Users\Plocha\Cold War.lnk
[2010.03.13 14:05:33 | 000,081,920 | ---- | M] (Portions (c) Creative Labs Inc. and NVIDIA Corp.) -- D:\WINDOWS\System32\OpenAL32.dll
[2010.03.13 13:54:41 | 000,002,543 | ---- | M] () -- D:\WINDOWS\WINCMD.INI
[2010.03.13 01:37:34 | 000,084,536 | ---- | M] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.03.13 01:37:26 | 001,582,640 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010.03.13 01:20:13 | 000,435,260 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2010.03.13 01:20:13 | 000,432,004 | ---- | M] () -- D:\WINDOWS\System32\perfh005.dat
[2010.03.13 01:20:13 | 000,079,062 | ---- | M] () -- D:\WINDOWS\System32\perfc005.dat
[2010.03.13 01:20:13 | 000,068,156 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2010.03.13 01:20:12 | 001,028,912 | ---- | M] () -- D:\WINDOWS\System32\PerfStringBackup.INI
[2010.03.13 00:45:58 | 000,101,071 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Logitech repraky.gif
[2010.03.13 00:45:05 | 000,022,859 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Logitecg g19.jpg
[2010.03.13 00:44:50 | 000,024,780 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\ToshibaGamingKeyboard.jpg
[2010.03.13 00:44:40 | 000,036,899 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Saitek Cyborg.jpg
[2010.03.13 00:43:24 | 000,046,658 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Logitech g9.jpg
[2010.03.13 00:43:05 | 000,034,427 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Sharkoon Rush FireGlider 3600DPI.jpg
[2010.03.13 00:42:46 | 000,031,394 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Microsoft SideWinder.jpg
[2010.03.13 00:37:28 | 084,559,536 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\01. Va-dance_paradise_volume_9_mixed_by_vicious_pete-emf (1).mp3
[2010.03.12 22:56:38 | 001,812,300 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\dalsi loga.rar
[2010.03.12 22:55:55 | 000,000,624 | ---- | M] () -- D:\WINDOWS\wcx_ftp.ini
[2010.03.12 22:33:14 | 001,513,771 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\William4.jpg
[2010.03.12 22:16:07 | 000,317,591 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\divnej william xD.jpg
[2010.03.12 21:41:00 | 000,029,532 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Incised 901 BT Nord Italic.otf
[2010.03.11 19:24:50 | 001,579,930 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Co je to za píseň.mp3
[2010.03.11 19:12:29 | 000,000,464 | -H-- | M] () -- D:\IPH.PH
[2010.03.11 19:12:26 | 000,001,508 | ---- | M] () -- D:\Documents and Settings\All Users\Plocha\AIM.lnk
[2010.03.11 15:14:45 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2010.03.10 16:19:37 | 000,444,952 | ---- | M] (Creative Labs) -- D:\WINDOWS\System32\wrap_oal.dll
[2010.03.09 18:00:17 | 000,000,436 | ---- | M] () -- D:\WINDOWS\System32\drivers\etc\hosts.ics
[2010.03.07 14:26:50 | 001,187,870 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Plocha.rar
[2010.03.07 02:48:22 | 000,297,076 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\William2.JPG
[2010.03.07 02:48:02 | 004,915,256 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\William2.bmp
[2010.03.07 01:46:29 | 000,001,504 | ---- | M] () -- D:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2010.03.07 01:10:37 | 000,022,868 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Rescue Pals™ Mazlíček budíček kočička - MGA 377719_377733.jpg
[2010.03.07 01:09:25 | 000,122,004 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\wwwonlinerws225ag1.jpg
[2010.03.06 00:42:50 | 000,745,217 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Další logo xD.jpg
[2010.03.04 10:14:22 | 000,403,047 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\Fishbot_By_Ice-T.exe
[2010.03.03 16:29:59 | 000,050,948 | ---- | M] () -- D:\Documents and Settings\Leandra\Dokumenty\Bez názvu.JPG
[2010.03.03 10:20:27 | 000,111,358 | ---- | M] () -- D:\Documents and Settings\Leandra\Dokumenty\blabla.JPG
[2010.03.02 16:01:11 | 000,000,000 | ---- | M] () -- D:\WINDOWS\System32\SYSTEM.INI
[2010.03.02 16:00:27 | 000,000,157 | ---- | M] () -- D:\WINDOWS\W2W.ini
[2010.03.02 15:32:49 | 000,396,288 | ---- | M] (Trend Micro Inc.) -- D:\Documents and Settings\Leandra\Plocha\a.exe
[2010.03.02 14:23:33 | 000,000,400 | ---- | M] () -- D:\WINDOWS\g_oirotq614.ini
[2010.03.02 01:31:24 | 000,334,772 | ---- | M] () -- D:\Documents and Settings\Leandra\Plocha\111.jpg
[2010.03.01 22:30:01 | 014,191,263 | ---- | M] () -- D:\Documents and Settings\Leandra\Dokumenty\Obrázky.zip
[2010.03.01 02:24:17 | 000,099,783 | ---- | M] () -- D:\Documents and Settings\Leandra\Dokumenty\kytara.c4d

========== Files Created - No Company Name ==========

[2010.03.14 17:12:15 | 000,000,000 | ---- | C] () -- D:\WINDOWS\ativpsrm.bin
[2010.03.14 13:56:30 | 000,041,630 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\procesy.JPG
[2010.03.14 13:33:51 | 000,000,586 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Startup Manager.lnk
[2010.03.14 01:34:23 | 000,000,773 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\fff.html
[2010.03.14 01:33:27 | 000,000,199 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\a.html
[2010.03.14 01:32:50 | 000,000,199 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\as.xhtml
[2010.03.14 01:32:02 | 000,000,199 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\a.xml
[2010.03.14 01:17:36 | 000,000,436 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\Fraps.lnk
[2010.03.13 14:10:26 | 000,000,567 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\Cold War.lnk
[2010.03.13 00:45:58 | 000,101,071 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Logitech repraky.gif
[2010.03.13 00:45:05 | 000,022,859 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Logitecg g19.jpg
[2010.03.13 00:44:50 | 000,024,780 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\ToshibaGamingKeyboard.jpg
[2010.03.13 00:44:40 | 000,036,899 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Saitek Cyborg.jpg
[2010.03.13 00:43:24 | 000,046,658 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Logitech g9.jpg
[2010.03.13 00:43:05 | 000,034,427 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Sharkoon Rush FireGlider 3600DPI.jpg
[2010.03.13 00:42:46 | 000,031,394 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Microsoft SideWinder.jpg
[2010.03.12 22:56:37 | 001,812,300 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\dalsi loga.rar
[2010.03.12 22:45:13 | 000,022,984 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Anja Eliane.ttf
[2010.03.12 22:41:10 | 000,029,532 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Incised 901 BT Nord Italic.otf
[2010.03.12 22:33:12 | 001,513,771 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\William4.jpg
[2010.03.12 22:16:05 | 000,317,591 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\divnej william xD.jpg
[2010.03.11 19:12:26 | 000,001,508 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\AIM.lnk
[2010.03.11 19:12:05 | 000,000,464 | -H-- | C] () -- D:\IPH.PH

Leandra · Příspěvekod **Leandra** » 14 bře 2010 21:29

2. část

[2010.03.11 17:59:56 | 001,579,930 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Co je to za píseň.mp3
[2010.03.10 14:53:09 | 084,559,536 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\01. Va-dance_paradise_volume_9_mixed_by_vicious_pete-emf (1).mp3
[2010.03.07 14:26:49 | 001,187,870 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Plocha.rar
[2010.03.07 02:48:22 | 000,297,076 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\William2.JPG
[2010.03.07 02:44:58 | 004,915,256 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\William2.bmp
[2010.03.07 01:46:29 | 000,001,504 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2010.03.07 01:10:37 | 000,022,868 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Rescue Pals™ Mazlíček budíček kočička - MGA 377719_377733.jpg
[2010.03.07 01:09:25 | 000,122,004 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\wwwonlinerws225ag1.jpg
[2010.03.06 00:42:38 | 000,745,217 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Další logo xD.jpg
[2010.03.04 10:14:07 | 000,403,047 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Fishbot_By_Ice-T.exe
[2010.03.03 16:29:53 | 000,050,948 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Bez názvu.JPG
[2010.03.03 10:20:19 | 000,111,358 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\blabla.JPG
[2010.03.02 16:00:27 | 000,000,157 | ---- | C] () -- D:\WINDOWS\W2W.ini
[2010.03.02 14:23:33 | 000,000,400 | ---- | C] () -- D:\WINDOWS\g_oirotq614.ini
[2010.03.02 01:31:10 | 000,334,772 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\111.jpg
[2010.03.01 22:29:26 | 014,191,263 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Obrázky.zip
[2010.03.01 02:24:17 | 000,099,783 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\kytara.c4d
[2010.02.27 23:37:18 | 000,000,703 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\TeamViewer 4.lnk
[2010.02.27 23:36:53 | 002,101,240 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\TeamViewer.exe
[2010.02.27 23:15:23 | 002,091,334 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\TeamViewer.rar
[2010.02.27 23:09:25 | 033,055,320 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\1060237-VMrGjQ.flv
[2010.02.27 17:28:27 | 000,001,415 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\ICQ6.5.lnk
[2010.02.24 21:45:02 | 000,000,271 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\1.html
[2010.02.19 23:41:36 | 000,029,645 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\123.html
[2010.02.19 14:56:42 | 000,001,597 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\avast! Antivirus.lnk
[2010.02.19 01:57:41 | 000,039,424 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\CF.doc
[2010.02.19 01:57:12 | 000,001,486 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Defraggler.lnk
[2010.02.19 01:46:29 | 000,001,616 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\HijackThis.lnk
[2010.02.18 16:40:25 | 000,001,537 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\NHL® 09.lnk
[2010.02.18 09:16:27 | 000,000,490 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Total Commander.lnk
[2010.02.18 09:16:26 | 000,000,545 | ---- | C] () -- D:\WINDOWS\UC.PIF
[2010.02.18 09:16:26 | 000,000,545 | ---- | C] () -- D:\WINDOWS\RAR.PIF
[2010.02.18 09:16:25 | 000,000,545 | ---- | C] () -- D:\WINDOWS\PKZIP.PIF
[2010.02.18 09:16:25 | 000,000,545 | ---- | C] () -- D:\WINDOWS\PKUNZIP.PIF
[2010.02.18 09:16:25 | 000,000,545 | ---- | C] () -- D:\WINDOWS\NOCLOSE.PIF
[2010.02.18 09:16:25 | 000,000,545 | ---- | C] () -- D:\WINDOWS\LHA.PIF
[2010.02.18 09:16:25 | 000,000,545 | ---- | C] () -- D:\WINDOWS\ARJ.PIF
[2010.02.16 12:48:50 | 000,120,200 | ---- | C] () -- D:\WINDOWS\System32\DLLDEV32i.dll
[2010.02.15 19:00:33 | 000,012,558 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\llllllllllllllll.html
[2010.02.15 02:01:26 | 000,132,650 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\sssssssssssssss.c4d
[2010.02.15 00:50:05 | 000,000,865 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\lahev.htm
[2010.02.12 23:07:46 | 000,002,528 | ---- | C] () -- D:\Documents and Settings\Leandra\Data aplikací\$_hpcst$.hpc
[2010.02.12 23:02:38 | 000,000,012 | ---- | C] () -- D:\WINDOWS\MCMDLG.LIB
[2010.02.11 22:18:05 | 000,000,125 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\bg.html
[2010.02.11 12:03:55 | 000,000,155 | ---- | C] () -- D:\WINDOWS\level.ini
[2010.02.11 11:54:59 | 000,138,184 | ---- | C] () -- D:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.02.06 18:20:35 | 000,000,330 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\hry.lnk
[2010.02.06 12:39:13 | 000,000,585 | ---- | C] () -- D:\Documents and Settings\All Users\Plocha\Pivot Stickfigure Animator.lnk
[2010.02.06 01:40:15 | 000,001,663 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Alcohol 120%.lnk
[2010.01.31 13:08:51 | 000,066,170 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Vitamíny.docx
[2010.01.31 13:03:54 | 000,018,529 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\index.html
[2010.01.31 13:01:29 | 000,373,256 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Untitled-1.bmp
[2010.01.31 12:59:14 | 000,811,456 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Debil.wmv
[2010.01.30 01:46:59 | 000,163,456 | ---- | C] () -- D:\WINDOWS\System32\drivers\vidstub.sys
[2010.01.30 01:42:00 | 000,049,152 | ---- | C] () -- D:\WINDOWS\System32\DirSize.dll
[2010.01.29 23:36:26 | 000,000,156 | ---- | C] () -- D:\WINDOWS\Twunk001.MTX
[2010.01.29 23:36:26 | 000,000,002 | ---- | C] () -- D:\WINDOWS\Twain001.Mtx
[2010.01.29 23:36:26 | 000,000,000 | ---- | C] () -- D:\WINDOWS\Twunk002.MTX
[2010.01.29 23:35:43 | 000,002,548 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Register Vegas Pro.htm
[2010.01.29 23:26:33 | 000,191,040 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.01.29 23:23:33 | 000,000,325 | ---- | C] () -- D:\WINDOWS\SIERRA.INI
[2010.01.29 00:39:49 | 000,153,600 | ---- | C] () -- D:\Documents and Settings\Leandra\Data aplikací\SharedSettings.ccs
[2010.01.24 19:07:48 | 000,469,667 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\Bugatti_veyron_in_Tokyo.jpg
[2010.01.24 00:19:26 | 000,004,277 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\LocalSettings.php
[2010.01.23 23:56:05 | 000,048,640 | ---- | C] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.23 22:28:12 | 000,340,832 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\s.php
[2010.01.23 22:27:25 | 000,340,832 | ---- | C] () -- D:\Documents and Settings\Leandra\Dokumenty\A.html
[2010.01.23 17:57:00 | 000,000,605 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\DAEMON Tools.lnk
[2010.01.23 13:30:08 | 000,000,624 | ---- | C] () -- D:\WINDOWS\wcx_ftp.ini
[2010.01.23 11:10:07 | 000,000,006 | -H-- | C] () -- D:\WINDOWS\tasks\SA.DAT
[2010.01.23 09:56:46 | 000,000,582 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.01.23 01:22:23 | 000,000,544 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\µTorrent.lnk
[2010.01.22 19:12:55 | 000,013,277 | -HS- | C] () -- D:\Documents and Settings\Leandra\Plocha\Folder.jpg
[2010.01.22 19:12:55 | 000,013,277 | -HS- | C] () -- D:\Documents and Settings\Leandra\Plocha\AlbumArt_{F152D6A3-40FA-4004-9FAC-5EDDC39FFE58}_Large.jpg
[2010.01.22 19:12:55 | 000,002,898 | -HS- | C] () -- D:\Documents and Settings\Leandra\Plocha\AlbumArtSmall.jpg
[2010.01.22 19:12:55 | 000,002,898 | -HS- | C] () -- D:\Documents and Settings\Leandra\Plocha\AlbumArt_{F152D6A3-40FA-4004-9FAC-5EDDC39FFE58}_Small.jpg
[2010.01.22 18:48:04 | 000,000,062 | -HS- | C] () -- D:\Documents and Settings\All Users\Data aplikací\desktop.ini
[2010.01.22 18:43:26 | 000,000,668 | ---- | C] () -- D:\Documents and Settings\Leandra\Data aplikací\vso_ts_preview.xml
[2010.01.22 18:43:22 | 000,000,600 | ---- | C] () -- D:\Documents and Settings\Leandra\Data aplikací\winscp.rnd
[2010.01.22 18:35:56 | 000,001,462 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\CCleaner.lnk
[2010.01.22 18:35:56 | 000,000,627 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\EVEREST Home Edition.lnk
[2010.01.22 18:35:56 | 000,000,620 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Zástupce - Skype.lnk
[2010.01.22 18:35:56 | 000,000,556 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\HLSW.lnk
[2010.01.22 18:35:56 | 000,000,528 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Nvu.lnk
[2010.01.22 18:35:56 | 000,000,400 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Zástupce - Připojení k místní síti.lnk
[2010.01.22 18:35:56 | 000,000,392 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Zástupce - Přidat nebo odebrat programy.lnk
[2010.01.22 18:35:56 | 000,000,104 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\Tento počítač.lnk
[2010.01.22 18:35:52 | 000,476,672 | ---- | C] () -- D:\Documents and Settings\Leandra\Plocha\TitulkyPosun.exe
[2010.01.22 18:25:17 | 000,084,536 | ---- | C] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.01.22 18:19:23 | 006,975,082 | -H-- | C] () -- D:\Documents and Settings\Leandra\Local Settings\Data aplikací\IconCache.db
[2010.01.22 18:11:33 | 009,699,328 | ---- | C] () -- D:\WINDOWS\RTLCPL.EXE
[2010.01.22 18:07:33 | 000,002,543 | ---- | C] () -- D:\WINDOWS\WINCMD.INI
[2010.01.22 18:04:45 | 000,000,178 | -HS- | C] () -- D:\Documents and Settings\Leandra\ntuser.ini
[2010.01.22 18:04:44 | 000,000,062 | -HS- | C] () -- D:\Documents and Settings\Leandra\Data aplikací\desktop.ini
[2010.01.22 18:04:43 | 009,437,184 | -H-- | C] () -- D:\Documents and Settings\Leandra\NTUSER.DAT
[2010.01.22 18:01:47 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2010.01.22 17:58:01 | 000,316,640 | ---- | C] () -- D:\WINDOWS\WMSysPr9.prx
[2010.01.22 17:57:02 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.01.22 17:57:02 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\WindowsShell.Manifest
[2010.01.22 17:56:09 | 000,048,680 | -HS- | C] () -- D:\WINDOWS\winnt256.bmp
[2010.01.22 17:56:09 | 000,048,680 | -HS- | C] () -- D:\WINDOWS\winnt.bmp
[2010.01.22 17:54:07 | 000,065,832 | ---- | C] () -- D:\WINDOWS\Omítka Santa Fe.bmp
[2010.01.22 17:54:07 | 000,026,680 | ---- | C] () -- D:\WINDOWS\Řeka Sumida.bmp
[2010.01.22 17:54:07 | 000,017,362 | ---- | C] () -- D:\WINDOWS\Rododendron.bmp
[2010.01.22 17:54:07 | 000,009,522 | ---- | C] () -- D:\WINDOWS\Zapotec.bmp
[2010.01.22 17:54:06 | 000,065,978 | ---- | C] () -- D:\WINDOWS\Mýdlové bubliny.bmp
[2010.01.22 17:54:06 | 000,065,954 | ---- | C] () -- D:\WINDOWS\Prérijní vítr.bmp
[2010.01.22 17:54:06 | 000,026,582 | ---- | C] () -- D:\WINDOWS\Zelený kámen.bmp
[2010.01.22 17:54:06 | 000,017,336 | ---- | C] () -- D:\WINDOWS\Na rybách.bmp
[2010.01.22 17:54:06 | 000,017,062 | ---- | C] () -- D:\WINDOWS\Zrnko kávy.bmp
[2010.01.22 17:54:06 | 000,016,730 | ---- | C] () -- D:\WINDOWS\Textura peří.bmp
[2010.01.22 17:54:06 | 000,001,272 | ---- | C] () -- D:\WINDOWS\Modrá krajka 16.bmp
[2009.04.16 16:19:48 | 000,015,577 | ---- | C] () -- D:\WINDOWS\atiogl.xml
[2009.02.25 08:38:22 | 000,249,856 | ---- | C] () -- D:\WINDOWS\System32\DivX.dll
[2006.06.29 14:58:52 | 000,030,808 | ---- | C] () -- D:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
[2006.06.29 14:53:56 | 000,026,489 | ---- | C] () -- D:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006.04.18 15:39:28 | 000,029,779 | ---- | C] () -- D:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006.04.18 15:39:28 | 000,026,040 | ---- | C] () -- D:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- D:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- D:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- D:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- D:\WINDOWS\System32\ogg.dll
[2005.03.02 17:44:59 | 000,036,864 | ---- | C] () -- D:\WINDOWS\System32\frapsvid.dll
[2004.08.22 17:04:56 | 000,069,120 | ---- | C] () -- D:\WINDOWS\daemon.dll
[2004.08.17 14:49:30 | 000,239,616 | ---- | C] () -- D:\WINDOWS\System32\wstrenderer.ax
[2004.08.17 14:49:30 | 000,164,352 | ---- | C] () -- D:\WINDOWS\System32\wstpager.ax
[2004.08.17 14:49:10 | 000,081,920 | ---- | C] () -- D:\WINDOWS\System32\ieencode.dll
[2004.07.17 10:36:38 | 000,027,440 | ---- | C] () -- D:\WINDOWS\System32\drivers\secdrv.sys
[2001.11.24 19:11:36 | 000,000,707 | ---- | C] () -- D:\WINDOWS\_default.pif
[2001.11.24 19:10:38 | 000,036,580 | ---- | C] () -- D:\WINDOWS\wmprfCSY.prx
[2001.11.24 19:04:12 | 000,059,167 | ---- | C] () -- D:\WINDOWS\System\setup.inf
[2001.11.24 18:52:22 | 000,000,080 | ---- | C] () -- D:\WINDOWS\explorer.scf
[2001.11.24 18:46:26 | 000,082,944 | ---- | C] () -- D:\WINDOWS\clock.avi
[2001.11.24 18:46:14 | 000,000,075 | ---- | C] () -- D:\WINDOWS\System32\Zobrazit kanály.scf
[2001.01.12 10:49:38 | 000,021,504 | ---- | C] () -- D:\WINDOWS\System32\zlib.dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- D:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2010.03.11 19:12:26 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\AIM
[2010.02.03 19:19:58 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.02.17 00:15:56 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Autodesk
[2010.01.22 22:03:18 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Codemasters
[2010.01.23 17:56:38 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.02.21 15:01:21 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\IObit
[2010.02.19 02:56:38 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\MAGIX
[2010.03.02 14:23:12 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\McNeel
[2010.01.30 00:22:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\PACE Anti-Piracy
[2010.03.02 17:29:20 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Screaming Bee
[2010.01.29 23:31:53 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Sony
[2010.03.14 13:33:50 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Startup Manager
[2010.03.05 08:17:29 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.01.24 11:57:15 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.01.23 18:03:43 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Urban FreeStyle Soccer
[2010.02.14 10:02:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Data aplikací\Z-Software
[2010.01.24 11:56:33 | 000,000,000 | -HSD | M] -- D:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.03.11 19:14:46 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\acccore
[2010.01.29 00:40:16 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\CoffeeCup Software
[2010.02.17 17:53:07 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\flightgear.org
[2010.03.13 22:44:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\HLSW
[2010.03.10 14:46:11 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\ICQ
[2010.03.03 13:16:45 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\iFree
[2010.02.27 03:17:26 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\IObit
[2010.02.18 16:59:11 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Leadertech
[2010.02.16 12:52:16 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\MAGIX
[2010.02.14 08:21:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\MAXON
[2010.01.29 09:18:23 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Nvu
[2010.02.27 23:05:47 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Opera
[2010.01.30 00:22:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\PACE Anti-Piracy
[2010.01.29 23:36:24 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Publish Providers
[2010.03.02 17:29:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Screaming Bee
[2010.01.29 23:35:53 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Sony
[2010.01.29 23:03:54 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Sony Setup
[2010.02.27 23:16:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\TeamViewer
[2010.01.24 11:57:07 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\TuneUp Software
[2010.03.14 17:11:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\uTorrent
[2010.02.11 22:02:35 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\VitySoft
[2010.02.19 03:01:19 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Vso
[2010.03.13 01:06:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\WinPatrol
[2010.02.14 10:02:18 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Leandra\Data aplikací\Z-Software

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 172 bytes -> D:\Documents and Settings\All Users\Data aplikací\TEMP:CD060F93
@Alternate Data Stream - 129 bytes -> D:\Documents and Settings\All Users\Data aplikací\TEMP:42DC4246
@Alternate Data Stream - 1133 bytes -> D:\Program Files\Common Files\System:ZXdfHEjTbdILYzs6s3ik1TqRyd1
@Alternate Data Stream - 1113 bytes -> D:\Documents and Settings\All Users\Data aplikací\Microsoft:5Xscwoi1jpyLUQK0DEaTrMyhC5
@Alternate Data Stream - 110 bytes -> D:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86
@Alternate Data Stream - 1093 bytes -> D:\Documents and Settings\All Users\Data aplikací\Microsoft:hbhsaSufTxUAq3fVh22ax
@Alternate Data Stream - 105 bytes -> D:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5
< End of report >

Kontrola logu zpomalený pc Vyřešeno

Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Re: Kontrola logu zpomalený pc

Kdo je online