VIRY.CZ

Zpráva

jarekkral · #1 Příspěvek od **jarekkral** » 17 úno 2014 13:43

dobrý den používám prohlížeč mozilla firefox dostal se mi tam nějaký vir awardhotspot.com nebo valuedealshopper.com nevíte jak jej odstanit? děkuji jarek

#2 Příspěvek od **stell** » 17 úno 2014 14:42

Zdravim
Vloz sem log FRST
http://forum.viry.cz/viewtopic.php?f=24 ... 2#p1250282

jarekkral · #3 Příspěvek od **jarekkral** » 17 úno 2014 14:50

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-02-2014
Ran by dukat at 2014-02-16 13:47:58
Running from C:\Documents and Settings\dukat\Dokumenty\Stažené soubory
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

(Version: 1.9.5.3105 - )
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
avast! Free Antivirus (Version: 9.0.2013 - Avast Software)
BorderZone (Version: - Cenega)
Brány Skeldalu pro Windows 1.2 (Version: - Napoleon games)
CCleaner (Version: 4.09 - Piriform)
CDex - Open Source Digital Audio CD Extractor (Version: 1.70.4.2009 - Georgy Berdyshev)
Commando (Version: - )
Counter-Strike (Version: - Valve)
Counter-Strike(TM) (Version: 1.0.0.0 - Valve)
DAEMON Tools Lite (Version: 4.48.1.0347 - Disc Soft Ltd)
Fallout (Version: - )
Fallout Inventář Editor 1.0Cz (Version: - )
Free Download Manager 3.9.3 (Version: - FreeDownloadManager.ORG)
FreeHDSport TV V6.0 (Version: 1.34.1.21 - installdaddy) <==== ATTENTION
GOM Player (Version: 2.2.56.5181 - Gretech Corporation)
Google Earth Plug-in (Version: 7.1.2.2041 - Google)
Google Chrome (Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
GTA San Andreas (Version: 1.00.00001 - Rockstar Games)
Half-Life (Version: Half-Life - Non Steam - KingSOFT DVD)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000 - Microsoft Corporation)
IrfanView (remove only) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
maucampo (Version: 2013.12.18.224133 - maucampo)
Microsoft .NET Framework 2.0 (Version: - Microsoft Corporation)
Microsoft .NET Framework 2.0 (Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 cs) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (Version: 27.0.1 - Mozilla)
NVIDIA Display Control Panel (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA Drivers (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA nView Desktop Manager (Version: 6.14.10.13527 - NVIDIA Corporation)
NVIDIA PhysX (Version: 9.10.0513 - NVIDIA Corporation)
Path of Exile (Version: 1.0.6.31045 - Grinding Gear Games)
Platform (Version: 1.22 - VIA Technologies, Inc.) Hidden
Polda II (Version: - )
Polda III (Version: - )
Polda IV (Version: - )
Polda V (Version: - )
Quake III Arena (Version: - )
Quake Live (Version: - id Software)
Realtek High Definition Audio Driver (Version: 5.10.0.5377 - Realtek Semiconductor Corp.)
Risen 2 Dark Waters (Version: - )
Seznam Software (HKCU Version: - Seznam.cz)
Shockwave (Version: - )
Steam(TM) (Version: 1.0.0.0 - Valve)
Temná pohlazení: Hříchy otců (Version: 1.0.0.0 - Alawar Entertainment Inc.)
VIA Platforma Ovladače zařízení (Version: 1.22 - VIA Technologies, Inc.)
VIA Rhine-Family Fast-Ethernet Adapter (Version: - )
VLC media player 2.1.3 (Version: 2.1.3 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Installer 3.1 (KB893803) (Version: - Microsoft Corporation)
WinRAR 5.00 (32-bit) (Version: 5.00.0 - win.rar GmbH)
ZDaemon (remove only) (Version: - )

==================== Restore Points =========================

07-01-2014 13:06:00 Kontrolní bod systému
07-01-2014 18:06:43 Installed Java 7 Update 45
08-01-2014 21:16:53 Kontrolní bod systému
10-01-2014 05:25:02 Kontrolní bod systému
11-01-2014 19:32:06 Kontrolní bod systému
12-01-2014 18:12:28 Nainstalováno rozhraní DirectX
13-01-2014 23:27:11 Kontrolní bod systému
14-01-2014 06:23:05 Installed GTA San Andreas
15-01-2014 13:00:46 Kontrolní bod systému
16-01-2014 05:06:43 Nainstalováno rozhraní DirectX
16-01-2014 05:08:40 Nainstalováno: NVIDIA PhysX
16-01-2014 05:18:03 Nainstalováno rozhraní DirectX
17-01-2014 06:09:56 Kontrolní bod systému
18-01-2014 15:59:32 Installed Alcohol 120%
19-01-2014 13:11:07 Installed Steam(TM)
19-01-2014 13:11:54 Installed Counter-Strike(TM)
20-01-2014 18:54:21 Kontrolní bod systému
22-01-2014 06:15:59 Kontrolní bod systému
24-01-2014 17:02:08 Kontrolní bod systému
25-01-2014 12:32:33 Installed Call of Duty(R) 2
25-01-2014 12:52:42 Removed Call of Duty(R) 2
28-01-2014 05:57:55 Kontrolní bod systému
29-01-2014 09:50:57 Kontrolní bod systému
30-01-2014 15:13:49 Kontrolní bod systému
01-02-2014 06:28:26 Kontrolní bod systému
02-02-2014 07:20:27 Kontrolní bod systému
04-02-2014 06:11:56 Kontrolní bod systému
04-02-2014 12:48:26 Installed Path of Exile
05-02-2014 13:25:03 Kontrolní bod systému
05-02-2014 22:25:54 Odebráno: AVG PC TuneUp 2014
05-02-2014 22:26:26 Odebráno: AVG PC TuneUp 2014 (cs-CZ)
19-04-2007 05:25:15 Kontrolní bod systému
07-02-2014 13:43:38 avast! antivirus system restore point
09-02-2014 09:02:23 Kontrolní bod systému
20-04-2007 07:37:43 Nainstalováno: Microsoft Visual C++ 2005 Redistributable
12-02-2014 12:01:45 Kontrolní bod systému
13-02-2014 05:27:29 avast! antivirus system restore point
13-02-2014 05:34:40 avast! antivirus system restore point
13-02-2014 15:54:39 Odebráno: AVG PC TuneUp 2014
13-02-2014 15:55:16 Odebráno: AVG PC TuneUp 2014 (cs-CZ)
14-02-2014 16:54:28 Kontrolní bod systému
16-02-2014 04:47:47 Kontrolní bod systému

==================== Hosts content: ==========================

2001-10-25 15:00 - 2001-10-25 15:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-codedownloader.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-enabler.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-firefoxinstaller.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-updater.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-07 12:51 - 2013-10-30 09:54 - 00348160 _____ () C:\Program Files\WinRAR\rarlng.dll
2004-08-17 14:49 - 2004-08-17 14:49 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-02-16 11:41 - 2014-02-17 09:23 - 02180608 _____ () C:\Program Files\AVAST Software\Avast\defs\14021700\algo.dll
2014-02-13 06:36 - 2014-02-13 06:36 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-07 05:58 - 2013-10-04 14:15 - 00106496 _____ () C:\Program Files\Free Download Manager\fdmumsp.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:76650B61

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

==================== Faulty Device Manager Devices =============

Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================

Application errors:
==================
Error: (02/12/2014 06:13:27 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 06:10:17 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace explorer.exe, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 06:09:16 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 06:02:55 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:59:53 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:56:14 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:55:19 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:54:50 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:52:42 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (02/12/2014 05:51:13 PM) (Source: Application Hang) (User: )
Description: Zablokovaná aplikace IEXPLORE.EXE, verze 6.0.2900.2180, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

System errors:
=============
Error: (02/16/2014 07:40:04 AM) (Source: System Error) (User: )
Description: Kód chyby 1000007f, parametr1 00000008, parametr2 80042000, parametr3 00000000, parametr4 00000000.

Error: (02/16/2014 07:12:41 AM) (Source: System Error) (User: )
Description: Kód chyby 100000d1, parametr1 bb83958d, parametr2 00000002, parametr3 00000000, parametr4 b4bae791.

Error: (02/16/2014 04:43:48 AM) (Source: System Error) (User: )
Description: Kód chyby 100000d1, parametr1 099782c0, parametr2 00000002, parametr3 00000000, parametr4 b4bae188.

Error: (02/16/2014 04:22:40 AM) (Source: System Error) (User: )
Description: Kód chyby 0000009c, parametr1 00000000, parametr2 80545ff0, parametr3 a2000000, parametr4 84010400.

Error: (02/16/2014 02:22:02 AM) (Source: System Error) (User: )
Description: Kód chyby 0000009c, parametr1 00000000, parametr2 80545ff0, parametr3 a2000000, parametr4 84010400.

Error: (02/15/2014 11:21:14 PM) (Source: 0) (User: )
Description: \Device\Harddisk0\D

Error: (02/15/2014 11:12:32 PM) (Source: 0) (User: )
Description: \Device\Harddisk0\D

Error: (02/15/2014 11:06:38 PM) (Source: 0) (User: )
Description: \Device\Harddisk0\D

Error: (02/15/2014 10:44:48 PM) (Source: 0) (User: )
Description: \Device\Harddisk0\D

Error: (02/15/2014 10:44:48 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort0

Microsoft Office Sessions:
=========================
Error: (02/12/2014 06:13:27 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 06:10:17 PM) (Source: Application Hang)(User: )
Description: explorer.exe6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 06:09:16 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 06:02:55 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:59:53 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:56:14 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:55:19 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:54:50 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:52:42 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

Error: (02/12/2014 05:51:13 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE6.0.2900.2180hungapp0.0.0.000000000

==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 1534.42 MB
Available physical RAM: 1043.84 MB
Total Pagefile: 3430.58 MB
Available Pagefile: 3073.92 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964.38 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.75 GB) (Free:291.46 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive e: (CS:GO) (CDROM) (Total:2.44 GB) (Free:0 GB) CDFS
Drive f: (Disc) (CDROM) (Total:1.79 GB) (Free:0 GB) UDF
Drive g: (Disc) (CDROM) (Total:1.79 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 82C182C1)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#4 Příspěvek od **stell** » 17 úno 2014 14:57

Este daj aj druhy log
FRST.txt

jarekkral · #5 Příspěvek od **jarekkral** » 17 úno 2014 15:02

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-02-2014
Ran by dukat (administrator) on DUKAT-AA2E641CC on 16-02-2014 14:00:01
Running from C:\Documents and Settings\dukat\Dokumenty\Stažené soubory
Systém Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: Czech
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [16125440 2007-02-26] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SkyTel] - C:\WINDOWS\SkyTel.EXE [2879488 2006-05-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [1753192 2010-07-07] ()
HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\system32\NvMcTray.dll [110696 2010-07-09] (NVIDIA Corporation)
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [13923432 2010-07-09] (NVIDIA Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-13] (AVAST Software)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [Free Download Manager] - C:\Program Files\Free Download Manager\fdm.exe [6950400 2013-10-25] (FreeDownloadManager.ORG)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [cz.seznam.software.autoupdate] - C:\Documents and Settings\dukat\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [cz.seznam.software.szndesktop] - C:\Documents and Settings\dukat\Data aplikací\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [Steam] - C:\Program Files\Valve\Steam\Steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [NextLive] - C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\dukat\Data aplikací\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1667584 2004-08-17] (Microsoft Corporation)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\MountPoints2: {f94eaf5b-8059-11e3-98bf-00e04d26f9e0} - E:\csgo_license.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.alawarhry.cz/?pid=36398
SearchScopes: HKLM - DefaultScope value is missing.
BHO: FreeHDSport TV V6.0 - {11111111-1111-1111-1111-110411591164} - C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-bho.dll (installdaddy)
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampoBHO.dll (maucampo)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Tcpip\..\Interfaces\{39A1A5E6-3113-455A-98F5-07E34650280F}: [NameServer]10.132.247.4

FireFox:
========
FF ProfilePath: C:\Documents and Settings\dukat\Data aplikací\Mozilla\Firefox\Profiles\tldgy7uf.default
FF Homepage: seznam.cz
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: FreeHDSport TV V6.0 - C:\Documents and Settings\dukat\Data aplikací\Mozilla\Firefox\Profiles\tldgy7uf.default\Extensions\01e89cb1-f65e-4d01-9a8c-16784b40f1e3@2579a6e9-6ce6-413f-94ce-37240c823447.com [2014-02-13]
FF Extension: Adblock Plus - C:\Documents and Settings\dukat\Data aplikací\Mozilla\Firefox\Profiles\tldgy7uf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-13]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [bjfjckelkjhfgamlmipgdaklofacegaa] - C:\Program Files\maucampo\bjfjckelkjhfgamlmipgdaklofacegaa.crx [2013-12-18]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-13]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-13] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-07] (Oracle Corporation)
R2 StarWindService; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [217600 2005-04-02] (Rocket Division Software)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-02-13] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-02-13] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-02-13] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-02-13] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410784 2014-02-13] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-02-13] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180248 2014-02-13] ()
R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-01-07] (Disc Soft Ltd)
R3 FET5X86V; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [42496 2007-02-27] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\mbamswissarmy.sys [40776 2014-02-13] (Malwarebytes Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-07-17] ()
R0 Vax347b; C:\WINDOWS\System32\DRIVERS\Vax347b.sys [159616 2005-04-25] ( )
R0 Vax347s; C:\WINDOWS\System32\Drivers\Vax347s.sys [5248 2004-04-30] ( )
R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [9216 2006-10-17] (VIA Technologies, Inc.)
R0 xfilt; C:\WINDOWS\System32\DRIVERS\xfilt.sys [17920 2006-10-18] (VIA Technologies,Inc)
S3 axurkwge; No ImagePath
S4 IntelIde; No ImagePath
U1 WS2IFSL;
S3 wxxxrkdc; No ImagePath

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-16 13:46 - 2014-02-16 14:00 - 00000000 ____D () C:\FRST
2014-02-16 12:05 - 2014-02-16 12:05 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\iSafe
2014-02-16 11:18 - 2014-02-16 11:57 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-16 11:18 - 2014-02-16 11:57 - 00000000 ____D () C:\Program Files\GridinSoft Trojan Killer
2014-02-16 11:18 - 2014-02-16 11:18 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\GridinSoft
2014-02-15 04:37 - 2014-02-15 04:38 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-14 11:41 - 2014-02-14 11:41 - 00000719 _____ () C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
2014-02-14 11:41 - 2014-02-14 11:41 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\VideoLAN
2014-02-13 16:45 - 2014-02-13 16:45 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\GomPlayer
2014-02-13 16:44 - 2014-02-13 16:44 - 00000862 _____ () C:\Documents and Settings\dukat\Nabídka Start\GOM Player.lnk
2014-02-13 16:44 - 2014-02-13 16:44 - 00000862 _____ () C:\Documents and Settings\All Users\Plocha\GOM Player.lnk
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Program Files\GRETECH
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\GRETECH
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\GOM Player
2014-02-13 10:51 - 2014-02-13 10:51 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-13 10:51 - 2014-02-13 10:51 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Malwarebytes
2014-02-13 10:50 - 2014-02-13 10:50 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-02-13 06:39 - 2014-02-13 06:39 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-02-13 06:39 - 2014-02-13 06:39 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AVAST Software
2014-02-13 06:39 - 2014-02-13 06:39 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-02-13 06:38 - 2014-02-16 07:39 - 00000362 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-02-13 06:38 - 2014-02-13 06:38 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-02-13 06:38 - 2014-02-13 06:38 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-02-13 06:36 - 2014-02-13 06:39 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00410784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-02-13 06:36 - 2014-02-13 06:36 - 00180248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-02-13 06:34 - 2014-02-13 06:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-02-13 06:27 - 2014-02-13 06:27 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-02-12 18:21 - 2014-02-15 08:51 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-12 18:21 - 2014-02-12 18:22 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Mozilla
2014-02-12 18:21 - 2014-02-12 18:21 - 00000730 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2014-02-12 18:21 - 2014-02-12 18:21 - 00000724 _____ () C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2014-02-07 18:47 - 2014-02-07 18:47 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Utherverse
2014-02-07 18:45 - 2014-02-07 18:45 - 00000000 ____D () C:\Documents and Settings\dukat\NabÝdka Start
2014-02-07 18:44 - 2014-02-07 18:44 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-02-07 18:03 - 2014-02-09 12:22 - 00000000 ____D () C:\Program Files\3dsex
2014-02-07 18:03 - 2014-02-07 18:03 - 00000000 ____D () C:\Program Files\Utherverse Digital Inc
2014-02-05 23:34 - 2014-02-06 13:27 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Xilisoft
2014-02-05 20:23 - 2014-02-05 20:25 - 144855045 _____ () C:\Documents and Settings\dukat\Dokumenty\Diana A Model Princess.mp4
2014-02-05 20:22 - 2014-02-05 20:23 - 56322343 _____ () C:\Documents and Settings\dukat\Dokumenty\Kate and William_ A Royal Love Story part 1_2.mp4
2014-02-05 20:21 - 2014-02-05 20:22 - 44278898 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana - Fashion Queen.mp4
2014-02-05 20:17 - 2014-02-05 20:21 - 169025215 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana Years_ 1985-1992 (2_3).mp4
2014-02-05 20:11 - 2014-02-05 20:14 - 159221973 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana_ Panorama Interview 1995 (BBC).mp4
2014-02-05 20:11 - 2014-02-05 20:11 - 06195762 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana in Australia, 1996.mp4
2014-02-05 20:10 - 2014-02-05 20:11 - 05364665 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's speech on Leprosy.mp4
2014-02-05 20:09 - 2014-02-05 20:10 - 54604299 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's Landmine Program (Pt.1).mp4
2014-02-05 20:09 - 2014-02-05 20:09 - 18432882 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana on William's 1st day at Eton.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 15664219 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana-Charity.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 06455432 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's last day in Bosnia, 1997.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 04183646 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana in Washington DC, 1997.mp4
2014-02-05 19:50 - 2014-02-05 19:50 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací\AVG
2014-02-05 19:43 - 2014-02-05 23:53 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-02-05 19:41 - 2014-02-05 19:41 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AVG
2014-02-05 19:35 - 2014-02-05 20:03 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Youtube Downloader HD
2014-02-05 19:35 - 2014-02-05 19:43 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVG
2014-02-05 19:35 - 2014-02-05 19:35 - 00000000 __SHD () C:\Documents and Settings\All Users\Data aplikací\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-02-05 19:34 - 2014-02-13 16:44 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\OpenCandy
2014-02-04 13:48 - 2014-02-04 13:48 - 00001858 _____ () C:\Documents and Settings\All Users\Plocha\Path of Exile.lnk
2014-02-04 13:48 - 2014-02-04 13:48 - 00000000 ____D () C:\Program Files\Grinding Gear Games
2014-02-04 13:48 - 2014-02-04 13:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Grinding Gear Games
2014-02-04 10:13 - 2014-02-04 10:13 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AlawarEntertainment
2014-02-04 10:13 - 2014-02-04 10:13 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AWEM
2014-02-04 10:11 - 2014-02-04 10:53 - 00000000 ____D () C:\Program Files\Hry.cz
2014-02-04 10:11 - 2014-02-04 10:53 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Hry.cz
2014-02-02 08:27 - 2014-02-16 11:55 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\FreeHDSport TV V6.0
2014-02-02 05:36 - 2014-02-16 07:45 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-01 13:46 - 2014-02-01 13:46 - 00000685 _____ () C:\Documents and Settings\dukat\Plocha\IrfanView.lnk
2014-02-01 13:46 - 2014-02-01 13:46 - 00000000 ____D () C:\Program Files\IrfanView
2014-02-01 13:46 - 2014-02-01 13:46 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\IrfanView
2014-01-31 18:26 - 2014-01-31 18:27 - 00000000 ____D () C:\Hotýlek
2014-01-31 18:22 - 2014-01-31 18:25 - 00000000 ____D () C:\černá zmije 4 série
2014-01-31 18:20 - 2010-07-04 12:16 - 1027617752 _____ () C:\smrtonosna-zbran-1-cz-1987-czdub-super-obraz-i-zvuk.avi
2014-01-31 18:19 - 2013-08-17 00:04 - 983588864 _____ () C:\Motel.smrti.2007.DVDRip.XviD.CZ-wsp.avi
2014-01-31 18:03 - 2014-01-31 18:17 - 00000000 ____D () C:\MASH 4077
2014-01-30 20:45 - 2014-01-30 20:44 - 00000926 _____ () C:\Documents and Settings\dukat\Plocha\Commandos.lnk
2014-01-30 20:44 - 2014-01-30 20:44 - 00000000 ____D () C:\Program Files\Eidos Interactive
2014-01-30 20:44 - 2014-01-30 20:44 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Eidos Interactive
2014-01-30 20:39 - 2014-01-30 20:39 - 00001737 _____ () C:\Documents and Settings\dukat\Plocha\Blue Shift.lnk
2014-01-30 20:37 - 2014-01-30 20:37 - 00001749 _____ () C:\Documents and Settings\dukat\Plocha\Opposing Force.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001725 _____ () C:\Documents and Settings\dukat\Plocha\Team Fortress Classic.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001719 _____ () C:\Documents and Settings\dukat\Plocha\Ricochet.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001719 _____ () C:\Documents and Settings\dukat\Plocha\Deathmatch Classic.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001669 _____ () C:\Documents and Settings\dukat\Plocha\Half-Life.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Valve
2014-01-30 20:31 - 1996-01-09 10:38 - 00283648 _____ (Stirling Technologies, Inc.) C:\WINDOWS\uninst.exe
2014-01-30 20:29 - 2014-01-30 20:29 - 00000000 ____D () C:\Documents and Settings\dukat\WINDOWS
2014-01-25 13:31 - 2014-01-25 13:31 - 00000000 __SHD () C:\WINDOWS\ftpcache
2014-01-25 09:36 - 2014-02-16 13:40 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\newnext.me
2014-01-25 09:36 - 2014-01-25 09:37 - 00000000 ____D () C:\Program Files\Mobogenie
2014-01-25 09:36 - 2014-01-25 09:37 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\Mobogenie
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\genienext
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\cache
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Mobogenie
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\.android
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 _____ () C:\Documents and Settings\dukat\daemonprocess.txt
2014-01-25 09:35 - 2014-02-16 09:36 - 00001550 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-updater.job
2014-01-25 09:35 - 2014-01-25 09:35 - 00000000 ____D () C:\Program Files\SecretSauce
2014-01-25 09:34 - 2014-02-16 09:35 - 00002478 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-firefoxinstaller.job
2014-01-25 09:34 - 2014-02-16 09:35 - 00001378 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-enabler.job
2014-01-25 09:34 - 2014-02-16 09:34 - 00001490 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-codedownloader.job
2014-01-25 09:34 - 2014-02-12 17:45 - 00000000 ____D () C:\Program Files\FreeHDSport TV V6.0
2014-01-23 20:51 - 2014-01-23 20:51 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\Ares
2014-01-22 17:24 - 2014-01-22 17:24 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Friday's games
2014-01-22 17:22 - 2014-02-04 10:13 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\AlawarWrapper
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Dokumenty\AlawarWrapper
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikacĂ
2014-01-22 17:17 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Alawarhry.cz
2014-01-22 17:17 - 2014-01-22 17:17 - 00000000 ____D () C:\Program Files\Alawarhry.cz
2014-01-20 18:10 - 2014-01-20 18:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Quake III Arena
2014-01-19 15:27 - 2014-01-19 15:27 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\id Software
2014-01-19 15:25 - 2014-01-19 15:25 - 00000716 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Quake Live.lnk
2014-01-19 15:24 - 2014-01-19 15:25 - 00000000 ____D () C:\Program Files\Quake Live
2014-01-19 14:11 - 2014-01-30 20:31 - 00000000 ____D () C:\Program Files\Valve
2014-01-19 14:11 - 2014-01-19 14:17 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Valve
2014-01-19 14:11 - 2014-01-19 14:11 - 00000559 _____ () C:\Documents and Settings\dukat\Plocha\Steam.lnk
2014-01-19 13:31 - 2014-01-20 08:02 - 00000031 _____ () C:\WINDOWS\Q3CDKey.ini
2014-01-19 13:28 - 2014-01-20 18:10 - 00000000 ____D () C:\Program Files\Quake III Arena
2014-01-19 13:28 - 2014-01-19 13:28 - 00000000 ____D () C:\Program Files\Mplayer
2014-01-19 13:28 - 2014-01-19 13:28 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Mplayer.com
2014-01-19 13:27 - 2014-01-25 20:39 - 00000948 _____ () C:\WINDOWS\QIII.INI
2014-01-19 13:27 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00000790 _____ () C:\Documents and Settings\dukat\Plocha\Zástupce - frd.lnk
2014-01-18 17:02 - 2014-01-18 17:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Alcohol 120%
2014-01-18 16:59 - 2014-01-18 17:02 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Alcohol 120%.lnk
2014-01-18 16:59 - 2014-01-18 16:59 - 00000000 ____D () C:\Program Files\Alcohol Soft
2014-01-18 16:59 - 2005-04-25 10:43 - 00159616 _____ ( ) C:\WINDOWS\system32\Drivers\Vax347b.sys
2014-01-18 16:59 - 2004-04-30 09:33 - 00005248 _____ ( ) C:\WINDOWS\system32\Drivers\Vax347s.sys
2014-01-18 14:43 - 2014-01-18 14:43 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Google
2014-01-18 14:42 - 2014-01-18 14:42 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Earth

==================== One Month Modified Files and Folders =======

2014-02-16 14:00 - 2014-02-16 13:46 - 00000000 ____D () C:\FRST
2014-02-16 14:00 - 2014-01-03 12:33 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Stažené soubory
2014-02-16 13:54 - 2014-01-03 12:37 - 00000938 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-16 13:41 - 2014-01-04 00:23 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-16 13:40 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\newnext.me
2014-02-16 12:54 - 2014-01-03 12:37 - 00000934 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-16 12:05 - 2014-02-16 12:05 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\iSafe
2014-02-16 12:05 - 2007-04-19 06:16 - 00000000 __RHD () C:\Documents and Settings\dukat\Data aplikací
2014-02-16 11:57 - 2014-02-16 11:18 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-16 11:57 - 2014-02-16 11:18 - 00000000 ____D () C:\Program Files\GridinSoft Trojan Killer
2014-02-16 11:57 - 2007-04-19 07:55 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-02-16 11:57 - 2007-04-19 07:55 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-02-16 11:55 - 2014-02-02 08:27 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\FreeHDSport TV V6.0
2014-02-16 11:18 - 2014-02-16 11:18 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\GridinSoft
2014-02-16 11:18 - 2007-04-19 07:53 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-02-16 11:04 - 2007-04-19 06:16 - 00000000 ____D () C:\Documents and Settings\dukat
2014-02-16 10:05 - 2014-01-03 12:46 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\vlc
2014-02-16 09:36 - 2014-01-25 09:35 - 00001550 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-updater.job
2014-02-16 09:35 - 2014-01-25 09:34 - 00002478 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-firefoxinstaller.job
2014-02-16 09:35 - 2014-01-25 09:34 - 00001378 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-enabler.job
2014-02-16 09:34 - 2014-01-25 09:34 - 00001490 _____ () C:\WINDOWS\Tasks\FreeHDSport TV V6.0-codedownloader.job
2014-02-16 07:45 - 2014-02-02 05:36 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-16 07:45 - 2014-01-07 05:59 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Free Download Manager
2014-02-16 07:45 - 2007-04-19 06:08 - 00302130 ____N () C:\WINDOWS\WindowsUpdate.log
2014-02-16 07:44 - 2014-01-07 15:31 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Seznam.cz
2014-02-16 07:43 - 2007-04-19 07:55 - 00921018 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-16 07:39 - 2014-02-13 06:38 - 00000362 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-02-16 07:39 - 2007-04-19 06:14 - 00032534 ____N () C:\WINDOWS\SchedLgU.Txt
2014-02-16 07:38 - 2007-04-19 06:14 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-15 23:21 - 2014-01-03 12:31 - 00057344 _____ () C:\Documents and Settings\dukat\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-15 08:51 - 2014-02-12 18:21 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-15 04:38 - 2014-02-15 04:37 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-14 11:41 - 2014-02-14 11:41 - 00000719 _____ () C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
2014-02-14 11:41 - 2014-02-14 11:41 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\VideoLAN
2014-02-14 11:41 - 2014-01-03 12:45 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-13 16:45 - 2014-02-13 16:45 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\GomPlayer
2014-02-13 16:45 - 2007-04-19 06:16 - 00000000 ___RD () C:\Documents and Settings\dukat\Dokumenty
2014-02-13 16:44 - 2014-02-13 16:44 - 00000862 _____ () C:\Documents and Settings\dukat\Nabídka Start\GOM Player.lnk
2014-02-13 16:44 - 2014-02-13 16:44 - 00000862 _____ () C:\Documents and Settings\All Users\Plocha\GOM Player.lnk
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Program Files\GRETECH
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\GRETECH
2014-02-13 16:44 - 2014-02-13 16:44 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\GOM Player
2014-02-13 16:44 - 2014-02-05 19:34 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\OpenCandy
2014-02-13 16:44 - 2007-04-19 06:16 - 00000000 ___RD () C:\Documents and Settings\dukat\Nabídka Start
2014-02-13 11:02 - 2007-04-19 06:16 - 00000000 ____D () C:\Documents and Settings\dukat\Plocha
2014-02-13 10:51 - 2014-02-13 10:51 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-13 10:51 - 2014-02-13 10:51 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Malwarebytes
2014-02-13 10:50 - 2014-02-13 10:50 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-02-13 06:39 - 2014-02-13 06:39 - 00001733 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-02-13 06:39 - 2014-02-13 06:39 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AVAST Software
2014-02-13 06:39 - 2014-02-13 06:39 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-02-13 06:39 - 2014-02-13 06:36 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-02-13 06:39 - 2014-01-03 12:37 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\Google
2014-02-13 06:38 - 2014-02-13 06:38 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-02-13 06:38 - 2014-02-13 06:38 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-02-13 06:37 - 2014-01-03 12:37 - 00000000 ____D () C:\Program Files\Google
2014-02-13 06:36 - 2014-02-13 06:36 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00410784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-02-13 06:36 - 2014-02-13 06:36 - 00180248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-02-13 06:36 - 2014-02-13 06:36 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-02-13 06:34 - 2014-02-13 06:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-02-13 06:34 - 2014-01-03 12:35 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-02-13 06:27 - 2014-02-13 06:27 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-02-12 18:22 - 2014-02-12 18:21 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Mozilla
2014-02-12 18:21 - 2014-02-12 18:21 - 00000730 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2014-02-12 18:21 - 2014-02-12 18:21 - 00000724 _____ () C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2014-02-12 18:03 - 2007-04-19 06:16 - 00001599 _____ () C:\Documents and Settings\dukat\Nabídka Start\Programy\Vzdálená pomoc.lnk
2014-02-12 17:57 - 2007-04-19 06:10 - 00001607 _____ () C:\Documents and Settings\All Users\Nabídka Start\Přístup a výchozí nastavení programů.lnk
2014-02-12 17:57 - 2007-04-19 06:10 - 00001507 _____ () C:\Documents and Settings\All Users\Nabídka Start\Windows Update.lnk
2014-02-12 17:45 - 2014-01-25 09:34 - 00000000 ____D () C:\Program Files\FreeHDSport TV V6.0
2014-02-12 15:20 - 2001-10-25 15:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-12 12:48 - 2007-04-19 06:16 - 00000000 ___HD () C:\Documents and Settings\dukat\Local Settings\Data aplikací
2014-02-09 16:47 - 2007-04-19 00:49 - 733446144 _____ () C:\Documents and Settings\dukat\Plocha\cd1.The.Royal.avi
2014-02-09 12:23 - 2014-01-03 12:48 - 00000000 ____D () C:\Documents and Settings\dukat\Plocha\hry
2014-02-09 12:22 - 2014-02-07 18:03 - 00000000 ____D () C:\Program Files\3dsex
2014-02-09 09:17 - 2014-01-04 00:23 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-09 09:17 - 2014-01-04 00:23 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-07 18:47 - 2014-02-07 18:47 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Utherverse
2014-02-07 18:45 - 2014-02-07 18:45 - 00000000 ____D () C:\Documents and Settings\dukat\NabÝdka Start
2014-02-07 18:45 - 2007-04-19 06:08 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-07 18:44 - 2014-02-07 18:44 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-02-07 18:03 - 2014-02-07 18:03 - 00000000 ____D () C:\Program Files\Utherverse Digital Inc
2014-02-07 15:00 - 2014-01-03 12:48 - 00000000 ____D () C:\Documents and Settings\dukat\Plocha\programy
2014-02-07 14:42 - 2007-04-19 06:16 - 00000000 ___RD () C:\Documents and Settings\dukat\Nabídka Start\Programy\Po spuštění
2014-02-06 13:27 - 2014-02-05 23:34 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Xilisoft
2014-02-05 23:53 - 2014-02-05 19:43 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-02-05 20:25 - 2014-02-05 20:23 - 144855045 _____ () C:\Documents and Settings\dukat\Dokumenty\Diana A Model Princess.mp4
2014-02-05 20:23 - 2014-02-05 20:22 - 56322343 _____ () C:\Documents and Settings\dukat\Dokumenty\Kate and William_ A Royal Love Story part 1_2.mp4
2014-02-05 20:22 - 2014-02-05 20:21 - 44278898 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana - Fashion Queen.mp4
2014-02-05 20:21 - 2014-02-05 20:17 - 169025215 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana Years_ 1985-1992 (2_3).mp4
2014-02-05 20:14 - 2014-02-05 20:11 - 159221973 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana_ Panorama Interview 1995 (BBC).mp4
2014-02-05 20:11 - 2014-02-05 20:11 - 06195762 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana in Australia, 1996.mp4
2014-02-05 20:11 - 2014-02-05 20:10 - 05364665 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's speech on Leprosy.mp4
2014-02-05 20:10 - 2014-02-05 20:09 - 54604299 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's Landmine Program (Pt.1).mp4
2014-02-05 20:09 - 2014-02-05 20:09 - 18432882 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana on William's 1st day at Eton.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 15664219 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana-Charity.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 06455432 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana's last day in Bosnia, 1997.mp4
2014-02-05 20:08 - 2014-02-05 20:08 - 04183646 _____ () C:\Documents and Settings\dukat\Dokumenty\Princess Diana in Washington DC, 1997.mp4
2014-02-05 20:03 - 2014-02-05 19:35 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Youtube Downloader HD
2014-02-05 19:50 - 2014-02-05 19:50 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací\AVG
2014-02-05 19:50 - 2007-04-19 06:14 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací
2014-02-05 19:43 - 2014-02-05 19:35 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AVG
2014-02-05 19:41 - 2014-02-05 19:41 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AVG
2014-02-05 19:35 - 2014-02-05 19:35 - 00000000 __SHD () C:\Documents and Settings\All Users\Data aplikací\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-02-04 13:48 - 2014-02-04 13:48 - 00001858 _____ () C:\Documents and Settings\All Users\Plocha\Path of Exile.lnk
2014-02-04 13:48 - 2014-02-04 13:48 - 00000000 ____D () C:\Program Files\Grinding Gear Games
2014-02-04 13:48 - 2014-02-04 13:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Grinding Gear Games
2014-02-04 10:53 - 2014-02-04 10:11 - 00000000 ____D () C:\Program Files\Hry.cz
2014-02-04 10:53 - 2014-02-04 10:11 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Hry.cz
2014-02-04 10:13 - 2014-02-04 10:13 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\AlawarEntertainment
2014-02-04 10:13 - 2014-02-04 10:13 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AWEM
2014-02-04 10:13 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
2014-02-04 10:13 - 2007-04-19 07:55 - 00000000 ___RD () C:\Documents and Settings\All Users\Dokumenty
2014-02-04 10:11 - 2007-04-19 06:16 - 00000000 ___RD () C:\Documents and Settings\dukat\Nabídka Start\Programy
2014-02-02 16:35 - 2014-01-07 15:43 - 00001655 _____ () C:\Documents and Settings\dukat\Plocha\Play Unreal Tournament.lnk
2014-02-01 13:46 - 2014-02-01 13:46 - 00000685 _____ () C:\Documents and Settings\dukat\Plocha\IrfanView.lnk
2014-02-01 13:46 - 2014-02-01 13:46 - 00000000 ____D () C:\Program Files\IrfanView
2014-02-01 13:46 - 2014-02-01 13:46 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\IrfanView
2014-02-01 13:24 - 2007-04-19 06:16 - 00000178 ___SH () C:\Documents and Settings\dukat\ntuser.ini
2014-01-31 18:27 - 2014-01-31 18:26 - 00000000 ____D () C:\Hotýlek
2014-01-31 18:25 - 2014-01-31 18:22 - 00000000 ____D () C:\černá zmije 4 série
2014-01-31 18:17 - 2014-01-31 18:03 - 00000000 ____D () C:\MASH 4077
2014-01-30 20:45 - 2007-04-19 07:45 - 00000000 ____D () C:\WINDOWS\Help
2014-01-30 20:44 - 2014-01-30 20:45 - 00000926 _____ () C:\Documents and Settings\dukat\Plocha\Commandos.lnk
2014-01-30 20:44 - 2014-01-30 20:44 - 00000000 ____D () C:\Program Files\Eidos Interactive
2014-01-30 20:44 - 2014-01-30 20:44 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Eidos Interactive
2014-01-30 20:41 - 2007-04-19 07:55 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start
2014-01-30 20:39 - 2014-01-30 20:39 - 00001737 _____ () C:\Documents and Settings\dukat\Plocha\Blue Shift.lnk
2014-01-30 20:37 - 2014-01-30 20:37 - 00001749 _____ () C:\Documents and Settings\dukat\Plocha\Opposing Force.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001725 _____ () C:\Documents and Settings\dukat\Plocha\Team Fortress Classic.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001719 _____ () C:\Documents and Settings\dukat\Plocha\Ricochet.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001719 _____ () C:\Documents and Settings\dukat\Plocha\Deathmatch Classic.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00001669 _____ () C:\Documents and Settings\dukat\Plocha\Half-Life.lnk
2014-01-30 20:35 - 2014-01-30 20:35 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Valve
2014-01-30 20:31 - 2014-01-19 14:11 - 00000000 ____D () C:\Program Files\Valve
2014-01-30 20:30 - 2007-04-19 06:07 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-01-30 20:29 - 2014-01-30 20:29 - 00000000 ____D () C:\Documents and Settings\dukat\WINDOWS
2014-01-25 20:39 - 2014-01-19 13:27 - 00000948 _____ () C:\WINDOWS\QIII.INI
2014-01-25 14:44 - 2014-01-12 19:12 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Rockstar Games
2014-01-25 13:53 - 2007-04-19 06:19 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-01-25 13:31 - 2014-01-25 13:31 - 00000000 __SHD () C:\WINDOWS\ftpcache
2014-01-25 09:37 - 2014-01-25 09:36 - 00000000 ____D () C:\Program Files\Mobogenie
2014-01-25 09:37 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\Mobogenie
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\genienext
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\cache
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Mobogenie
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 ____D () C:\Documents and Settings\dukat\.android
2014-01-25 09:36 - 2014-01-25 09:36 - 00000000 _____ () C:\Documents and Settings\dukat\daemonprocess.txt
2014-01-25 09:35 - 2014-01-25 09:35 - 00000000 ____D () C:\Program Files\SecretSauce
2014-01-24 16:10 - 2014-01-13 19:31 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Polda II
2014-01-24 12:53 - 2014-01-14 07:31 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\GTA San Andreas User Files
2014-01-24 09:48 - 2014-01-13 19:44 - 00000000 ____D () C:\Documents and Settings\dukat\Dokumenty\Polda III
2014-01-23 20:51 - 2014-01-23 20:51 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\Ares
2014-01-22 17:24 - 2014-01-22 17:24 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Friday's games
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\dukat\Local Settings\Data aplikací\AlawarWrapper
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Dokumenty\AlawarWrapper
2014-01-22 17:22 - 2014-01-22 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikacĂ
2014-01-22 17:22 - 2014-01-22 17:17 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Alawarhry.cz
2014-01-22 17:17 - 2014-01-22 17:17 - 00000000 ____D () C:\Program Files\Alawarhry.cz
2014-01-20 18:10 - 2014-01-20 18:10 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Quake III Arena
2014-01-20 18:10 - 2014-01-19 13:28 - 00000000 ____D () C:\Program Files\Quake III Arena
2014-01-20 08:02 - 2014-01-19 13:31 - 00000031 _____ () C:\WINDOWS\Q3CDKey.ini
2014-01-19 17:32 - 2014-01-07 15:28 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\DAEMON Tools Lite
2014-01-19 15:27 - 2014-01-19 15:27 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\id Software
2014-01-19 15:25 - 2014-01-19 15:25 - 00000716 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Quake Live.lnk
2014-01-19 15:25 - 2014-01-19 15:24 - 00000000 ____D () C:\Program Files\Quake Live
2014-01-19 14:17 - 2014-01-19 14:11 - 00000000 ____D () C:\Documents and Settings\dukat\Nabídka Start\Programy\Valve
2014-01-19 14:11 - 2014-01-19 14:11 - 00000559 _____ () C:\Documents and Settings\dukat\Plocha\Steam.lnk
2014-01-19 13:28 - 2014-01-19 13:28 - 00000000 ____D () C:\Program Files\Mplayer
2014-01-19 13:28 - 2014-01-19 13:28 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Mplayer.com
2014-01-18 19:34 - 2014-01-07 12:53 - 00000000 ____D () C:\ZDaemon
2014-01-18 17:30 - 2014-01-18 17:30 - 00000790 _____ () C:\Documents and Settings\dukat\Plocha\Zástupce - frd.lnk
2014-01-18 17:02 - 2014-01-18 17:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Alcohol 120%
2014-01-18 17:02 - 2014-01-18 16:59 - 00000833 _____ () C:\Documents and Settings\All Users\Plocha\Alcohol 120%.lnk
2014-01-18 16:59 - 2014-01-18 16:59 - 00000000 ____D () C:\Program Files\Alcohol Soft
2014-01-18 16:36 - 2014-01-16 10:27 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\dvdcss
2014-01-18 14:43 - 2014-01-18 14:43 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\Google
2014-01-18 14:42 - 2014-01-18 14:42 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Earth

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-17 14:49] - [2004-08-17 14:49] - 1032704 ____A (Microsoft Corporation) 53114d57ab73a406ac7f602227781a99

C:\WINDOWS\system32\winlogon.exe
[2004-08-17 14:49] - [2004-08-17 14:49] - 0502272 ____A (Microsoft Corporation) 221c29ae1b4cc61d11d8b27de78b2307

C:\WINDOWS\system32\svchost.exe
[2004-08-17 14:49] - [2004-08-17 14:49] - 0014336 ____A (Microsoft Corporation) dfba2915b0bf58abb288cd4c9318cb3f

C:\WINDOWS\system32\services.exe
[2004-08-17 14:49] - [2004-08-17 14:49] - 0108544 ____A (Microsoft Corporation) 6e401e61f952fbbf708afbecefafae81

C:\WINDOWS\system32\User32.dll
[2004-08-17 14:49] - [2004-08-17 14:49] - 0577024 ____A (Microsoft Corporation) 1b4ccc59980da34e75f20e42b283b027

C:\WINDOWS\system32\userinit.exe
[2004-08-17 14:49] - [2004-08-17 14:49] - 0024576 ____A (Microsoft Corporation) 836f7960362ff95c5d49e40b891f2cfc

C:\WINDOWS\system32\rpcss.dll
[2004-08-17 14:49] - [2004-08-17 14:49] - 0395776 ____A (Microsoft Corporation) c72c15ee57e248c66e57c76cab086cf2

ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-17 14:44] - [2004-08-17 14:44] - 0052480 ____A (Microsoft Corporation) cd8cce067f7e9cbd762c00bdddecaa34

==================== End Of Log ============================

#6 Příspěvek od **stell** » 17 úno 2014 15:19

No vyzera to strasne mas infikovany aj systemovy subor.
Treba citat pozorne navody co pisem, nerobit nic viac a nic menej len to co je napisane.
V predoslom navode je jasne napisane ,ze FRST treba dat na plochu, takze program FRST.exe premiestni na plochu, nie je kde sa ponahlat, tu plati 2x meraj raz rez.

1:Klik start>.spustit>.napis notepad
Do poznamkoveho blogu skopiruj text.
Uloz to na plochu,ako>.vsetky subory>>nazov>> fixlist.txt>>>ulozis to vedla frst.exe>>spust program FRST.exe, a POZOR,teraz kliknes na FIX
Ak bude treba restart tak restartnes>>log Fixlog.txt>>vloz sem

Kód: Vybrat vše

Start
FreeHDSport TV V6.0 (Version: 1.34.1.21 - installdaddy) <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-codedownloader.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-enabler.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-firefoxinstaller.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FreeHDSport TV V6.0-updater.job => C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-updater.exe <==== ATTENTION
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:76650B61
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [NextLive] - C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\dukat\Data aplikací\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1667584 2004-08-17] (Microsoft Corporation)
HKU\S-1-5-21-1482476501-1004336348-725345543-1003\...\MountPoints2: {f94eaf5b-8059-11e3-98bf-00e04d26f9e0} - E:\csgo_license.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.alawarhry.cz/?pid=36398
SearchScopes: HKLM - DefaultScope value is missing.
BHO: FreeHDSport TV V6.0 - {11111111-1111-1111-1111-110411591164} - C:\Program Files\FreeHDSport TV V6.0\FreeHDSport TV V6.0-bho.dll (installdaddy)
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampoBHO.dll (maucampo)
FF Extension: FreeHDSport TV V6.0 - C:\Documents and Settings\dukat\Data aplikací\Mozilla\Firefox\Profiles\tldgy7uf.default\Extensions\01e89cb1-f65e-4d01-9a8c-16784b40f1e3@2579a6e9-6ce6-413f-94ce-37240c823447.com [2014-02-13]
CHR HKLM\...\Chrome\Extension: [bjfjckelkjhfgamlmipgdaklofacegaa] - C:\Program Files\maucampo\bjfjckelkjhfgamlmipgdaklofacegaa.crx [2013-12-18]
S3 axurkwge; No ImagePath
S4 IntelIde; No ImagePath
U1 WS2IFSL;
S3 wxxxrkdc; No ImagePath
2014-02-16 12:05 - 2014-02-16 12:05 - 00000000 ____D () C:\Documents and Settings\dukat\Data aplikací\iSafe
2014-02-16 11:18 - 2014-02-16 11:57 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-16 11:18 - 2014-02-16 11:57 - 00000000 ____D () C:\Program Files\GridinSoft Trojan Killer
2014-02-16 11:18 - 2014-02-16 11:18 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\GridinSoft
Hosts:
End

1:Resetni FireFox a Internet explorer.
http://www.viruskasino.com/2013/04/obno ... dacov.html
2:pouzi RKILL
http://www.viruskasino.com/2011/01/ako-zacat.html#RKILL

3:Pouzi presne podla navodu ADWcleaner.
http://www.viruskasino.com/2012/09/adwcleaner.html

4:Pouzi Junkwareremovaltool
http://www.viruskasino.com/2010/12/prog ... moval-tool

5:Pouzi TFCleaner/
http://oldtimer.geekstogo.com/TFC.exe
Uložiť všetky neuložené práce, a ukončíte všetky spustené programy vrátane váš prehliadač! Dvoj-kliknite na TFC exe a spuste. Ak používate Windows Vista, kliknite pravým tlačidlom myši na súbor a zvoľte Spustiť ako správca. Kliknite na tlačidlo Štart spustite proces čistenia a nechať ho bežať bez prerušenia až do jeho ukončenia. Dôležité: Ak TFC vás vyzve k reštartu, urobte tak ihneď. Ak sa výzva nezobrazí, ručne reštartovať počítač. Poznámka: Je normálne, že po spustení TFC Cleaner, prvýkrát počítač bude pomalý štartovať.

Vsetky Logy -Vloz sem.

Po vlozeni logov pokracujes combofixom
Navod
http://www.bleepingcomputer.com/combofi ... t-combofix

#7 Příspěvek od **stell** » 26 úno 2014 18:19

pre nezaujem temu zatvaram.

VIRY.CZ

vir

vir

Re: vir

Re: vir

Re: vir

Re: vir

Re: vir

Re: vir