pcxis.exe

Zpráva

To3@s · #1 Příspěvek od **To3@s** » 18 kvě 2010 22:17

ahoj , nejak sa mi dostala do PC tato haved v mziku bola na vsetkych diskoch, a teraz nejdu otvorit.
S cim ten vyrus znicim? dakujem.

#2 Příspěvek od **motji** » 18 kvě 2010 22:20

Dobrý večer

Můžeme ji zklikvidovat společně

, v tom případě bych Vás poprosila o log ze Rsitu, viz můj podpis

To3@s · #3 Příspěvek od **To3@s** » 18 kvě 2010 22:21

zachvilku tobude, prosim ako dlho to asi bude trvat? nemam moc casu

To3@s · #4 Příspěvek od **To3@s** » 18 kvě 2010 22:24

Logfile of random's system information tool 1.07 (written by random/random)
Run by PinBall at 2010-05-18 23:22:59
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 8 GB (21%) free of 38 GB
Total RAM: 2046 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:23:37, on 18. 5. 2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATKKBService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\Rar$EX00.359\pbsetup.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Eset\nod32.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\STOPzilla!\SZInit.Exe
C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe
C:\Program Files\Common Files\iS3\Anti-Spyware\IS3Updater.exe
C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Plocha\RSIT.exe
C:\Program Files\trend micro\PinBall.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: STOPzilla Browser Helper Object - {E3215F20-3212-11D6-9F8B-00D0B743919D} - C:\Program Files\STOPzilla!\SZIEBHO.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [cdoosoft] C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\herss.exe
O4 - HKCU\..\Run: [NOD32 Control Center GUI] C:\Program Files\Eset\nod32kui.exe
O4 - HKCU\..\Run: [dso32] C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\dsoqq.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - Winlogon Notify: TPSvc - TPSvc.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: STOPzilla Service (szserver) - iS3, Inc. - C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 6076 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E3215F20-3212-11D6-9F8B-00D0B743919D}]
STOPzilla Browser Helper Object - C:\Program Files\STOPzilla!\SZIEBHO.dll [2010-05-17 247232]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe [2006-10-30 36864]
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2006-11-16 1953792]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-05-11 8429568]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2010-05-16 949376]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-01-23 101136]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-01-23 101136]
"LogitechCommunicationsManager"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-01-12 488984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"cdoosoft"=C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\herss.exe [2010-03-09 121856]
"NOD32 Control Center GUI"=C:\Program Files\Eset\nod32kui.exe [2010-05-16 949376]
"dso32"=C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\dsoqq.exe []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2007-06-01 380928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cdoosoft]
C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\herss.exe [2010-03-09 121856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2007-05-11 8429568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2007-05-11 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-12-18 868352]

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\TPSvc]
TPSvc.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"D:\Program Files\EA GAMES\Battlefield 2\BF2.exe"="D:\Program Files\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{43b5002d-6120-11df-aabf-001d606120f0}]
shell\AutoRun\command - G:\pcxis.exe
shell\open\command - G:\pcxis.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a23f17b0-612a-11df-b6f8-806d6172696f}]
shell\AutoRun\command - C:\pcxis.exe
shell\open\command - C:\pcxis.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a23f17b1-612a-11df-b6f8-806d6172696f}]
shell\AutoRun\command - D:\pcxis.exe
shell\open\command - D:\pcxis.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b771c6ca-6121-11df-aac0-001d606120f0}]
shell\AutoRun\command - H:\pcxis.exe
shell\open\command - H:\pcxis.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ebcff13c-611c-11df-aabe-c0027da60672}]
shell\AutoRun\command - G:\pcxis.exe
shell\open\command - G:\pcxis.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ebcff147-611c-11df-aabe-001d60613523}]
shell\AutoRun\command - G:\pcxis.exe
shell\open\command - G:\pcxis.exe

======List of files/folders created in the last 1 months======

2010-05-18 23:22:31 ----D---- C:\rsit
2010-05-18 23:17:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SITEguard
2010-05-18 23:16:59 ----D---- C:\Program Files\STOPzilla!
2010-05-18 23:16:57 ----D---- C:\Program Files\Common Files\iS3
2010-05-18 23:16:54 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\STOPzilla!
2010-05-18 23:01:12 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\GHISLER
2010-05-18 16:53:44 ----D---- C:\WINDOWS\LastGood
2010-05-17 22:16:00 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\DAEMON Tools Pro
2010-05-17 22:16:00 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\DAEMON Tools
2010-05-17 22:15:13 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
2010-05-17 21:57:31 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\DAEMON Tools Lite
2010-05-17 19:31:19 ----RSH---- C:\p6xebrnt.exe
2010-05-17 16:17:05 ----D---- C:\Program Files\DaemonicMU Vintage
2010-05-17 15:54:46 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Logitech
2010-05-17 15:54:21 ----R---- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe
2010-05-17 15:53:38 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-05-17 15:53:10 ----A---- C:\WINDOWS\system32\WdfCoInstaller01005.dll
2010-05-17 15:53:10 ----A---- C:\WINDOWS\KHALMNPR.Exe
2010-05-17 15:53:05 ----A---- C:\WINDOWS\system32\KemXML.dll
2010-05-17 15:53:05 ----A---- C:\WINDOWS\system32\KemWnd.dll
2010-05-17 15:53:05 ----A---- C:\WINDOWS\system32\KemUtil.dll
2010-05-17 15:53:05 ----A---- C:\WINDOWS\system32\kemutb.dll
2010-05-17 15:52:51 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Logitech
2010-05-17 15:49:35 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\SZIO5.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\SZComp5.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\SZBase5.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\IS3XDat5.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\IS3HTUI5.dll
2010-05-17 14:14:28 ----RA---- C:\WINDOWS\system32\IS3DBA5.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3Win325.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3UI5.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3Svc5.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3Inet5.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3Hks5.dll
2010-05-17 14:14:26 ----RA---- C:\WINDOWS\system32\IS3Base5.dll
2010-05-16 22:50:01 ----A---- C:\WINDOWS\system32\pncrt.dll
2010-05-16 22:49:12 ----A---- C:\WINDOWS\system32\h323log.txt
2010-05-16 22:46:09 ----A---- C:\WINDOWS\system32\usbui.dll
2010-05-16 22:44:26 ----A---- C:\WINDOWS\imsins.BAK
2010-05-16 22:44:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-05-16 22:44:23 ----A---- C:\WINDOWS\ODBCINST.INI
2010-05-16 22:44:18 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-05-16 22:44:18 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-05-16 22:44:18 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-05-16 22:44:16 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-05-16 22:44:14 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-05-16 22:44:13 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-05-16 22:44:13 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-05-16 22:44:13 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-05-16 22:44:13 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-05-16 22:44:13 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-05-16 22:44:10 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-05-16 22:44:09 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-05-16 22:44:08 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-05-16 22:44:08 ----A---- C:\WINDOWS\system32\irclass.dll
2010-05-16 22:44:08 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-05-16 22:44:08 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-05-16 22:44:08 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-05-16 22:44:06 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-05-16 22:44:06 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-05-16 22:44:06 ----A---- C:\WINDOWS\system32\batt.dll
2010-05-16 22:44:05 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-05-16 22:44:04 ----A---- C:\WINDOWS\system32\storprop.dll
2010-05-16 22:43:57 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\desktop.ini
2010-05-16 22:42:16 ----RA---- C:\WINDOWS\SET8.tmp
2010-05-16 22:42:13 ----RA---- C:\WINDOWS\SET4.tmp
2010-05-16 22:42:12 ----RA---- C:\WINDOWS\SET3.tmp
2010-05-16 22:42:02 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2010-05-16 22:41:42 ----A---- C:\WINDOWS\setuplog.txt
2010-05-16 22:40:46 ----RSH---- C:\boot.ini
2010-05-16 22:32:32 ----A---- C:\WINDOWS\ModemLog_Sony Ericsson Device 116 USB WMC Data Modem.txt
2010-05-16 22:24:58 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Macromedia
2010-05-16 22:24:58 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Adobe
2010-05-16 22:19:59 ----A---- C:\WINDOWS\system32\TUKernel.exe
2010-05-16 22:15:20 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Mozilla
2010-05-16 22:12:46 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\ICQ
2010-05-16 21:59:50 ----A---- C:\WINDOWS\mngui.INI
2010-05-16 21:55:44 ----A---- C:\WINDOWS\ModemLog_Sony Ericsson Device 116 USB WMC Modem.txt
2010-05-16 21:46:48 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\uTorrent
2010-05-16 21:42:22 ----D---- C:\Program Files\Eset
2010-05-16 21:42:22 ----A---- C:\WINDOWS\system32\imon.dll
2010-05-16 21:35:15 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-05-16 21:35:15 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2010-05-16 21:35:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
2010-05-16 21:35:06 ----D---- C:\Program Files\TuneUp Utilities 2008
2010-05-16 21:27:38 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\TuneUp Software
2010-05-16 21:25:57 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Teleca
2010-05-16 21:21:48 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Sony Ericsson
2010-05-16 21:21:41 ----D---- C:\Program Files\Common Files\Sony Ericsson Shared
2010-05-16 21:21:40 ----D---- C:\Program Files\Sony Ericsson
2010-05-16 21:21:30 ----D---- C:\WINDOWS\Downloaded Installations
2010-05-16 21:20:58 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Teleca
2010-05-16 21:20:58 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Sony Ericsson
2010-05-16 21:20:46 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\nView_Profiles
2010-05-16 21:08:43 ----R---- C:\WINDOWS\system32\JMRaidAPI.dll
2010-05-16 21:08:42 ----R---- C:\WINDOWS\system32\JMRaidSetup.exe
2010-05-16 21:06:46 ----RA---- C:\WINDOWS\system32\PostProc.dll
2010-05-16 21:06:46 ----RA---- C:\WINDOWS\system32\a3d.dll
2010-05-16 21:06:39 ----N---- C:\WINDOWS\system32\wdmioctl.dll
2010-05-16 21:06:39 ----N---- C:\WINDOWS\system32\SMMedia.dll
2010-05-16 21:06:37 ----N---- C:\WINDOWS\system32\DSndUp.exe
2010-05-16 21:06:37 ----N---- C:\WINDOWS\system32\CleanUp.exe
2010-05-16 21:06:01 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-05-16 21:04:45 ----D---- C:\Program Files\NVIDIA Corporation
2010-05-16 21:04:31 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\WinRAR
2010-05-16 21:03:11 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
2010-05-16 21:03:04 ----N---- C:\WINDOWS\system32\nvuide.exe
2010-05-16 21:03:03 ----RA---- C:\WINDOWS\system32\NVCOI.DLL
2010-05-16 21:03:03 ----RA---- C:\WINDOWS\system32\idecoiins.dll
2010-05-16 21:03:03 ----RA---- C:\WINDOWS\system32\idecoi.dll
2010-05-16 21:02:35 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2010-05-16 21:02:35 ----A---- C:\WINDOWS\system32\fdco1.dll
2010-05-16 21:02:33 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2010-05-16 21:02:33 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2010-05-16 21:02:33 ----RA---- C:\WINDOWS\system32\bdco1.dll
2010-05-16 21:02:33 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-05-16 21:02:14 ----RA---- C:\WINDOWS\system32\raidmgmt.ini
2010-05-16 21:02:14 ----RA---- C:\WINDOWS\system32\AsusSetup.ini
2010-05-16 21:02:14 ----RA---- C:\WINDOWS\system32\AsusSetup.exe
2010-05-16 21:02:13 ----A---- C:\WINDOWS\AS_Debug.txt
2010-05-16 21:02:03 ----A---- C:\WINDOWS\Ascd_tmp.ini
2010-05-16 21:00:59 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2010-05-16 21:00:59 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2010-05-16 21:00:58 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2010-05-16 21:00:58 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2010-05-16 21:00:57 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2010-05-16 21:00:57 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2010-05-16 21:00:57 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2010-05-16 21:00:57 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-05-16 21:00:56 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2010-05-16 21:00:55 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2010-05-16 21:00:55 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2010-05-16 21:00:55 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\R5ClkLib.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\OneTouchVga.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\nvgpio.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\nvapi9x.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\HyperDrive.exe
2010-05-16 21:00:48 ----A---- C:\WINDOWS\EIO.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\ATKKBService.exe
2010-05-16 21:00:48 ----A---- C:\WINDOWS\atistclk.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\atipdlxx.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\aticlocklib.dll
2010-05-16 21:00:48 ----A---- C:\WINDOWS\ASUSRC.dll
2010-05-16 21:00:47 ----A---- C:\WINDOWS\system32\ATKOSDMini.DLL
2010-05-16 21:00:47 ----A---- C:\WINDOWS\system32\atkid.ini
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\DPInst.exe
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\devcon.exe
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\ATKOSDX32.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\ATKOGL32.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\ATKDispCPL.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\ATKDISP.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\asrussian.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\askorean.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\asjapan.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\ASCHT.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\aschs.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\asgerman.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\asfrench.dll
2010-05-16 21:00:46 ----A---- C:\WINDOWS\system32\aseng.dll
2010-05-16 21:00:05 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-05-16 20:59:45 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-05-16 20:57:53 ----D---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Identities
2010-05-16 20:57:36 ----ASH---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\desktop.ini
2010-05-16 20:57:35 ----SD---- C:\Documents and Settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Microsoft
2010-05-16 20:56:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-05-16 20:53:30 ----A---- C:\WINDOWS\control.ini
2010-05-16 20:53:21 ----A---- C:\WINDOWS\OEWABLog.txt
2010-05-16 20:53:16 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-05-16 20:52:34 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-05-16 20:52:29 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-05-16 20:51:57 ----A---- C:\WINDOWS\system32\atrace.dll
2010-05-16 20:51:55 ----A---- C:\WINDOWS\system32\desktop.ini
2010-05-16 20:51:55 ----A---- C:\WINDOWS\desktop.ini
2010-05-16 20:51:51 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-05-16 20:51:50 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-05-16 20:51:50 ----A---- C:\WINDOWS\system32\acctres.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wups.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-05-16 20:51:46 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-05-16 20:51:45 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-05-16 20:51:42 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-05-16 20:51:42 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-05-16 20:51:42 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-05-16 20:51:42 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-05-16 20:51:40 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-05-16 20:51:40 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-05-16 20:51:40 ----A---- C:\WINDOWS\system32\srclient.dll
2010-05-16 20:51:40 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-05-16 20:51:40 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\msconf.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\inetres.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-05-16 20:51:39 ----A---- C:\WINDOWS\system32\ils.dll
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\mstask.dll
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\isign32.dll
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-05-16 20:51:38 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-05-16 20:51:37 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-05-16 20:51:07 ----A---- C:\WINDOWS\vbaddin.ini
2010-05-16 20:51:07 ----A---- C:\WINDOWS\vb.ini
2010-05-16 20:50:48 ----A---- C:\WINDOWS\system32\write.exe
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\winchat.exe
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\hticons.dll
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\avwav.dll
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-05-16 20:50:44 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-05-16 20:50:40 ----A---- C:\WINDOWS\system32\charmap.exe
2010-05-16 20:50:40 ----A---- C:\WINDOWS\system32\getuname.dll
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\winmine.exe
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\sol.exe
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\reset.exe
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\freecell.exe
2010-05-16 20:50:39 ----A---- C:\WINDOWS\system32\calc.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\tskill.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\tscon.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\shadow.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\regini.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\msg.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\logoff.exe
2010-05-16 20:50:38 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\stclient.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-05-16 20:50:37 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-05-16 20:50:34 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-05-16 20:50:34 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\spider.exe
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-05-16 20:50:33 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-05-16 20:50:32 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-05-16 20:50:31 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\colbact.dll
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-05-16 20:50:30 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-05-16 20:50:29 ----A---- C:\WINDOWS\system32\comuid.dll
2010-05-16 20:50:29 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-05-16 20:50:29 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-05-16 20:50:29 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-05-16 20:50:29 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-05-16 20:50:22 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-05-16 20:50:22 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-05-16 20:50:22 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-05-16 20:50:21 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-05-13 21:56:04 ----D---- C:\TRANSLAT
2010-05-12 22:10:32 ----D---- C:\Program Files\RAR Password Recovery Magic
2010-05-12 22:04:44 ----D---- C:\Program Files\Intelore
2010-05-10 19:56:26 ----D---- C:\Program Files\Common Files\Teleca Shared
2010-04-27 14:46:02 ----D---- C:\Program Files\Common Files\Everstrike Software

======List of files/folders modified in the last 1 months======

2010-05-18 23:23:36 ----D---- C:\Program Files\trend micro
2010-05-18 23:23:08 ----D---- C:\WINDOWS\Temp
2010-05-18 23:19:28 ----D---- C:\WINDOWS\system32\drivers
2010-05-18 23:17:07 ----SHD---- C:\WINDOWS\Installer
2010-05-18 23:17:06 ----HD---- C:\Config.Msi
2010-05-18 23:17:04 ----D---- C:\WINDOWS\WinSxS
2010-05-18 23:16:59 ----RD---- C:\Program Files
2010-05-18 23:16:57 ----D---- C:\Program Files\Common Files
2010-05-18 23:16:56 ----D---- C:\WINDOWS\system32
2010-05-18 18:14:45 ----HD---- C:\Program Files\InstallShield Installation Information
2010-05-18 18:03:54 ----D---- C:\WINDOWS\system32\DirectX
2010-05-18 16:53:44 ----D---- C:\WINDOWS
2010-05-18 16:53:43 ----D---- C:\WINDOWS\system32\CatRoot2
2010-05-17 22:25:53 ----D---- C:\WINDOWS\system32\Restore
2010-05-17 22:13:34 ----HD---- C:\WINDOWS\inf
2010-05-17 18:46:52 ----D---- C:\Program Files\Conquer 2.0
2010-05-17 17:01:25 ----D---- C:\Program Files\Valve
2010-05-17 15:57:44 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-05-17 15:53:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-05-17 15:53:53 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-05-17 15:53:10 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-05-17 12:51:15 ----A---- C:\WINDOWS\win.ini
2010-05-17 12:51:15 ----A---- C:\WINDOWS\system.ini
2010-05-16 22:44:19 ----RSD---- C:\WINDOWS\Fonts
2010-05-16 22:41:42 ----D---- C:\WINDOWS\Debug
2010-05-16 22:40:38 ----D---- C:\WINDOWS\system32\Setup
2010-05-16 22:40:33 ----D---- C:\WINDOWS\system32\usmt
2010-05-16 22:40:28 ----D---- C:\WINDOWS\AppPatch
2010-05-16 22:40:27 ----D---- C:\WINDOWS\ime
2010-05-16 22:40:27 ----D---- C:\WINDOWS\ehome
2010-05-16 22:40:26 ----D---- C:\WINDOWS\Media
2010-05-16 22:40:21 ----D---- C:\WINDOWS\PeerNet
2010-05-16 22:40:14 ----D---- C:\WINDOWS\system32\npp
2010-05-16 22:40:11 ----D---- C:\WINDOWS\msagent
2010-05-16 22:39:05 ----D---- C:\WINDOWS\system32\1029
2010-05-16 22:39:03 ----D---- C:\WINDOWS\twain_32
2010-05-16 22:39:00 ----D---- C:\WINDOWS\system32\ras
2010-05-16 22:38:57 ----D---- C:\WINDOWS\system32\icsxml
2010-05-16 22:38:45 ----D---- C:\WINDOWS\system32\ias
2010-05-16 22:38:42 ----D---- C:\WINDOWS\system32\1033
2010-05-16 22:37:54 ----D---- C:\WINDOWS\system32\xlive
2010-05-16 22:37:54 ----D---- C:\WINDOWS\system32\NtmsData
2010-05-16 22:37:48 ----HD---- C:\WINDOWS\ShellNew
2010-05-16 22:37:48 ----D---- C:\WINDOWS\repair
2010-05-16 22:37:47 ----RD---- C:\WINDOWS\Offline Web Pages
2010-05-16 22:37:47 ----D---- C:\WINDOWS\Minidump
2010-05-16 22:37:45 ----D---- C:\WINDOWS\Logs
2010-05-16 22:37:42 ----D---- C:\WINDOWS\Eurobattle.net
2010-05-16 22:37:41 ----RSD---- C:\WINDOWS\assembly
2010-05-16 22:37:41 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-05-16 22:37:41 ----D---- C:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP
2010-05-16 22:19:14 ----HD---- C:\WINDOWS\Icons
2010-05-16 22:15:16 ----D---- C:\Program Files\Mozilla Firefox
2010-05-16 21:38:06 ----SHD---- C:\RECYCLER
2010-05-16 21:35:16 ----SD---- C:\WINDOWS\Tasks
2010-05-16 21:26:51 ----D---- C:\WINDOWS\pss
2010-05-16 21:21:51 ----D---- C:\WINDOWS\Prefetch
2010-05-16 21:17:46 ----D---- C:\WINDOWS\security
2010-05-16 21:08:44 ----D---- C:\WINDOWS\JM
2010-05-16 21:06:46 ----D---- C:\WINDOWS\system
2010-05-16 21:04:23 ----D---- C:\Program Files\WinRAR
2010-05-16 21:00:26 ----D---- C:\WINDOWS\Help
2010-05-16 21:00:05 ----D---- C:\WINDOWS\nview
2010-05-16 20:57:35 ----D---- C:\Documents and Settings
2010-05-16 20:56:36 ----D---- C:\WINDOWS\SoftwareDistribution
2010-05-16 20:56:35 ----SHD---- C:\System Volume Information
2010-05-16 20:56:08 ----D---- C:\WINDOWS\system32\config
2010-05-16 20:53:13 ----D---- C:\WINDOWS\Registration
2010-05-16 20:52:37 ----RD---- C:\WINDOWS\Web
2010-05-16 20:52:14 ----D---- C:\WINDOWS\srchasst
2010-05-16 20:51:58 ----D---- C:\WINDOWS\system32\oobe
2010-05-16 20:51:47 ----D---- C:\Program Files\Windows Media Player
2010-05-16 20:51:19 ----D---- C:\WINDOWS\system32\Com
2010-05-16 20:51:02 ----D---- C:\WINDOWS\system32\MsDtc
2010-05-16 20:50:49 ----D---- C:\Program Files\Messenger
2010-05-16 20:50:47 ----D---- C:\WINDOWS\Cursors
2010-05-16 20:50:36 ----D---- C:\WINDOWS\system32\wbem
2010-05-13 08:03:05 ----D---- C:\Program Files\uTorrent
2010-05-12 22:04:30 ----D---- C:\Program Files\SUPERAntiSpyware

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-05-31 11136]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2010-05-16 15424]
R1 NVTCP;NVIDIA TCP/IP Protocol Driver; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [2006-09-11 110592]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2010-05-16 512096]
R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2007-01-23 10640]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-01-16 293888]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-05-31 12416]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-10-27 138240]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-01-23 34576]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-01-23 33296]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-05-11 6738432]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-11 19968]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2007-05-31 10752]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 a3k0i6z4;a3k0i6z4; C:\WINDOWS\system32\drivers\a3k0i6z4.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2007-01-23 20496]
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2007-01-23 62992]
S3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2007-01-23 78864]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:\WINDOWS\system32\DRIVERS\s116bus.sys [2007-04-03 83336]
S3 s116mdfl;Sony Ericsson Device 116 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s116mdfl.sys [2007-04-03 15112]
S3 s116mdm;Sony Ericsson Device 116 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s116mdm.sys [2007-04-03 108680]
S3 s116mgmt;Sony Ericsson Device 116 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s116mgmt.sys [2007-04-03 100488]
S3 s116nd5;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS); C:\WINDOWS\system32\DRIVERS\s116nd5.sys [2007-04-03 23176]
S3 s116obex;Sony Ericsson Device 116 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s116obex.sys [2007-04-03 98696]
S3 s116unic;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM); C:\WINDOWS\system32\DRIVERS\s116unic.sys [2007-04-03 99080]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2007-05-31 258560]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-09-11 172032]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-13 20543]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2010-05-16 552064]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-09-11 135227]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-09-11 65599]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-05-11 163908]
R2 szserver;STOPzilla Service; C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe [2010-05-17 62912]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2010-05-16 307968]

-----------------EOF-----------------

#5 Příspěvek od **motji** » 18 kvě 2010 22:28

Tak tahle zavirovaná nádhera bude trochu času potřebovat

. Kolik ho máte?

Zapojte do pc všechny usb klíče, flashky...co používáte

Stáhněte na plochu UsbFix
-spusťte, zvolte jazyk E - potvrdťe enter
-klikněte na volbu 2 - enter
- po skenu sem vložte log , pokud na Vás nevyskočí, najdete ho C:\UsbFix.txt

To3@s · #6 Příspěvek od **To3@s** » 18 kvě 2010 22:48

Mno po spsusteni programu som postupoval podla vasho navodu pocitac sa restartoval , spustil sa scan no pocas scanu vyskocil BSOD . Po spusteni PC uz vsetko ide (zetial) , len mobil ktroy bol pripojeny k PC je nejak spomaleny.

To3@s · #7 Příspěvek od **To3@s** » 18 kvě 2010 22:49

Mobil je asi v .... po spusteni sa vypne.

Vytiahol som pametovku nanej asi bude daka haved.

#8 Příspěvek od **motji** » 18 kvě 2010 22:51

a nemáte třeba vybitou baterku?

Podívejte se prosím na disk C, jestli tam nemáte log C:\UsbFix.txt

To3@s · #9 Příspěvek od **To3@s** » 18 kvě 2010 22:55

Po vytiahnuti pametovky ide v pohode
tu je log:

############################## | UsbFix V6.114 |

User : PinBall (Administrators) # TO3-9CE1E6EBCD8
Update on 17/05/2010 by El Desaparecido , C_XX & Chimay8
Start at: 23:41:38 | 18. 5. 2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 6.0.2900.2180
Windows Firewall Status : Enabled
AV : ESET NOD32 antivirus system 2.70 2.70 [ Enabled | Updated ]

A:\ -> Disketová jednotka 3 1/2"
C:\ -> Místní pevný disk # 37,57 Go (8,03 Go free) [Programove vybavenie] # NTFS
D:\ -> Místní pevný disk # 195,31 Go (23,26 Go free) [Dáta] # NTFS
E:\ -> Disk CD-ROM
F:\ -> Disk CD-ROM
G:\ -> Vyměnitelný disk # 7,52 Go (486,41 Mo free) [MARTINKA] # FAT32

################## | Elements infectieux |

Supprimé ! C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\cvasds0.dll
Supprimé ! C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\dsoqq.exe
Supprimé ! C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\dsoqq0.dll
Supprimé ! C:\DOCUME~1\PINBAL~1.TO3\LOCALS~1\Temp\herss.exe
C:\autorun.inf -> fichier appelé : "C:\pcxis.exe" ( Absent ! )
Supprimé ! C:\autorun.inf
Supprimé ! C:\p6xebrnt.exe
Supprimé ! C:\Recycler\S-1-5-21-1220945662-1844237615-839522115-1003
Supprimé ! C:\Recycler\S-1-5-21-1220945662-1844237615-839522115-1004
Supprimé ! C:\Recycler\S-1-5-21-1220945662-1844237615-839522115-500
Supprimé ! C:\Recycler\S-1-5-21-725345543-682003330-1417001333-1003
D:\autorun.inf -> fichier appelé : "D:\pcxis.exe" ( Absent ! )
Supprimé ! D:\autorun.inf
Supprimé ! D:\Recycler\S-1-5-21-1220945662-1844237615-839522115-500
Supprimé ! D:\Recycler\S-1-5-21-725345543-682003330-1417001333-1003
G:\autorun.inf -> fichier appelé : "G:\pcxis.exe" ( Absent ! )
Supprimé ! G:\autorun.inf

a este mi vyhadzuje NOD 2 vyrusy ktore vsak nemoze zmazat

#10 Příspěvek od **motji** » 18 kvě 2010 23:02

Ještě jsme neskončili

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

Smažte cache Opery/Firefoxu bud ručně nebo ATF Cleanerem
http://www.slunecnice.cz/sw/atf-cleaner/

- v menu nahoře vyberte záložku Firefox / Opera a klikněte na ni
- zatrhněte Select All a pak klikněte na Empty Selected

pozor - přijdete o všechna hesla uložená ve FF /Opere!

- Na záložce main zaškrtněte All users temp a potvrdte Empty selected

Combofix stahněte takto:
- pravým myšítkem klikněte na odkaz combofixu --uložit jako.. ,a teď ho přejmenujte na Potvora.com a uložte.

Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe

-souhlaste s instalací konzole pro zotavení

- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem

To3@s · #11 Příspěvek od **To3@s** » 18 kvě 2010 23:04

Mozem pametovu kartu z mobilu naformatovat? bude v mobile o5 funkcna?
G/: som sformatoval snad to pomohlo

#12 Příspěvek od **motji** » 18 kvě 2010 23:06

Pokud je to běžná pamětová karta, která se dá použít i jinde než v mobilu, tak ano

To3@s · #13 Příspěvek od **To3@s** » 18 kvě 2010 23:09

Pametovka : M2 SanDisk na SonyEricson

#14 Příspěvek od **motji** » 18 kvě 2010 23:13

Já tyto pamětovky nenzám, to by jste měl vědět Vy

. Pokud se dá normálně dokoupit a slouží pouze na data, ne nic systémového, tak ano.

To3@s · #15 Příspěvek od **To3@s** » 19 kvě 2010 00:07

ComboFix 10-05-17.01 - PinBall . 05. 2010 0:40.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1731 [GMT 2:00]
Spuštěný z: c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\Plocha\ComboFix.exe
AV: ESET NOD32 antivirus system 2.70 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Rezidentní štít AV je zapnutý

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\WinPCap
c:\program files\WinPCap\daemon_mgm.exe
c:\program files\WinPCap\INSTALL.LOG
c:\program files\WinPCap\NetMonInstaller.exe
c:\program files\WinPCap\npf_mgm.exe
c:\program files\WinPCap\rpcapd.exe
c:\program files\WinPCap\Uninstall.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-04-18 do 2010-05-18 )))))))))))))))))))))))))))))))
.

2010-05-18 22:09 . 2010-05-18 22:09 -------- d-----w- c:\program files\CCleaner
2010-05-18 21:37 . 2010-05-18 21:42 -------- d-----w- C:\UsbFix
2010-05-18 21:33 . 2010-05-18 21:32 114176 --sh--r- C:\rhwhin.exe
2010-05-18 21:22 . 2010-05-18 21:23 -------- d-----w- C:\rsit
2010-05-18 21:17 . 2010-05-18 21:17 647168 ---ha-w- C:\SZKGFS.dat
2010-05-18 21:16 . 2010-05-18 21:16 -------- d-----w- c:\program files\Common Files\iS3
2010-05-17 19:57 . 2010-05-17 19:57 717296 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-05-17 16:03 . 2009-10-21 20:43 4 ----a-w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\version.dat
2010-05-17 16:03 . 2009-10-21 18:46 -------- d-----w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\ini
2010-05-17 16:03 . 2009-10-20 20:02 -------- d-----w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\ani
2010-05-17 16:03 . 2009-10-20 20:02 -------- d-----w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\data
2010-05-17 16:03 . 2009-10-20 20:02 -------- d-----w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\c3
2010-05-17 16:03 . 2009-10-20 20:02 -------- d-----w- c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\map
2010-05-17 14:17 . 2010-05-17 14:31 -------- d-----w- c:\program files\DaemonicMU Vintage
2010-05-17 13:54 . 2010-05-17 13:54 127034 ------r- c:\windows\bwUnin-8.1.1.50-8876480SL.exe
2010-05-17 13:49 . 2004-08-17 13:49 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2010-05-17 13:49 . 2004-08-17 13:49 21504 ----a-w- c:\windows\system32\hidserv.dll
2010-05-17 13:49 . 2001-10-24 09:54 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-05-17 13:49 . 2001-10-24 09:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2010-05-17 13:49 . 2004-08-17 13:45 14848 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2010-05-17 13:49 . 2004-08-17 13:45 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2010-05-17 13:49 . 2001-08-17 20:02 9600 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-05-17 13:49 . 2001-08-17 20:02 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-05-16 20:47 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2010-05-16 20:47 . 2004-08-03 23:01 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2010-05-16 20:46 . 2004-08-17 15:43 58240 ----a-w- c:\windows\system32\drivers\redbook.sys
2010-05-16 20:46 . 2001-08-17 21:46 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
2010-05-16 20:46 . 2004-08-17 15:49 75264 ----a-w- c:\windows\system32\usbui.dll
2010-05-16 20:42 . 2010-05-18 21:17 -------- d--h--r- c:\documents and settings\All Users.WINDOWS\Data aplikací
2010-05-16 20:42 . 2010-05-16 20:43 -------- d--h--r- c:\documents and settings\Default User.WINDOWS\Data aplikací
2010-05-16 20:41 . 2010-05-16 18:53 -------- d--h--w- c:\documents and settings\Default User.WINDOWS
2010-05-16 20:41 . 2010-05-16 18:52 -------- d-----w- c:\documents and settings\All Users.WINDOWS
2010-05-16 20:19 . 2010-05-16 20:19 2290176 ----a-w- c:\windows\system32\TUKernel.exe
2010-05-16 20:15 . 2010-05-16 20:15 0 ----a-w- c:\windows\nsreg.dat
2010-05-16 19:52 . 2007-04-03 11:57 99080 ----a-r- c:\windows\system32\drivers\s116unic.sys
2010-05-16 19:52 . 2007-04-03 11:57 23176 ----a-r- c:\windows\system32\drivers\s116nd5.sys
2010-05-16 19:52 . 2007-04-03 11:57 100488 ----a-r- c:\windows\system32\drivers\s116mgmt.sys
2010-05-16 19:52 . 2007-04-03 11:57 11016 ----a-r- c:\windows\system32\drivers\s116cr.sys
2010-05-16 19:52 . 2007-04-03 11:57 98696 ----a-r- c:\windows\system32\drivers\s116obex.sys
2010-05-16 19:52 . 2007-04-03 11:57 15112 ----a-r- c:\windows\system32\drivers\s116mdfl.sys
2010-05-16 19:52 . 2007-04-03 11:57 108680 ----a-r- c:\windows\system32\drivers\s116mdm.sys
2010-05-16 19:52 . 2007-04-03 11:57 12424 ----a-r- c:\windows\system32\drivers\s116cmnt.sys
2010-05-16 19:52 . 2007-04-03 11:57 12424 ----a-r- c:\windows\system32\drivers\s116cm.sys
2010-05-16 19:52 . 2007-04-03 11:57 12424 ----a-r- c:\windows\system32\drivers\s116whnt.sys
2010-05-16 19:52 . 2007-04-03 11:57 12424 ----a-r- c:\windows\system32\drivers\s116wh.sys
2010-05-16 19:52 . 2007-04-03 11:57 83336 ----a-r- c:\windows\system32\drivers\s116bus.sys
2010-05-16 19:42 . 2010-05-18 20:57 -------- d-----w- c:\program files\Eset
2010-05-16 19:42 . 2010-05-16 19:42 298104 ----a-w- c:\windows\system32\imon.dll
2010-05-16 19:42 . 2010-05-16 19:42 512096 ----a-w- c:\windows\system32\drivers\amon.sys
2010-05-16 19:42 . 2010-05-16 19:42 15424 ----a-w- c:\windows\system32\drivers\nod32drv.sys
2010-05-16 19:35 . 2010-05-16 19:35 307968 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-05-16 19:35 . 2008-02-27 11:15 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2010-05-16 19:35 . 2010-05-16 19:37 -------- d-----w- c:\program files\TuneUp Utilities 2008
2010-05-16 19:21 . 2010-05-16 19:21 -------- d-----w- c:\program files\Common Files\Sony Ericsson Shared
2010-05-16 19:21 . 2010-05-16 19:21 -------- d-----w- c:\program files\Sony Ericsson
2010-05-16 19:21 . 2010-05-16 19:21 -------- d-----w- c:\windows\Downloaded Installations
2010-05-16 19:19 . 2007-05-31 12:29 12288 ----a-w- c:\windows\system32\drivers\EIO.sys
2010-05-16 19:08 . 2006-12-05 08:39 139264 ------r- c:\windows\system32\JMRaidAPI.dll
2010-05-16 19:08 . 2006-11-16 09:05 1953792 ------r- c:\windows\system32\JMRaidSetup.exe
2010-05-16 19:08 . 2006-12-06 11:41 44416 ----a-r- c:\windows\system32\drivers\jraid.sys
2010-05-16 19:08 . 2006-02-07 11:52 6912 ----a-r- c:\windows\system32\drivers\JGOGO.sys
2010-05-16 19:06 . 2004-08-03 21:15 60800 -c--a-w- c:\windows\system32\dllcache\sysaudio.sys
2010-05-16 19:04 . 2010-05-16 19:04 -------- d-----w- c:\program files\NVIDIA Corporation
2010-05-16 19:03 . 2006-03-23 17:53 442368 ----a-w- c:\windows\system32\CapabilityTable.exe
2010-05-16 19:03 . 2006-08-18 02:28 208896 ------w- c:\windows\system32\nvuide.exe
2010-05-16 19:03 . 2006-08-21 10:24 363008 ----a-r- c:\windows\system32\idecoiins.dll
2010-05-16 19:03 . 2006-08-21 10:24 363008 ----a-r- c:\windows\system32\idecoi.dll
2010-05-16 19:03 . 2006-08-21 10:24 105344 ----a-r- c:\windows\system32\drivers\nvata.sys
2010-05-16 19:03 . 2006-08-18 02:28 35840 ----a-r- c:\windows\system32\NVCOI.DLL
2010-05-16 19:01 . 2006-10-11 03:33 10288 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2010-05-16 19:00 . 2006-07-28 07:30 236824 ----a-w- c:\windows\system32\xactengine2_3.dll
2010-05-16 18:59 . 2007-05-10 16:39 356352 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-05-16 18:59 . 2004-08-03 21:08 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2010-05-16 18:56 . 2010-05-16 18:56 -------- d-sh--w- c:\documents and settings\LocalService.NT AUTHORITY
2010-05-16 18:56 . 2010-05-16 18:56 -------- d-----w- c:\documents and settings\LocalService.NT AUTHORITY\Data aplikací
2010-05-16 18:56 . 2010-05-16 18:56 -------- d-----w- c:\documents and settings\NetworkService.NT AUTHORITY\Data aplikací
2010-05-16 18:56 . 2010-05-16 18:56 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY
2010-05-16 18:54 . 2004-08-03 20:31 70144 -c--a-w- c:\windows\system32\dllcache\pintlphr.exe
2010-05-16 18:53 . 2003-03-24 13:52 20536 -c--a-w- c:\windows\system32\dllcache\shtml.dll
2010-05-16 18:52 . 2010-05-16 18:52 -------- d-sh--w- c:\documents and settings\All Users.WINDOWS\DRM
2010-05-16 18:50 . 2001-10-25 11:00 5632 -c--a-w- c:\windows\system32\dllcache\write.exe
2010-05-13 19:56 . 2010-05-13 19:59 -------- d-----w- C:\TRANSLAT
2010-05-12 20:10 . 2010-05-12 20:10 -------- d-----w- c:\program files\RAR Password Recovery Magic
2010-05-12 20:04 . 2010-05-12 20:04 -------- d-----w- c:\program files\Intelore
2010-05-10 17:56 . 2010-05-16 19:21 -------- d-----w- c:\program files\Common Files\Teleca Shared
2010-04-27 12:46 . 2010-04-27 12:46 -------- d-----w- c:\program files\Common Files\Everstrike Software

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-18 22:15 . 2010-05-18 21:54 1216 ----a-w- c:\windows\system32\drivers\kgpfr2.cfg
2010-05-18 21:46 . 2010-05-18 21:45 1888 ----a-w- c:\windows\system32\drivers\kgpcpy.cfg
2010-05-18 21:23 . 2009-05-09 12:16 -------- d-----w- c:\program files\trend micro
2010-05-18 16:30 . 2010-05-16 19:00 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2010-05-18 16:14 . 2009-04-26 11:18 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-17 16:46 . 2009-12-22 13:43 -------- d-----w- c:\program files\Conquer 2.0
2010-05-17 15:01 . 2009-07-28 13:17 -------- d-----w- c:\program files\Valve
2010-05-17 13:53 . 2010-05-17 13:53 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2010-05-17 13:53 . 2010-05-17 13:53 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2010-05-17 06:39 . 2001-10-25 11:00 46016 ----a-w- c:\windows\system32\perfc005.dat
2010-05-17 06:39 . 2001-10-25 11:00 309716 ----a-w- c:\windows\system32\perfh005.dat
2010-05-16 18:53 . 2010-05-16 18:53 8738 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-05-16 18:53 . 2010-05-16 18:52 2112 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-05-16 18:52 . 2010-05-16 18:52 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-05-16 18:51 . 2010-05-16 18:51 21812 ----a-w- c:\windows\system32\emptyregdb.dat
2010-05-13 06:03 . 2009-05-18 19:44 -------- d-----w- c:\program files\uTorrent
2010-05-12 20:04 . 2009-05-20 15:25 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-04-14 10:51 . 2010-04-14 10:51 -------- d-----w- c:\program files\TVPlayerClassic
2010-04-11 18:07 . 2010-04-11 18:07 -------- d-----w- c:\program files\FreeTime
2010-04-08 14:25 . 2010-04-08 14:25 -------- d-----w- c:\program files\Common Files\LogiShrd
2010-04-08 14:25 . 2010-04-08 14:22 -------- d-----w- c:\program files\Logitech
2010-04-08 14:23 . 2010-04-08 14:22 -------- d-----w- c:\program files\Common Files\Logitech
2010-03-23 18:22 . 2009-05-20 15:24 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-03-21 20:45 . 2010-03-21 20:45 -------- d-----w- c:\program files\Common Files\DirectX
2010-03-21 20:35 . 2009-11-19 19:00 -------- d-----w- c:\program files\AGEIA Technologies
.

------- Sigcheck -------

[-] 2005-01-29 . 427E6DED3A2369D3432A683EB489EE14 . 502272 . . [5.1.2600.2180] . . c:\windows\system32\winlogon.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NOD32 Control Center GUI"="c:\program files\Eset\nod32kui.exe" [2010-05-16 949376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"="c:\windows\JM\JMInsIDE.exe" [2006-10-30 36864]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 101136]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 101136]
"LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-01-12 488984]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-05-10 8429568]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2010-4-8 67128]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-4-8 688128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\documents and settings\All Users.WINDOWS\Data aplikací\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-06-01 07:37 380928 ----a-w- c:\program files\ASUS\GamerOSD\GamerOSD.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2007-05-10 22:03 8429568 ----a-w- c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2007-05-10 22:03 81920 ----a-w- c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-05-10 22:03 1626112 ----a-w- c:\windows\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
2007-06-13 06:16 528384 ----a-r- c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
2006-07-13 05:12 729088 ------w- c:\program files\Analog Devices\SoundMAX\SMax4.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2006-12-18 13:34 868352 ----a-r- c:\program files\Analog Devices\Core\smax4pnp.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"d:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"=

R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [16. 5. 2010 21:42 15424]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [17. 5. 2010 15:53 10640]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17. 5. 2010 21:57 717296]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-05-18 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-02-29 12:24]
.
.
------- Doplňkový sken -------
.
LSP: c:\windows\system32\imon.dll
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
FF - ProfilePath - c:\documents and settings\PinBall.TO3-9CE1E6EBCD8\Data aplikací\Mozilla\Firefox\Profiles\qkyjkzj2.default\
FF - prefs.js: browser.startup.homepage - google.sk

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-cdoosoft - c:\docume~1\PINBAL~1.TO3\LOCALS~1\Temp\herss.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-19 00:42
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(1120)
c:\windows\system32\imon.dll
c:\windows\system32\nvappfilter.dll
.
Celkový čas: 2010-05-19 00:42:51
ComboFix-quarantined-files.txt 2010-05-18 22:42

Před spuštěním: 9 849 208 832
Po spuštění: 9 821 474 816

- - End Of File - - B067D10E3102A808412710E2046E8061

VIRY.CZ

pcxis.exe

pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe

Re: pcxis.exe