nejde už téměř nic

Zpráva

blazenka · #16 Příspěvek od **blazenka** » 15 úno 2011 21:21

větu press del to enter set up bo jak to tam je ete pochopím:-) jinak bude to chvilku trvat(výpadky sítě a pomalý stahování)

#17 Příspěvek od **Pavuk29** » 15 úno 2011 22:04

blazenka píše:větu press del to enter set up bo jak to tam je ete pochopím:-) jinak bude to chvilku trvat(výpadky sítě a pomalý stahování)

v pohode ved aj spat musime

Ja uz mam pocit ze som mrtvy, teplotu 39,2 a halucinacie

potrap sa zatial mozno sa este nalogujem v noci, drzim palce

blazenka · #18 Příspěvek od **blazenka** » 16 úno 2011 06:24

pro časté výpadky se mi včera prostě nepodařilo stáhnout 300MB takže to stahnu dneska ve škole a do PC to půjde až přijdu dom=až do večera máte ode mě klid:-)

#19 Příspěvek od **vyosek** » 16 úno 2011 10:14

Ja tu budu taky dneska jen nakukoat, mam do osmi skolu, takze o pul devate tu budu jak na koni a muzem se na to vrhnout

Pripadne pokud mate icq, tak pro jednodussi komunikaci si me pridejte - cislo mam v profilu http://www.viry.cz/forum/memberlist.php ... le&u=11993

#20 Příspěvek od **Pavuk29** » 16 úno 2011 10:15

blazenka píše:pro časté výpadky se mi včera prostě nepodařilo stáhnout 300MB takže to stahnu dneska ve škole a do PC to půjde až přijdu dom=až do večera máte ode mě klid:-)

Jasne

blazenka · #21 Příspěvek od **blazenka** » 16 úno 2011 16:55

začnu dobrou zprávou....sice po menších komplikacích ale přece se ten počítač spustil a data se kopírují, sice děsně pomalu ale přece, sice mi tam žádný okna kde bych volila mini XP nebo tak něco nenaskočilo, prostě se to spustilo....doufám že ten comander tam není nějak důležitej, nemám ho. taky sem z té flešky smazala asi tak dvacet zavirovanejch souborů (Win32 Malware-gen. WIN32 banker GSG, WIN32 downloader FEC - jestli vám to pomůže) a už se mi tam nic nekopíruje ve formě zástupců a nemusím jak blbec přepisovat cílový adresy abych se do těch složek vůbec dostala (to se dělo ve fázi, kdy sem začínala tušit že je něco špatně, ale ten starej antivirák to nemohl najít)...

blazenka · #22 Příspěvek od **blazenka** » 16 úno 2011 16:59

ta maličko horší zpráva je že ten Banker se mi na tu flešku prostě znovu dostává, pokaždý když ji vytáhnu z toho starýho PC tak tam notas objeví nějakej novej zavirovanej soubor....(všechno mažu)

#23 Příspěvek od **vyosek** » 16 úno 2011 17:10

Takze na to budeme muset jinak, nejdrive odvirovat a pak az vytahovat data

Tedy nejrozumejsi by bylo to naformatovat ale asi na tech fotkach dost lpite ze

Na to hirens boot by mel byt Dr.Web CureIt! Antivirus - spustte jej a on neco malo pomaze - to je dobry antivir a umi toho dost vylecit...Jinak to bude asi vypadat takto ten Dr.We Cure It! http://viry.cz/forum/viewtopic.php?f=29&t=57214

jen takovy dotaz: kdyz jste najeta pres to Hirens boot funguje Vam tam internet

blazenka · #24 Příspěvek od **blazenka** » 16 úno 2011 17:36

už to přestalo, možná v těch složkách co sem tahala ze začátku byly viry (soubory stažený z netu), nejde net ale spíš proto že sem tam po opětovném složení a zapojení PC nedala anténu:-)
mmnt najdu ji a uvidím co bude...

blazenka · #25 Příspěvek od **blazenka** » 16 úno 2011 17:38

ten net jde....je to špatně?

#26 Příspěvek od **vyosek** » 16 úno 2011 17:40

Prave ze dobre ze Vam net jde - to nam dost pomuze pac muzem trochu PC odlehcit od viru

Pokud jste nespustila ten DR.Web CureIt, tak jej nespoustejte

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 5 az 10 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

blazenka · #27 Příspěvek od **blazenka** » 16 úno 2011 17:42

mezi ty 64bit OS patří XP?

blazenka · #28 Příspěvek od **blazenka** » 16 úno 2011 17:48

to okýnko pro 64bit sem tam nikde nenašla ale prohledává to...

blazenka · #29 Příspěvek od **blazenka** » 16 úno 2011 17:59

OTL logfile created on: 16.2.2011 17:47:05 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Mike\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,00 Mb Total Physical Memory | 203,00 Mb Available Physical Memory | 40,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 1,62 Gb Free Space | 2,17% Space Free | Partition Type: NTFS
Drive E: | 702,81 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 1,92 Gb Total Space | 0,28 Gb Free Space | 14,51% Space Free | Partition Type: FAT32

Computer Name: KRAKONOS | User Name: Mike | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.02.16 17:45:50 | 000,385,024 | RHS- | M] () -- C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467\wincdsvn.exe
PRC - [2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
PRC - [2011.01.13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.10.21 20:09:32 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2009.02.26 10:49:18 | 000,099,328 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009.02.03 17:53:42 | 000,026,624 | ---- | M] () -- C:\WINDOWS\OETRN.EXE
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.01.22 11:13:32 | 001,201,448 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2008.01.22 11:13:20 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007.04.16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2006.11.12 11:48:46 | 000,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006.01.04 20:07:46 | 000,361,984 | ---- | M] (Pablo Software Solutions) -- C:\Documents and Settings\Mike\Local Settings\Temp\_AZTMP1_\Exec\FTPServer.exe
PRC - [2004.08.24 16:26:34 | 000,671,744 | ---- | M] (D-Link) -- C:\Program Files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE

========== Modules (SafeList) ==========

MOD - [2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
MOD - [2011.01.13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009.02.03 17:53:42 | 000,045,056 | ---- | M] () -- C:\WINDOWS\TRNOEH.DLL

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (CesarFTP)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.01.30 15:26:33 | 000,365,056 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\WINDOWS\system32\sshnas21.dll -- (SSHNAS)
SRV - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2004.08.18 13:00:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (NOD32FiXTemDono)

========== Driver Services (SafeList) ==========

DRV - [2011.01.13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.01.13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.01.13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.01.13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.01.13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.01.13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.12.19 14:51:47 | 000,040,128 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\tgratapj.sys -- (tgratapj)
DRV - [2009.01.17 18:57:24 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.05.03 04:46:00 | 006,554,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008.04.14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2007.04.25 16:20:48 | 004,030,144 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005.09.29 18:01:51 | 000,066,048 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.08.10 15:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.08.10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.08.20 19:09:14 | 000,062,865 | ---- | M] (Funk Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\odysseyIM3.sys -- (odysseyIM3)
DRV - [2004.08.20 19:09:14 | 000,016,292 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - [2004.05.21 15:59:54 | 000,283,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GPLUS.sys -- (TNET1130)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-606747145-1788223648-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google Search Community"
FF - prefs.js..browser.startup.homepage: "http://search.speedbit.com/"
FF - prefs.js..extensions.enabledItems: googleplusvideos@googleplusvideos.com:1.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..keyword.URL: "http://search.speedbit.com/searchresult ... default&q="

FF - HKLM\software\mozilla\Firefox\extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.01.02 21:52:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.27 11:03:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.27 11:00:28 | 000,000,000 | ---D | M]

[2009.02.09 17:11:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Extensions
[2011.01.29 09:35:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Firefox\Profiles\hyytpinm.default\extensions
[2010.02.05 17:51:10 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Firefox\Profiles\hyytpinm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.01.29 09:35:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.04.26 11:22:23 | 000,000,000 | ---D | M] (Seekapp) -- C:\Program Files\Mozilla Firefox\extensions\{4548ECB8-DA60-439A-A00D-5C893F8E1F9A}(2)
[2009.02.24 21:30:52 | 000,000,000 | ---D | M] (flashget Extension) -- C:\Program Files\Mozilla Firefox\extensions\{5EB37AE4-DA0A-41ab-8037-BDEDDCC70669}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MIKE\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\HYYTPINM.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
[2009.02.24 20:08:04 | 000,000,000 | ---D | M] (googleplusvideos) -- C:\PROGRAM FILES\GOOGLEPLUSVIDEOS\FFEXT
[2009.03.27 20:08:43 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2008.07.25 09:31:48 | 000,028,672 | ---- | M] (flashget) -- C:\Program Files\Mozilla Firefox\components\flashgetXpi.dll
[2009.01.25 13:57:42 | 000,028,672 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\GooglePlusVideosXPCOM.dll
[2008.03.31 20:06:24 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2008.03.31 20:06:24 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.03.05 18:26:50 | 000,002,383 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp122.xml
[2009.03.05 18:29:35 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp123.xml
[2009.03.11 16:00:10 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp125.xml
[2008.01.27 10:57:20 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.03.21 08:18:51 | 000,002,898 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\SiteVacuum.xml
[2008.01.27 10:57:20 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2008.03.31 20:06:24 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2009.04.01 20:04:13 | 000,000,831 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.martau.com
O1 - Hosts: or block Tu.exe, TuAgent.exe, and TuStarter.exe with your Firewall
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\..\Toolbar\ShellBrowser: (no name) - {60270DC7-9EA0-472F-9B77-66652C06246E} - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\..\Toolbar\WebBrowser: (no name) - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [Microsoft(R)UpdateManager] C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467\wincdsvn.exe ()
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MicrosoftRTDriver] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MSConfig] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MSDNMService] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE ()
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [WindowsLiveUpdateService] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\D-Link AirPlus G+ Wireless Adapter Utility.lnk = C:\Program Files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE (D-Link)
O4 - Startup: C:\Documents and Settings\Mike\Nabídka Start\Programy\Po spuštění\Quick'n Easy FTP Server.lnk = C:\Documents and Settings\Mike\Local Settings\Temp\_AZTMP1_\Exec\FTPServer.exe (Pablo Software Solutions)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRun = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRun = 1
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found
O9 - Extra Button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mike\Data aplikací\Opera\Opera\profile\skin\a-creed-3-1024.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mike\Data aplikací\Opera\Opera\profile\skin\a-creed-3-1024.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.01.17 13:20:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.02.16 17:47:02 | 000,000,131 | RHS- | M] () - I:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{0b88d064-bbc8-11de-9802-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{0b88d064-bbc8-11de-9802-001346b221a1}\Shell\AutoRun\command - "" = D:\DTVaultPrivacy.exe
O33 - MountPoints2\{18e169f8-f013-11df-9925-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{18e169f8-f013-11df-9925-001346b221a1}\Shell\AutoRun\command - "" = D:\Startme.exe
O33 - MountPoints2\{ac410e07-e4c0-11dd-9629-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{ac410e07-e4c0-11dd-9629-001346b221a1}\Shell\AutoRun\command - "" = H:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2011.02.16 17:45:51 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467
[2011.02.16 17:44:23 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
[2011.02.11 14:56:08 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mike\Recent
[2011.02.09 21:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2011.02.09 21:32:46 | 000,294,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.02.09 21:32:46 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.02.09 21:32:43 | 000,047,440 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.02.09 21:32:43 | 000,023,632 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.02.09 21:32:41 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.02.09 21:32:40 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.02.09 21:32:39 | 000,029,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.02.09 21:31:23 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.02.09 21:31:11 | 000,188,216 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.02.09 21:30:02 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2011.02.09 21:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
[2011.02.16 17:14:18 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1788223648-839522115-1004UA.job
[2011.02.16 16:22:50 | 000,175,128 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011.02.16 16:17:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.02.16 16:17:43 | 536,403,968 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.16 15:31:57 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.02.14 21:25:34 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1788223648-839522115-1004Core.job
[2011.02.09 21:32:49 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.02.09 21:32:42 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.02.09 21:14:41 | 000,271,784 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.09 21:32:49 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.01.12 22:08:28 | 000,000,285 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2011.01.02 21:38:39 | 000,002,021 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2010.12.20 05:52:48 | 000,225,280 | ---- | C] () -- C:\Documents and Settings\Mike\Data aplikací\chrtmp
[2010.12.19 14:51:47 | 000,040,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\tgratapj.sys
[2010.12.19 14:13:13 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\GJ6AC1NGjh.txt
[2010.12.19 14:02:08 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\dg6Ce1LFkK.txt
[2010.12.18 17:29:42 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Mike\Data aplikací\wincbdrv32.txt
[2010.12.18 17:29:35 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\f1mHMIJdJm.txt
[2010.12.13 21:49:58 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Mike\Data aplikací\msnsvconfig.txt
[2009.07.27 17:30:37 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\fusioncache.dat
[2009.05.04 18:18:49 | 000,283,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\GPLUS.sys
[2009.03.07 19:39:49 | 000,000,058 | ---- | C] () -- C:\WINDOWS\nfsc_patch.ini
[2009.02.09 18:34:55 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009.02.03 17:53:42 | 000,200,704 | ---- | C] () -- C:\WINDOWS\TRNOET.DLL
[2009.02.03 17:40:50 | 000,000,046 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2009.02.03 17:39:21 | 000,001,678 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2009.02.03 17:39:19 | 000,002,476 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2009.02.03 17:39:04 | 000,004,736 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2009.02.03 17:39:04 | 000,004,533 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2009.02.03 17:35:09 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2009.02.03 17:33:59 | 000,003,602 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2009.01.23 20:02:13 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.01.23 20:02:12 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.01.23 20:02:12 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.01.23 20:02:12 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.01.17 22:34:23 | 000,087,552 | ---- | C] () -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.01.17 16:17:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009.01.17 16:05:12 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.17 15:49:01 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.01.17 15:04:59 | 000,001,097 | ---- | C] () -- C:\WINDOWS\ADStahovac.INI
[2009.01.17 14:04:00 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.17 13:58:45 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.05.04 12:28:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008.05.03 05:46:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.04.12 07:41:20 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.04.12 07:30:20 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007.02.05 20:05:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2006.10.22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(6).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(5).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(4).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(3).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(2).dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2011.02.09 21:30:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2009.02.24 20:07:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.01.04 18:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Cerberus LLC
[2009.01.17 15:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2009.02.25 20:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Martau
[2009.05.08 12:53:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Seekapp
[2009.02.25 19:40:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.01.17 14:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VistaCodecs
[2011.02.03 01:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\AIMP
[2009.02.24 20:07:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\Babylon
[2009.03.07 20:30:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BITS
[2009.08.15 00:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BSplayer
[2009.01.17 13:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BSplayer Pro
[2009.01.17 15:28:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\ESET
[2011.01.04 17:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\GHISLER
[2009.01.18 20:42:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\GlarySoft
[2010.12.02 21:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\ICQ
[2009.01.18 16:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\InterTrust
[2009.01.17 15:21:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\Opera
[2009.11.28 14:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\uTorrent

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 514613 bytes -> C:\WINDOWS\Temp:temp
@Alternate Data Stream - 48 bytes -> C:\Documents and Settings\All Users\DRM:الهريرة
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:A9662AE0

< End of report >

blazenka · #30 Příspěvek od **blazenka** » 16 úno 2011 18:00

OTL logfile created on: 16.2.2011 17:47:05 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Mike\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,00 Mb Total Physical Memory | 203,00 Mb Available Physical Memory | 40,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 1,62 Gb Free Space | 2,17% Space Free | Partition Type: NTFS
Drive E: | 702,81 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 1,92 Gb Total Space | 0,28 Gb Free Space | 14,51% Space Free | Partition Type: FAT32

Computer Name: KRAKONOS | User Name: Mike | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.02.16 17:45:50 | 000,385,024 | RHS- | M] () -- C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467\wincdsvn.exe
PRC - [2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
PRC - [2011.01.13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.10.21 20:09:32 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2009.02.26 10:49:18 | 000,099,328 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009.02.03 17:53:42 | 000,026,624 | ---- | M] () -- C:\WINDOWS\OETRN.EXE
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.01.22 11:13:32 | 001,201,448 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2008.01.22 11:13:20 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007.04.16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2006.11.12 11:48:46 | 000,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006.01.04 20:07:46 | 000,361,984 | ---- | M] (Pablo Software Solutions) -- C:\Documents and Settings\Mike\Local Settings\Temp\_AZTMP1_\Exec\FTPServer.exe
PRC - [2004.08.24 16:26:34 | 000,671,744 | ---- | M] (D-Link) -- C:\Program Files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE

========== Modules (SafeList) ==========

MOD - [2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
MOD - [2011.01.13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009.02.03 17:53:42 | 000,045,056 | ---- | M] () -- C:\WINDOWS\TRNOEH.DLL

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (CesarFTP)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.01.30 15:26:33 | 000,365,056 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\WINDOWS\system32\sshnas21.dll -- (SSHNAS)
SRV - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2007.05.28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2004.08.18 13:00:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (NOD32FiXTemDono)

========== Driver Services (SafeList) ==========

DRV - [2011.01.13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.01.13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.01.13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.01.13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.01.13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.01.13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.12.19 14:51:47 | 000,040,128 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\tgratapj.sys -- (tgratapj)
DRV - [2009.01.17 18:57:24 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.05.03 04:46:00 | 006,554,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008.04.14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2007.04.25 16:20:48 | 004,030,144 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005.09.29 18:01:51 | 000,066,048 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.08.10 15:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.08.10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.08.20 19:09:14 | 000,062,865 | ---- | M] (Funk Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\odysseyIM3.sys -- (odysseyIM3)
DRV - [2004.08.20 19:09:14 | 000,016,292 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - [2004.05.21 15:59:54 | 000,283,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GPLUS.sys -- (TNET1130)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-606747145-1788223648-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google Search Community"
FF - prefs.js..browser.startup.homepage: "http://search.speedbit.com/"
FF - prefs.js..extensions.enabledItems: googleplusvideos@googleplusvideos.com:1.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..keyword.URL: "http://search.speedbit.com/searchresult ... default&q="

FF - HKLM\software\mozilla\Firefox\extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.01.02 21:52:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.27 11:03:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.27 11:00:28 | 000,000,000 | ---D | M]

[2009.02.09 17:11:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Extensions
[2011.01.29 09:35:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Firefox\Profiles\hyytpinm.default\extensions
[2010.02.05 17:51:10 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Mike\Data aplikací\Mozilla\Firefox\Profiles\hyytpinm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.01.29 09:35:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.04.26 11:22:23 | 000,000,000 | ---D | M] (Seekapp) -- C:\Program Files\Mozilla Firefox\extensions\{4548ECB8-DA60-439A-A00D-5C893F8E1F9A}(2)
[2009.02.24 21:30:52 | 000,000,000 | ---D | M] (flashget Extension) -- C:\Program Files\Mozilla Firefox\extensions\{5EB37AE4-DA0A-41ab-8037-BDEDDCC70669}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MIKE\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\HYYTPINM.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
[2009.02.24 20:08:04 | 000,000,000 | ---D | M] (googleplusvideos) -- C:\PROGRAM FILES\GOOGLEPLUSVIDEOS\FFEXT
[2009.03.27 20:08:43 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2008.07.25 09:31:48 | 000,028,672 | ---- | M] (flashget) -- C:\Program Files\Mozilla Firefox\components\flashgetXpi.dll
[2009.01.25 13:57:42 | 000,028,672 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\GooglePlusVideosXPCOM.dll
[2008.03.31 20:06:24 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2008.03.31 20:06:24 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.03.05 18:26:50 | 000,002,383 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp122.xml
[2009.03.05 18:29:35 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp123.xml
[2009.03.11 16:00:10 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekapp125.xml
[2008.01.27 10:57:20 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.03.21 08:18:51 | 000,002,898 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\SiteVacuum.xml
[2008.01.27 10:57:20 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2008.03.31 20:06:24 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2009.04.01 20:04:13 | 000,000,831 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.martau.com
O1 - Hosts: or block Tu.exe, TuAgent.exe, and TuStarter.exe with your Firewall
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\..\Toolbar\ShellBrowser: (no name) - {60270DC7-9EA0-472F-9B77-66652C06246E} - No CLSID value found.
O3 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\..\Toolbar\WebBrowser: (no name) - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [Microsoft(R)UpdateManager] C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467\wincdsvn.exe ()
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MicrosoftRTDriver] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MSConfig] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [MSDNMService] File not found
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE ()
O4 - HKU\S-1-5-21-606747145-1788223648-839522115-1004..\Run: [WindowsLiveUpdateService] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\D-Link AirPlus G+ Wireless Adapter Utility.lnk = C:\Program Files\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE (D-Link)
O4 - Startup: C:\Documents and Settings\Mike\Nabídka Start\Programy\Po spuštění\Quick'n Easy FTP Server.lnk = C:\Documents and Settings\Mike\Local Settings\Temp\_AZTMP1_\Exec\FTPServer.exe (Pablo Software Solutions)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRun = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O7 - HKU\S-1-5-21-606747145-1788223648-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRun = 1
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found
O9 - Extra Button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mike\Data aplikací\Opera\Opera\profile\skin\a-creed-3-1024.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mike\Data aplikací\Opera\Opera\profile\skin\a-creed-3-1024.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.01.17 13:20:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.02.16 17:47:02 | 000,000,131 | RHS- | M] () - I:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{0b88d064-bbc8-11de-9802-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{0b88d064-bbc8-11de-9802-001346b221a1}\Shell\AutoRun\command - "" = D:\DTVaultPrivacy.exe
O33 - MountPoints2\{18e169f8-f013-11df-9925-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{18e169f8-f013-11df-9925-001346b221a1}\Shell\AutoRun\command - "" = D:\Startme.exe
O33 - MountPoints2\{ac410e07-e4c0-11dd-9629-001346b221a1}\Shell - "" = AutoRun
O33 - MountPoints2\{ac410e07-e4c0-11dd-9629-001346b221a1}\Shell\AutoRun\command - "" = H:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2011.02.16 17:45:51 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\Mike\Microsoft-Driver-1-85-45488-2348-1467
[2011.02.16 17:44:23 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
[2011.02.11 14:56:08 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mike\Recent
[2011.02.09 21:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2011.02.09 21:32:46 | 000,294,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.02.09 21:32:46 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.02.09 21:32:43 | 000,047,440 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.02.09 21:32:43 | 000,023,632 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.02.09 21:32:41 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.02.09 21:32:40 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.02.09 21:32:39 | 000,029,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.02.09 21:31:23 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.02.09 21:31:11 | 000,188,216 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.02.09 21:30:02 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2011.02.09 21:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.02.16 17:44:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mike\Plocha\OTL.exe
[2011.02.16 17:14:18 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1788223648-839522115-1004UA.job
[2011.02.16 16:22:50 | 000,175,128 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011.02.16 16:17:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.02.16 16:17:43 | 536,403,968 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.16 15:31:57 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.02.14 21:25:34 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1788223648-839522115-1004Core.job
[2011.02.09 21:32:49 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.02.09 21:32:42 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.02.09 21:14:41 | 000,271,784 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.09 21:32:49 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.01.12 22:08:28 | 000,000,285 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2011.01.02 21:38:39 | 000,002,021 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2010.12.20 05:52:48 | 000,225,280 | ---- | C] () -- C:\Documents and Settings\Mike\Data aplikací\chrtmp
[2010.12.19 14:51:47 | 000,040,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\tgratapj.sys
[2010.12.19 14:13:13 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\GJ6AC1NGjh.txt
[2010.12.19 14:02:08 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\dg6Ce1LFkK.txt
[2010.12.18 17:29:42 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Mike\Data aplikací\wincbdrv32.txt
[2010.12.18 17:29:35 | 000,000,000 | R--- | C] () -- C:\Documents and Settings\Mike\Data aplikací\f1mHMIJdJm.txt
[2010.12.13 21:49:58 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Mike\Data aplikací\msnsvconfig.txt
[2009.07.27 17:30:37 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\fusioncache.dat
[2009.05.04 18:18:49 | 000,283,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\GPLUS.sys
[2009.03.07 19:39:49 | 000,000,058 | ---- | C] () -- C:\WINDOWS\nfsc_patch.ini
[2009.02.09 18:34:55 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009.02.03 17:53:42 | 000,200,704 | ---- | C] () -- C:\WINDOWS\TRNOET.DLL
[2009.02.03 17:40:50 | 000,000,046 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2009.02.03 17:39:21 | 000,001,678 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2009.02.03 17:39:19 | 000,002,476 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2009.02.03 17:39:04 | 000,004,736 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2009.02.03 17:39:04 | 000,004,533 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2009.02.03 17:35:09 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2009.02.03 17:33:59 | 000,003,602 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2009.01.23 20:02:13 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.01.23 20:02:12 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.01.23 20:02:12 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.01.23 20:02:12 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.01.17 22:34:23 | 000,087,552 | ---- | C] () -- C:\Documents and Settings\Mike\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.01.17 16:17:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009.01.17 16:05:12 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.17 15:49:01 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.01.17 15:04:59 | 000,001,097 | ---- | C] () -- C:\WINDOWS\ADStahovac.INI
[2009.01.17 14:04:00 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.17 13:58:45 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.05.04 12:28:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008.05.03 05:46:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.04.12 07:41:20 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.04.12 07:30:20 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007.02.05 20:05:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2006.10.22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(6).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(5).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(4).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(3).dll
[2006.10.22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi(2).dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2011.02.09 21:30:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2009.02.24 20:07:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.01.04 18:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Cerberus LLC
[2009.01.17 15:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2009.02.25 20:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Martau
[2009.05.08 12:53:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Seekapp
[2009.02.25 19:40:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.01.17 14:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VistaCodecs
[2011.02.03 01:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\AIMP
[2009.02.24 20:07:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\Babylon
[2009.03.07 20:30:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BITS
[2009.08.15 00:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BSplayer
[2009.01.17 13:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\BSplayer Pro
[2009.01.17 15:28:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\ESET
[2011.01.04 17:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\GHISLER
[2009.01.18 20:42:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\GlarySoft
[2010.12.02 21:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\ICQ
[2009.01.18 16:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\InterTrust
[2009.01.17 15:21:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\Opera
[2009.11.28 14:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mike\Data aplikací\uTorrent

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 514613 bytes -> C:\WINDOWS\Temp:temp
@Alternate Data Stream - 48 bytes -> C:\Documents and Settings\All Users\DRM:الهريرة
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:A9662AE0

< End of report >

VIRY.CZ

nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic

Re: nejde už téměř nic