VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosim o pomoc s virem

https://forum.viry.cz:443/viewtopic.php?t=122733

Stránka 2 z 6

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:11
od Rhonwyn
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.i420 - lvcod64.dll (Logitech Inc.)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FMVC - C:\Windows\SysWow64\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.i420 - C:\Windows\SysWow64\lvcodec2.dll (Logitech Inc.)
Drivers32: VIDC.RTV1 - rtvcvfw32.dll File not found
Drivers32: vidc.VP60 - C:\Windows\system32\vp6vfw.dll File not found
Drivers32: vidc.VP61 - C:\Windows\system32\vp6vfw.dll File not found
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012.07.05 11:30:57 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.07.05 10:55:09 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{F156E791-6BF7-499A-B184-7C3C0178F8A9}
[2012.07.05 10:54:57 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{47EAD36E-E5F0-45AA-946E-6E49335ADF11}
[2012.07.05 10:24:15 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Rhonwyn\Desktop\OTL.exe
[2012.07.05 09:26:32 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.07.05 09:26:32 | 000,000,000 | ---D | C] -- C:\rsit
[2012.07.04 18:33:19 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Documents\ANNO 2070
[2012.07.04 08:41:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012.07.04 08:41:55 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.07.04 08:27:42 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Roaming\SUPERAntiSpyware.com
[2012.07.04 08:27:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012.07.04 08:27:29 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2012.07.04 08:27:29 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012.07.04 07:28:16 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Roaming\Malwarebytes
[2012.07.04 07:28:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.07.04 07:28:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.07.04 07:28:03 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012.07.04 07:28:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012.07.02 20:39:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012.07.01 12:34:29 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Desktop\j,bljhb
[2012.06.30 13:11:14 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Documents\x360ce.App-2.0.2.158
[2012.06.30 13:01:47 | 000,014,976 | ---- | C] (Headsoft) -- C:\Windows\SysNative\drivers\vjoy.sys
[2012.06.30 13:01:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VJoy
[2012.06.30 13:01:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VJoy
[2012.06.30 12:47:30 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Documents\PCSX2
[2012.06.30 12:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BrowserCompanion
[2012.06.30 12:39:44 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Desktop\PSX Emulator
[2012.06.24 14:35:09 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{27A2645C-4C29-4DB5-9EA7-1FE11F8AE68E}
[2012.06.24 14:34:56 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{B9A923BE-72A0-469C-8CB0-1DC5860A0157}
[2012.06.22 22:02:14 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Documents\WB Games
[2012.06.22 21:59:03 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\Downloaded Installations
[2012.06.20 16:02:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012.06.20 16:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012.06.20 16:02:30 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012.06.20 16:02:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012.06.19 22:49:38 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\Macromedia
[2012.06.19 20:55:11 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{303EDC14-2EEA-4336-BBE1-12FA52A59F9E}
[2012.06.19 20:54:59 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{948EE042-3D55-4735-8DFB-5048A29AA362}
[2012.06.19 06:21:34 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012.06.19 06:21:34 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012.06.19 06:21:34 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012.06.19 06:21:25 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012.06.19 06:21:25 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012.06.19 06:21:25 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012.06.19 06:21:14 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012.06.19 06:21:14 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012.06.18 12:20:26 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{06086E9A-F30A-43AC-B5DB-C962E24FD482}
[2012.06.17 14:32:14 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\Documents\Star Wars - The Old Republic
[2012.06.14 03:00:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012.06.14 03:00:54 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012.06.14 03:00:54 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.06.14 03:00:54 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.06.14 03:00:53 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012.06.14 03:00:53 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.06.14 03:00:53 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012.06.14 03:00:53 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.06.14 03:00:52 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012.06.14 03:00:52 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012.06.14 03:00:52 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.06.14 03:00:52 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012.06.14 03:00:52 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.06.13 18:08:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2012.06.13 18:07:24 | 000,198,088 | ---- | C] (Aladdin Knowledge Systems Ltd.) -- C:\Windows\SysWow64\hlvdd.dll
[2012.06.13 18:07:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mosaic
[2012.06.13 08:55:56 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012.06.13 08:55:56 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012.06.13 08:55:56 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012.06.13 08:55:46 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012.06.13 08:55:46 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012.06.13 08:55:45 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012.06.13 08:55:41 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012.06.13 08:55:39 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012.06.13 08:55:39 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012.06.12 09:53:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012.06.11 10:00:51 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\Mozilla
[2012.06.11 10:00:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012.06.11 10:00:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.06.11 09:56:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012.06.11 09:55:32 | 000,000,000 | ---D | C] -- C:\bb3101f1d1cc1083cadb8bbb
[2012.06.10 21:47:32 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{57D0F6C1-591B-4960-AFF7-B997557E6C5E}
[2012.06.10 21:47:09 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{C8002E9B-08F0-406F-B422-127F67FF250F}
[2012.06.10 09:46:56 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{47C60257-DF0C-4A47-9B2C-2F7D896DF557}
[2012.06.10 09:46:34 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{77431036-60D6-48D3-BAD6-F5326C27B360}
[2012.06.09 21:46:20 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{82B29E13-ADAF-476A-B87E-C36BA218AB92}
[2012.06.09 21:45:58 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{914D2F62-D399-4943-9474-50CB1E573D89}
[2012.06.09 09:45:34 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{D2341CC2-91D7-499A-9E0D-BBC5AE7D9590}
[2012.06.09 09:44:35 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{51C01981-9AC9-480F-AB96-D1F843C11212}
[2012.06.08 21:28:22 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{AC5545E4-3597-4B0C-BD42-D5DBB4D8B2C8}
[2012.06.08 21:28:00 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{A6BD5862-0126-4123-9143-3D1D3B338232}
[2012.06.08 09:27:47 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{F1B78D52-9FD0-4A54-845E-DCA8C231AAA8}
[2012.06.08 09:27:24 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{372C5BCE-DE38-4D26-9711-44C86DCD838F}
[2012.06.07 21:27:12 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{F7685F82-2CA8-46D2-87EC-7B7D31EB112E}
[2012.06.07 21:26:50 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{E5DEE870-333E-4FCE-8D2D-787B0528A673}
[2012.06.07 09:26:37 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{BD6A2723-0299-419A-B16B-6D7A52385BDA}
[2012.06.07 09:26:15 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{42595AEC-CE6F-4EF7-8988-9D9C2461F9E6}
[2012.06.06 21:26:02 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{7F943F83-B136-4766-9330-CC205AF9A115}
[2012.06.06 21:25:40 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{92BB5273-6D28-4F52-9CC8-9796B84AE031}
[2012.06.06 09:25:28 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{3556D5F3-BEF5-465A-B3B6-30F3B37B7998}
[2012.06.06 09:25:06 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{847D13B1-5871-49AC-ACB4-8B436F128DAF}
[2012.06.05 21:24:52 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{DF92DF96-8615-4F57-9031-935DCC6EDF22}
[2012.06.05 21:24:30 | 000,000,000 | ---D | C] -- C:\Users\Rhonwyn\AppData\Local\{72856626-2B9C-4A87-80CD-1CE3F6FEE587}

========== Files - Modified Within 30 Days ==========

[2012.07.05 12:56:30 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.07.05 12:53:03 | 2134,204,415 | -HS- | M] () -- C:\hiberfil.sys
[2012.07.05 12:44:23 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.07.05 12:44:23 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.07.05 12:37:11 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys
[2012.07.05 12:17:01 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2012.07.05 10:42:09 | 000,388,470 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\cannot create file.png
[2012.07.05 10:24:21 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Rhonwyn\Desktop\OTL.exe
[2012.07.04 08:41:57 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.07.04 08:27:36 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012.07.04 07:28:07 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.02 20:39:41 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012.07.02 20:39:32 | 001,602,266 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.07.02 20:39:32 | 000,668,322 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2012.07.02 20:39:32 | 000,654,066 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.07.02 20:39:32 | 000,140,918 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2012.07.02 20:39:32 | 000,121,898 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.06.30 19:30:39 | 000,002,413 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\Google Chrome.lnk
[2012.06.30 12:50:19 | 000,040,928 | ---- | M] () -- C:\Windows\SysNative\drivers\VSPE.sys
[2012.06.30 12:40:01 | 000,000,250 | ---- | M] () -- C:\user.js
[2012.06.28 21:30:11 | 000,000,626 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\net.rtf
[2012.06.23 11:25:08 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.06.23 11:25:08 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.06.22 13:31:09 | 000,019,233 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\purple_shoes.jpg
[2012.06.22 09:51:42 | 000,000,221 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\Batman Arkham City.url
[2012.06.20 16:02:43 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012.06.15 16:56:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.06.14 03:30:38 | 000,292,456 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012.06.14 03:11:42 | 001,596,116 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.06.13 18:08:16 | 000,001,166 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012.06.13 18:07:16 | 000,001,234 | ---- | M] () -- C:\Users\Rhonwyn\Desktop\Mosaic.lnk
[2012.06.12 09:53:31 | 000,001,134 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk

========== Files Created - No Company Name ==========

[2012.07.05 10:42:09 | 000,388,470 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\cannot create file.png
[2012.07.05 10:29:45 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.07.04 08:41:57 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.07.04 08:27:36 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012.07.04 07:28:07 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.02 20:39:41 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012.07.02 20:39:37 | 000,001,915 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012.06.30 16:16:16 | 002,660,349 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\100_1412.JPG
[2012.06.30 12:50:19 | 000,040,928 | ---- | C] () -- C:\Windows\SysNative\drivers\VSPE.sys
[2012.06.30 12:40:01 | 000,000,250 | ---- | C] () -- C:\user.js
[2012.06.30 09:29:58 | 000,000,242 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\Dead Space™ 2.lnk
[2012.06.27 11:26:35 | 002,039,299 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\100_1410.JPG
[2012.06.22 13:31:03 | 000,019,233 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\purple_shoes.jpg
[2012.06.22 09:51:41 | 000,000,221 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\Batman Arkham City.url
[2012.06.20 16:02:43 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012.06.13 18:08:16 | 000,001,178 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
[2012.06.13 18:08:16 | 000,001,166 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012.06.13 18:07:16 | 000,001,234 | ---- | C] () -- C:\Users\Rhonwyn\Desktop\Mosaic.lnk
[2012.06.12 09:53:31 | 000,001,146 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.06.12 09:53:31 | 000,001,134 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.05.12 17:01:57 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll
[2012.05.01 14:39:17 | 000,006,144 | ---- | C] () -- C:\Users\Rhonwyn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.04.04 12:24:14 | 000,280,976 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.04.04 12:24:13 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.03.28 23:33:10 | 000,000,542 | ---- | C] () -- C:\Windows\SIERRA.INI
[2012.02.14 22:31:22 | 001,602,266 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.02.01 19:36:18 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys
[2012.02.01 19:28:46 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\drivers\IntelMEFWVer.dll
[2012.02.01 19:23:49 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2012.02.01 19:19:05 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.02.01 19:16:21 | 000,003,113 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011.12.15 07:23:04 | 010,920,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2011.12.15 07:23:04 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2011.12.15 07:23:04 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011.09.28 18:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.10.05 01:59:32 | 000,005,632 | ---- | C] () -- C:\Windows\SysWow64\StarOpen.sys

========== LOP Check ==========

[2012.05.12 17:13:32 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Atari
[2012.07.04 08:46:48 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite
[2012.02.19 15:03:15 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\EVEMon
[2012.07.04 18:00:42 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\GetRightToGo
[2012.06.19 18:08:19 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\GHISLER
[2012.04.30 15:05:17 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Leadertech
[2012.03.24 11:06:09 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
[2012.04.21 09:40:24 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Mount&Blade Warband
[2012.02.05 21:09:04 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Mumble
[2012.03.05 22:57:23 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Need for Speed World
[2012.04.17 17:02:25 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\OpenOffice.org
[2012.04.07 19:50:05 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Origin
[2012.02.24 14:01:19 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\PhotoFiltre
[2012.02.05 14:01:50 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\POINTERGHOSTV1
[2012.04.04 12:24:13 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\PunkBuster
[2012.03.02 10:26:33 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Rift
[2012.03.24 09:42:50 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Scoregasm
[2012.02.01 19:24:36 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Splashtop
[2012.02.02 21:04:53 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Sports Interactive
[2012.07.04 08:46:44 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\TS3Client
[2012.07.04 18:00:17 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Ubisoft
[2012.02.08 12:29:12 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\VitySoft
[2012.06.14 03:30:45 | 000,032,584 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========

< >

< >

< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2012.04.24 06:36:42 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=06E771AA596B8761107AB57E99F128D7 -- C:\Windows\SysWOW64\cryptsvc.dll
[2012.04.24 06:36:42 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=06E771AA596B8761107AB57E99F128D7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17827_none_77ff39f3f916c65f\cryptsvc.dll
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2012.04.24 06:28:22 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=21993009E0CCB9B4FA195F14D3408626 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.21979_none_7854c7b7125b248c\cryptsvc.dll
[2012.04.24 07:37:37 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=4F5414602E2544A4554D95517948B705 -- C:\Windows\SysNative\cryptsvc.dll
[2012.04.24 07:37:37 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=4F5414602E2544A4554D95517948B705 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17827_none_d41dd577b1743795\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2012.04.24 07:22:32 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=B7337E9C9E5936355BB700AA33E0936E -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.21979_none_d473633acab895c2\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTORV.SYS >
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 08:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\SysNative\lsass.exe
[2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe

< MD5 for: NDIS.SYS >
[2010.11.21 05:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010.11.21 05:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll

< MD5 for: NVRAID.SYS >
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.03.11 08:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011.03.11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.09.29 19:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012.03.30 12:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2011.04.25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2012.03.30 13:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012.03.30 13:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2011.04.25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.09.29 18:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll

< >

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:12
od Rhonwyn
< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2007.11.07 09:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.02.16 15:24:06 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Adobe
[2012.04.14 21:28:17 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Apple Computer
[2012.05.12 17:13:32 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Atari
[2012.02.01 19:18:05 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\ATI
[2012.07.04 08:46:48 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite
[2012.03.02 19:29:06 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\dvdcss
[2012.02.19 15:03:15 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\EVEMon
[2012.07.04 18:00:42 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\GetRightToGo
[2012.06.19 18:08:19 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\GHISLER
[2012.02.01 19:11:36 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Identities
[2012.02.01 19:28:38 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\InstallShield
[2012.04.30 15:05:17 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Leadertech
[2012.02.01 19:43:13 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Macromedia
[2012.07.04 07:28:16 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Malwarebytes
[2011.04.12 10:45:23 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Media Center Programs
[2012.04.30 15:05:17 | 000,000,000 | --SD | M] -- C:\Users\Rhonwyn\AppData\Roaming\Microsoft
[2012.03.24 11:06:09 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
[2012.04.21 09:40:24 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Mount&Blade Warband
[2012.06.11 10:01:01 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Mozilla
[2012.02.05 21:09:04 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Mumble
[2012.03.05 22:57:23 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Need for Speed World
[2012.04.17 17:02:25 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\OpenOffice.org
[2012.04.07 19:50:05 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Origin
[2012.02.24 14:01:19 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\PhotoFiltre
[2012.02.05 14:01:50 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\POINTERGHOSTV1
[2012.04.04 12:24:13 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\PunkBuster
[2012.03.02 10:26:33 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Rift
[2012.03.24 09:42:50 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Scoregasm
[2012.07.05 12:32:06 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Skype
[2012.02.01 19:24:36 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Splashtop
[2012.02.02 21:04:53 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Sports Interactive
[2012.07.04 08:27:42 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\SUPERAntiSpyware.com
[2012.07.04 08:46:44 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\TS3Client
[2012.07.04 18:00:17 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\Ubisoft
[2012.02.08 12:29:12 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\VitySoft
[2012.06.23 21:48:26 | 000,000,000 | ---D | M] -- C:\Users\Rhonwyn\AppData\Roaming\vlc

< %APPDATA%\*.exe /s >
[2012.04.30 15:05:17 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Rhonwyn\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2012.06.22 21:59:07 | 000,010,134 | R--- | M] () -- C:\Users\Rhonwyn\AppData\Roaming\Microsoft\Installer\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}\ARPPRODUCTICON.exe
[2011.10.18 20:47:26 | 003,123,272 | ---- | M] () -- C:\Users\Rhonwyn\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.07.02 20:39:32 | 001,602,266 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >
[2007.11.07 09:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< >

< *crack* /s >
[2012.03.02 21:29:47 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack3x2_1
[2012.03.02 21:38:24 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack3x2_2
[2012.03.02 21:33:25 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack3x2_3
[2012.03.02 21:33:21 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack3x2_4
[2012.03.02 21:31:53 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack5x3_1
[2012.03.02 21:38:04 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack5x3_2
[2012.03.02 21:33:21 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack5x3_3
[2012.03.02 21:29:47 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack5x3_4
[2012.03.02 21:31:45 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack7x2_1
[2012.03.02 21:33:25 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack7x4_1
[2012.03.02 21:31:53 | 000,017,493 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapObjectLink\MapObjects\_(AdvMapObjectLink)\Objects-Lava\Lavacracks\Lavacrack7x5_1
[2012.03.02 21:32:45 | 000,017,491 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\Heroes of Might and Magic 5\Editor\IconCache\AdvMapTile\MapObjects\_(AdvMapTile)\Sand\Sand_Cracked
[2012.02.19 14:30:44 | 000,076,652 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Nature\Ground\dirt01_cracked_0.xnb
[2012.02.19 14:40:46 | 000,034,846 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Nature\Ground\dirt01_cracked_NRM_0.xnb
[2012.02.19 14:15:47 | 000,004,354 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\pillar_cracked00_0.xnb
[2012.02.19 14:53:28 | 000,004,058 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\pillar_cracked00_NRM02_0.xnb
[2012.02.19 14:51:41 | 000,008,140 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\wall_cracked00_0.xnb
[2012.02.19 14:36:36 | 000,018,032 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\wall_cracked01_0.xnb
[2012.02.19 14:36:18 | 000,008,364 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\wall_cracked_NRM_0.xnb
[2012.04.21 09:33:23 | 000,083,645 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\mountblade warband\Sounds\Fire_Small_Crackle_Slick_op.ogg
[2012.02.26 01:23:19 | 002,650,096 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\nuclear dawn\nucleardawn\sound\soundscapes\debris\crackling_embers_loop.wav
[2012.02.26 01:24:26 | 000,112,384 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\nuclear dawn\nucleardawn\sound\structures\rts_resource\rts_resource_primary\tokyo_prp_doors_crack.wav
[2012.04.15 18:23:45 | 000,051,904 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\EggCrack1.gif
[2012.04.15 18:23:45 | 000,045,824 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\EggCrack2.gif
[2012.04.15 18:23:48 | 000,006,573 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\_EggCrack1.gif
[2012.04.15 18:23:48 | 000,005,387 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\_EggCrack2.gif

< *keygen* /s >

< *loader* /s >
[2011.10.27 11:25:20 | 000,225,584 | ---- | M] () -- \Program Files (x86)\BrowserCompanion\jsloader.dll
[2012.05.14 20:13:27 | 000,000,195 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2011.03.31 02:29:12 | 000,058,880 | ---- | M] () -- \Program Files (x86)\EA Games\Alice Madness Returns\Game\Alice2\Binaries\Win32\PhysXLocal\PhysXLoader.dll
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\facebook\7.1.362\js\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\facebooklike\7.1.362\js\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\fbsharedservices\7.1.362\js\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\featured\7.1.362\js\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\games\7.1.362\js\shared\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\apps\chat\7.1.362\js\downloader.js
[2012.01.31 17:16:24 | 000,006,643 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\7.1.362.0\scripts\io\downloader.js
[2009.11.12 14:50:16 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.11.12 15:10:52 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2011.01.17 16:21:04 | 000,006,263 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012.04.17 17:02:06 | 000,021,504 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2011.01.17 17:00:08 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012.04.17 17:02:07 | 000,029,184 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2010.11.19 12:24:20 | 000,003,689 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2011.10.31 15:57:08 | 000,000,483 | ---- | M] () -- \Program Files (x86)\SEGA\Football Manager 2012\Editor\Editor.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[2011.10.31 15:57:08 | 000,000,483 | ---- | M] () -- \Program Files (x86)\SEGA\Football Manager 2012\Resource Archiver\Resource Archiver.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[2010.12.20 18:19:40 | 000,000,723 | ---- | M] () -- \Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}\chrome\content\js\sidebar\images\ajax-loader.gif
[2010.12.20 18:18:52 | 000,001,409 | ---- | M] () -- \Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66}\components\library-loader.js
[2012.06.22 10:06:50 | 000,058,880 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\batman2\Binaries\Win32\PhysXLoader.dll
[2012.05.12 12:24:03 | 001,921,024 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\company of heroes\RelicDownloader\RelicDownloader.exe
[2012.05.12 12:17:49 | 000,007,244 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\company of heroes\RelicDownloader\Locale\English\RelicDownloader.English.ucs
[2012.03.29 13:58:11 | 000,049,152 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\gothic 3\PhysXLoader.dll
[2012.03.24 09:53:25 | 000,233,792 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\might and magic heroes vi demo\ubiorbitapi_r2_loader.dll
[2012.03.24 09:50:37 | 000,002,134 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\might and magic heroes vi demo\Data\html\dynapi\examples\dynapi.functions.imageloader.html
[2012.03.24 09:50:01 | 000,002,713 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\might and magic heroes vi demo\Redist\xulrunner\components\uriloader.xpt
[2012.04.20 09:27:16 | 000,022,574 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\the witcher 2\CookedPC\globals\gui\loadingscreens\loader.swf
[2012.05.18 08:17:58 | 005,297,152 | ---- | M] () -- \Program Files (x86)\Teco\Mosaic\Utils\TecoUtils\ProjectLoader\ProjectLoader.exe
[2011.10.30 07:10:18 | 000,234,616 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed Revelations\ubiorbitapi_r2_loader.dll
[2011.10.30 07:10:24 | 000,169,080 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed Revelations\uplay_r1_loader.dll
[2012.07.04 18:11:55 | 000,329,056 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2012.03.02 00:54:35 | 000,004,068 | ---- | M] () -- \ProgramData\Electronic Arts\Need For Speed World\Data\GFX\_RadialFlareLoader_Double.gfx
[2012.06.13 18:07:17 | 000,001,467 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Mosaic\Project Loader.lnk
[2012.06.13 18:07:17 | 000,001,543 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Mosaic\Documentation\Project Loader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.03.02 00:54:35 | 000,004,068 | ---- | M] () -- \Users\All Users\Electronic Arts\Need For Speed World\Data\GFX\_RadialFlareLoader_Double.gfx
[2012.06.13 18:07:17 | 000,001,467 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Mosaic\Project Loader.lnk
[2012.06.13 18:07:17 | 000,001,543 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Mosaic\Documentation\Project Loader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.04.06 13:24:50 | 000,057,728 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2012.04.06 13:24:42 | 000,057,728 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2012.04.06 13:24:44 | 000,057,728 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012.04.06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin3\dt_dadget_loader.png
[2012.04.06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin4\dt_dadget_loader.png
[2012.04.06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin5\dt_dadget_loader.png
[2012.04.06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin6\dt_dadget_loader.png
[2012.04.26 16:00:02 | 000,009,051 | ---- | M] () -- \Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.04.26 16:00:02 | 000,016,119 | ---- | M] () -- \Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.04.26 16:00:02 | 000,018,434 | ---- | M] () -- \Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.04.26 16:00:02 | 000,009,283 | ---- | M] () -- \Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.04.26 16:00:02 | 000,001,699 | ---- | M] () -- \Users\Rhonwyn\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.05.14 20:13:20 | 007,336,664 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Diablo-III-8370-enGB-Installer-downloader (1).exe
[2012.04.18 19:30:48 | 007,336,664 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Diablo-III-8370-enGB-Installer-downloader.exe
[2012.04.15 18:23:46 | 000,002,043 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbar.jpg
[2012.04.15 18:23:46 | 000,001,261 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbarloading.gif
[2012.04.15 18:23:46 | 000,001,302 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbarloading_.gif
[2012.04.15 18:23:46 | 000,002,270 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbarover.jpg
[2012.04.15 18:23:46 | 000,000,371 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbarover_.gif
[2012.04.15 18:23:46 | 000,000,307 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderbar_.gif
[2012.04.15 18:23:46 | 000,001,581 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderplay.gif
[2012.04.15 18:23:46 | 000,001,656 | ---- | M] () -- \Users\Rhonwyn\Downloads\asdfsfgsfg\Insaniquarium-Deluxe\images\loaderplay_.gif
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.04.12 10:34:35 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2011.04.12 10:34:35 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2011.04.12 10:34:35 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2011.04.12 10:34:35 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2011.04.12 10:34:35 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2012.02.03 00:52:15 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2012.02.03 00:52:15 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2012.02.03 00:52:15 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2012.02.03 00:52:15 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2012.02.03 00:52:15 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2011.04.12 10:33:23 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.04.15 20:13:25 | 006,396,128 | ---- | M] () -- \World of Warcraft\BackgroundDownloader.exe
[2011.12.24 22:57:06 | 005,127,648 | ---- | M] () -- \World of Warcraft\wow-4.2.1.2617-enUS-tools-downloader.exe
[2011.12.24 23:41:45 | 000,058,864 | ---- | M] () -- \World of Warcraft\Logs\Downloader.log

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2011.12.10 20:40:44 | 000,732,160 | ---- | M] () -- \Program Files (x86)\EVEMon\EVEMon.Common.XmlSerializers.dll
[2011.11.17 00:06:50 | 000,060,928 | ---- | M] () -- \Program Files (x86)\LG Electronics\LG PC Suite IV\libSerialPort.dll
[2012.02.28 12:37:30 | 052,512,219 | ---- | M] () -- \Program Files (x86)\Origin Games\FIFA 12\Game\data\fifarna\debug\rnaSerial1.bin
[2012.02.28 12:37:30 | 015,901,225 | ---- | M] () -- \Program Files (x86)\Origin Games\FIFA 12\Game\data\fifarna\debug\rnaSerial1_gpucrash.bin
[2012.02.28 12:37:32 | 008,388,608 | ---- | M] () -- \Program Files (x86)\Origin Games\FIFA 12\Game\data\fifarna\debug\rnaSerial2.bin
[2010.11.21 05:25:11 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2012.02.19 14:09:22 | 000,000,029 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\a game of thrones\serial.txt
[2012.02.26 00:58:32 | 000,712,704 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\nuclear dawn\bin\dmserializers.dll
[2012.04.20 12:52:12 | 000,015,028 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher\Neutral\serial_window.png
[2012.06.30 19:00:02 | 000,723,648 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\dajakon\team fortress 2\bin\dmserializers.dll
[2012.07.03 19:36:57 | 000,723,648 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\rhonwyn\team fortress 2\bin\dmserializers.dll
[2012.06.01 15:22:18 | 000,689,152 | ---- | M] () -- \Program Files (x86)\Teco\Mosaic\Help\CSY_SERIAL_16.chm
[2012.06.01 15:13:12 | 002,967,658 | ---- | M] () -- \Program Files (x86)\Teco\Mosaic\Help\CSY_SERIAL_32.chm
[2012.06.01 15:41:50 | 002,651,041 | ---- | M] () -- \Program Files (x86)\Teco\Mosaic\Help\ENU_SERIAL_32.chm
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2012.04.24 23:00:49 | 000,000,024 | ---- | M] () -- \ProgramData\Solidshield\0CB82F90358B34CC5D36466A1D5D5714\serial.txt
[2012.04.24 23:00:49 | 000,000,024 | ---- | M] () -- \Users\All Users\Solidshield\0CB82F90358B34CC5D36466A1D5D5714\serial.txt
[2012.04.26 17:24:31 | 000,003,120 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Apps\2.0\CYDMYHL9.1VT\7Q4VDTDD.N1X\curs..tion_eee711038731a406_0004.0000_2bd39706d04e72c8\Curse.CurseClient.Common.XmlSerializers.cdf-ms
[2012.04.26 17:24:20 | 000,013,312 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Apps\2.0\CYDMYHL9.1VT\7Q4VDTDD.N1X\curs..tion_eee711038731a406_0004.0000_2bd39706d04e72c8\Curse.CurseClient.Common.XmlSerializers.dll
[2012.04.26 17:24:31 | 000,001,079 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Apps\2.0\CYDMYHL9.1VT\7Q4VDTDD.N1X\curs..tion_eee711038731a406_0004.0000_2bd39706d04e72c8\Curse.CurseClient.Common.XmlSerializers.manifest
[2012.04.26 17:24:20 | 000,013,312 | ---- | M] () -- \Users\Rhonwyn\AppData\Local\Apps\2.0\CYDMYHL9.1VT\7Q4VDTDD.N1X\curs..zers_c85bb4cad3a5dfb5_0001.0000_none_311750f664a5eb21\Curse.CurseClient.Common.XmlSerializers.dll
[2011.04.12 10:34:11 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.05.10 09:07:44 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\2ff4e90c5842525f7a7456639de090d8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 09:54:09 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\72a24b45e11d64eb2bc840aae9419ba5\System.Runtime.Serialization.ni.dll
[2012.05.10 09:57:47 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\265531568722647aab229a2cec195b3d\System.Runtime.Serialization.ni.dll
[2012.05.10 09:09:31 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\807759890a40e4047c35a24e64dc76d5\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 09:55:29 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\5a4d233916a69d48fa12a9f7f103d893\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 09:55:39 | 002,647,040 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\8a9fac9cb825b5d2db0bdb867fff940e\System.Runtime.Serialization.ni.dll
[2012.05.10 09:57:14 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\4b540b784465ca3f0742990e5af444e3\System.Xml.Serialization.ni.dll
[2012.05.10 10:24:42 | 000,376,832 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\7590828d50338d512b11a4d3f87d69a2\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 10:23:56 | 003,412,992 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\affb28e2d9cc3c19de0758e7e8c68e8f\System.Runtime.Serialization.ni.dll
[2012.05.10 10:26:43 | 000,010,240 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Serializ#\7fa267d10b2df6dbd00d00d130715f0a\System.Xml.Serialization.ni.dll
[2012.02.04 04:07:22 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.06.14 03:12:35 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.02.04 04:07:22 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.06.14 03:12:32 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.06.14 03:12:42 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 10:34:11 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 03:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 03:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 10:34:10 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 03:48:20 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 03:48:20 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2011.04.12 10:34:07 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2011.04.12 10:34:07 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2011.04.12 10:34:10 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2011.04.12 10:34:12 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2011.04.12 10:34:13 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.02.03 00:52:16 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2012.02.03 00:52:16 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2011.04.12 10:34:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2011.04.12 10:34:35 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2010.11.21 05:17:50 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2010.11.21 05:17:50 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2010.11.21 05:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2011.04.12 10:33:41 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2010.11.21 05:17:50 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2010.11.21 05:18:20 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 10:34:11 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2011.04.12 10:34:11 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2011.04.12 10:34:07 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2011.04.12 10:34:17 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:25:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.04.26 17:26:46 | 000,009,157 | ---- | M] () -- \World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2012.04.26 17:26:46 | 000,000,219 | ---- | M] () -- \World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.xml

< *w7lxe* /s >

< End of report >

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:24
od Márty84
Spustte v nouzovem rezimu OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:otl
CHR - default_search_provider: Search the web (Babylon) (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&affID=112060&tt=280612_5_&babsrc=SP_ss&mntrId=ecc6f0cb0000000000001c6f65d964fc
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:31
od Rhonwyn
All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Rhonwyn
->Temp folder emptied: 191417 bytes
->Temporary Internet Files folder emptied: 303039 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 13539275 bytes
->Flash cache emptied: 492 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4598 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 13,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: Rhonwyn
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== OTL ==========
Unable to fix default_search_provider items.
Unable to fix default_search_provider items.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP708D.tmp\System.ServiceModel.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP708D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP117D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP5570.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA785.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.

OTL by OldTimer - Version 3.2.53.1 log created on 07052012_132715

Files\Folders moved on Reboot...
C:\Users\Rhonwyn\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...
File C:\Users\Rhonwyn\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!

Registry entries deleted on Reboot...

Takze Doktore bude zit? :)

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:35
od Márty84
Zit asi bude :D Vyskakuji jeste nejaka okna?

:arrow: Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte a spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:38
od Rhonwyn
----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2012/07/05 13:37:43

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- SAMSUNG HD103SJ ATA Device
- TSSTcorp CDDVDW SH-222AB ATA Device
- ATA Channel 1 (1) [ATA]
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Intel(R) 6 Series/C200 Series Chipset Family 4 port Serial ATA Storage Controller - 1C00 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) 6 Series/C200 Series Chipset Family 2 port Serial ATA Storage Controller - 1C08 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD103SJ : 1000.2 GB [0-2-0, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD103SJ
----------------------------------------------------------------------------
Model : SAMSUNG HD103SJ
Firmware : 1AJ10001
Serial Number : S246J9EBA01835
Disk Size : 1000.2 GB (8.4/137.4/1000.2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 2244 hod.
Power On Count : 539 krát
Temparature : 38 C (100 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 00000000084A Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _71 _70 _25 000000002255 Čas na roztočení ploten
04 100 100 __0 000000000245 Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 0000000008C4 Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 252 252 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 00000000021B Počet cyklů zapnutí zařízení
BF 252 252 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _62 _58 __0 002B00130026 Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000001 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 00000000000B Počet chyb při zápisu sektorů
DF 252 252 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 000000000247 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 40 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 53 32 34 36 4A 39 45 42 41 30 31 38
020: 33 35 20 20 20 20 20 20 00 00 FF FF 00 04 31 41
030: 4A 31 30 30 30 31 53 41 4D 53 55 4E 47 20 48 44
040: 31 30 33 53 4A 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 40 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 4C 00 40
0A0: 01 FF 00 28 74 6B 7F 69 41 23 74 69 BC 41 41 23
0B0: 20 7F 00 4D 00 4D 00 00 FF FE 00 00 FE 00 00 00
0C0: 00 00 00 00 00 00 00 00 6D B0 74 70 00 00 00 00
0D0: 00 00 00 00 40 00 00 00 50 02 4E 92 06 38 66 FD
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 1C 20 00 00 00 00 00 00 00 00 10 1F 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 04 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B1 A5

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:42
od Márty84
Márty84 píše:Vyskakuji jeste nejaka okna?
Disk ukazuje nejake chyby
:arrow: Udelejte jeste kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako sprce.
V tom okne kliknete na posledni zalozku - Error Scan a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Benchmark a Health a opiste mi, co se tam pise
Časť Health - status by mal byť OK
Časť Error scan - mal by prebehnúť bez problémov, žiadne červené polia alebo chyby počas čítania disku
Časť Benchmark - uvedených 6 čísel vložte do vlákna, v ktorom riešite problém s naším radcom

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:43
od Rhonwyn
Zatim zadny okno nevyskocilo.

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 12:45
od Márty84
Fajn :)

Tak hura na HDTune

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 16:04
od Rhonwyn
Naslo to 1 cerveny ctverecek.
Health status : OK

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 16:31
od Márty84
:!: Vsechny tyto programy - vcetne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)
:arrow: Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

:arrow: Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

:arrow: Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete :)
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

:arrow: Defragmentujte disk
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci :)


:arrow: Az vse provedete, napiste, jak je na tom pc.




Ten vadny sektor disku muze zpusobovat potize, ale s tim asi moc nenadelame.

:arrow: Zkusime windowsackou opravu
Kliknete na START a pak na Spustit
V okenku co vyskoci bude radek, do ktereho napiste

Kód: Vybrat vše

cmd
Kliknete na OK
Vyskoci na vas dalsi okno. Do nej napiste

Kód: Vybrat vše

chkdsk c: /f /r
:!: ty mezery tam jsou schvalne, taky je tam udelejte
Az to napisete, zmacknete Enter a po restartu by to melo zacit skenovat


:arrow: Az nekdy budete preinstalovavat system, udelejte kompletni format disku.


:!: A hlavne zalohujte data, kdyby nahodou disk selhal.

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 16:38
od Rhonwyn
Ok dekuji za pomoc.
Pokud je ten harddisk nejaky vadny, tak by se dal reklamovat ne? kupovala jsem pocitac nedavno.

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 16:50
od Márty84
Reklamovat by se urcite dal, ale ja z tech logu bohuzel nepoznam, jak vazna je ta chyba, nebo jestli nebude stacit jen ta windowsacka oprava, pripadne format. Takze netusim, jestli to uznaji jako opravnenou reklamaci.
Navic zatim to zadne potize nezpusobuje, nebo ano? To co vyskakovalo s tim nema nic spolecneho.

A samozrejme nemate zac :)

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 17:04
od Rhonwyn
jojo ty okna uz neskacou:)
ale taky jsem psala, ze pri startu pocitace mi to rekne ze byl system obnoven po chybe i kdyz ho vypinam pres start, a pak chce delat opravu a obnovu, trva to vzdycky tak 15 minut a nikdy to nic neopravi ani neobnovi, a predtim to neukazovalo, zacalo to asi pred tydnem nebo dvema. Takze to bude mozna tim HDD. no udelam jeste ty veci co jste mi napsal, a snad uz to bude ok, to kvuli cemu jsem psala se vyresilo, takze dekuji. :)

Re: Prosim o pomoc s virem

Napsal: 05 črc 2012 17:56
od Márty84
Ano, to byl prave ten duvod, proc jsem chtel ten disk zkontrolovat. Ale problem je v tom, ze to muze byt tim, ale taky nemusi. Treba by stacila obnova systemu k datu, kdy to jeste nedelalo, pripadne opravna instalace systemu (bez formatu a ztraty dat). Tezko takhle hadat :)

Az udelate ty kroky, zkuste udelat novy test s Crystal Disk Info. Jestli to tam porad bude a porad to bude psat to obnoveni po chybe, asi stejne nezbyde nic jineho, nez zazalohovat data a zkusit ten format a pak pripadnou reklamaci. Format vas aspon nebude stat zadne penize, kdezto reklamace, pokud by ji neuznali jako opravnenou, asi ano. :?: Proto by bylo dobre se ji pokud mozno vyhnout :wink:

Ale to hlavne zalezi na vas, jestli mate nervy si s tim hrat, nebo je pro vas vyhodnejsi rovnou reklamovat a pripadne neco zaplatit :)
Všechny časy jsou v UTC+01:00
Stránka 2 z 6

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz