Nešel správce úloh
Napsal: 28 zář 2010 18:28
Prosím o odpověď na fandajinoch@seznam.cz
ComboFix 10-09-27.05 - Fanda 28.09.2010 18:55:54.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3008.2097 [GMT 2:00]
Spuštěný z: c:\users\Fanda\Stažené soubory\ComboFix.exe
SP: Spyware Terminator *disabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\Fanda\AppData\Roaming\logs.dat
c:\users\Fanda\b.o.b. - airplanes (ft. hayley williams) .mp3
c:\windows\Install
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\FiSH.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\gimp.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\hide.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\install.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\lag.hsh
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\microsoft.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\process.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\radmin.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\random.ECL
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\remote.ini
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\restart.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\service32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\services.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\stuffmp3.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\telnet.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\404.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\index.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\vnc_bypauth.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\windows1337.dll
c:\windows\system32\Winbooterr
D:\explorer.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-28 do 2010-09-28 )))))))))))))))))))))))))))))))
.
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\users\Fanda\AppData\Local\TaskManager
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\program files\Free Extended Task Manager
2010-09-28 16:30 . 2010-09-28 16:30 -------- d-----w- c:\programdata\TaskManager
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\msgrd.exe
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\system32\mslsgw.exe
2010-09-27 17:52 . 2008-07-10 09:00 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2010-09-27 16:18 . 2010-09-27 16:18 -------- d-----w- c:\users\Fanda\AppData\Roaming\Promixis
2010-09-27 16:17 . 2010-09-27 16:17 -------- d-----w- c:\program files\OpenMceIrService
2010-09-27 16:15 . 2010-09-27 16:17 -------- d-----w- c:\program files\Girder5
2010-09-27 13:35 . 2010-09-27 13:38 -------- d-----w- c:\program files\Pro Evolution Soccer 2011 DEMO
2010-09-27 08:21 . 2010-09-27 08:38 -------- d-----w- c:\users\Fanda\[PC Game-Multi5]Mafia 2-CLONEDVD-PC-ELiTE-Crackfix.PROPER-MEiGUO+Trad.Ita
2010-09-26 16:32 . 2006-06-19 13:53 1152 ---ha-w- C:\unroot.bat
2010-09-26 12:26 . 2010-09-26 12:27 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-09-26 08:04 . 2010-09-26 08:04 -------- d--h--r- c:\users\Public\Libraries
2010-09-25 09:12 . 2009-07-14 16:23 343 ----a-w- c:\windows\FIN2.cmd
2010-09-25 09:07 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-25 09:07 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-25 09:01 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-25 09:01 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-25 09:01 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-25 09:01 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-25 09:01 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-25 08:58 . 2010-09-26 12:20 -------- d-----w- c:\windows\system32\wbem\Performance
2010-09-25 08:55 . 2010-09-25 08:55 109240 ----a-w- c:\users\Fanda\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-25 08:50 . 2010-09-25 08:41 -------- d-----w- c:\windows\Panther
2010-09-25 08:24 . 2010-09-25 08:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-09-25 08:03 . 2010-09-28 16:49 -------- d-----r- c:\users\Fanda\Stažené soubory
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\windows\system32\RTCOM
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\program files\Realtek
2010-09-24 09:23 . 2010-09-06 12:20 11776 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
2010-09-23 10:11 . 2010-09-25 08:10 -------- d-----w- c:\programdata\Nokia
2010-09-23 10:05 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\NokiaAccount
2010-09-23 09:12 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-09-23 09:12 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Connectivity Solution
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx86.exe
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx64.exe
2010-09-23 09:09 . 2010-09-23 09:09 77824 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2010-09-23 09:09 . 2010-09-23 09:09 50000 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\pcswpc.exe
2010-09-23 09:09 . 2010-09-23 09:06 102913480 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
2010-09-23 09:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\NokiaInstallerCache
2010-09-21 07:42 . 2010-09-25 08:11 -------- d-----w- c:\windows\RegistryBooster 2
2010-09-21 07:42 . 2010-09-25 08:08 -------- d-----w- c:\program files\RegistryBooster 2
2010-09-21 07:32 . 2010-09-25 08:09 -------- d-----w- c:\program files\Uniblue
2010-09-20 16:41 . 2010-09-25 08:06 -------- d-----w- c:\program files\GRID
2010-09-20 07:35 . 2010-09-26 10:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-20 05:50 . 2010-09-20 05:50 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-09-20 05:30 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-09-20 05:30 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-09-20 05:30 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-09-20 05:30 . 2010-09-14 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-09-18 17:55 . 2010-09-18 17:55 -------- d-----w- c:\users\Fanda\AppData\Roaming\DAEMON Tools Pro
2010-09-16 02:03 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Works
2010-09-16 01:55 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-09-15 08:03 . 2010-09-25 08:09 -------- d-----w- c:\programdata\Codemasters
2010-09-15 06:30 . 2010-09-25 08:08 -------- d-----w- c:\program files\OpenAL
2010-09-15 06:30 . 2010-09-15 06:30 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-09-15 06:30 . 2010-09-15 06:30 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-09-15 03:26 . 2010-09-15 03:26 -------- d-sh--w- c:\windows\ftpcache
2010-09-14 03:22 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Drivers HeadQuarters
2010-09-14 03:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\UAB
2010-09-14 03:06 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\PC_Drivers_Headquarters
2010-09-14 03:05 . 2010-09-25 08:10 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2010-09-14 03:04 . 2010-09-25 08:04 -------- d-----w- c:\program files\Driver Detective
2010-09-13 10:44 . 2010-09-25 08:05 -------- d-----w- c:\program files\EVEREST Ultimate Edition
2010-09-13 10:28 . 2010-01-05 10:03 688640 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
2010-09-13 10:28 . 2009-12-17 09:35 23456 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent32.sys
2010-09-13 10:28 . 2009-12-17 06:59 21712 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent64.sys
2010-09-13 07:13 . 2010-09-13 07:13 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-09-13 07:13 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\eSupport.com
2010-09-12 00:51 . 2010-06-08 09:33 52224 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\FFExternalAlert.dll
2010-09-12 00:51 . 2010-06-08 09:33 101376 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\RadioWMPCore.dll
2010-09-11 07:46 . 2010-09-25 08:09 -------- d-----w- c:\program files\Yahoo!
2010-09-11 07:46 . 2010-09-25 08:04 -------- d-----w- c:\program files\CCleaner
2010-09-09 08:56 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Uniblue
2010-09-09 08:55 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\TeroSoft_PC_Booster_Pack_v1_0
2010-09-09 07:47 . 2010-09-09 07:47 -------- d-----r- C:\MSOCache
2010-09-09 07:02 . 2010-09-25 08:09 -------- d-----w- c:\program files\WinClamAVShield
2010-09-09 06:58 . 2010-09-25 08:04 -------- d-----w- c:\program files\Crawler
2010-09-09 06:56 . 2010-09-09 06:56 6144 ----a-w- c:\programdata\Spyware Terminator\sp_rsdel.exe
2010-09-09 06:56 . 2010-09-09 06:56 5632 ----a-w- c:\programdata\Spyware Terminator\fileobjinfo.sys
2010-09-09 06:56 . 2010-09-09 06:56 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\users\Fanda\AppData\Roaming\Spyware Terminator
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\programdata\Spyware Terminator
2010-09-09 06:55 . 2010-09-28 16:13 -------- d-----w- c:\program files\Spyware Terminator
2010-09-08 14:46 . 2010-08-18 14:18 1448448 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash\components\IBitCometExtension.dll
2010-09-08 10:38 . 2010-09-25 08:09 -------- d-----w- c:\programdata\boost_interprocess
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\TigerPlayer
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\CometPlayer
2010-09-08 10:37 . 2010-09-09 06:53 -------- d-----w- c:\program files\MpcStar
2010-09-08 10:35 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\BitComet
2010-09-08 09:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Audacity
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Thunderbird
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\Thunderbird
2010-09-08 07:28 . 2010-09-25 08:04 -------- d-----w- c:\program files\Audacity 1.3 Beta (Unicode)
2010-09-08 07:26 . 2010-09-25 08:05 -------- d-----w- c:\program files\FreeApps
2010-09-08 07:25 . 2010-09-25 08:09 -------- d-----w- c:\programdata\FreeApp
2010-09-07 10:25 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\DisplayTune
2010-09-07 10:24 . 2004-11-22 10:07 2304 ----a-w- c:\windows\system32\Machnm32.sys
2010-09-07 10:22 . 2006-11-16 15:20 15920 ----a-w- c:\windows\system32\drivers\PdiPorts.sys
2010-09-07 10:20 . 2010-09-07 10:20 -------- d-----w- C:\Swsetup
2010-09-05 06:57 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido No Angel
2010-09-05 06:52 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Live for rent
2010-09-05 06:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Hunter
2010-09-01 14:43 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\2K Games
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-28 16:27 . 2010-09-28 16:26 -------- d-----w- c:\programdata\SecTaskMan
2010-09-28 16:11 . 2010-05-26 23:54 -------- d-----w- c:\users\Fanda\AppData\Roaming\uTorrent
2010-09-28 15:03 . 2010-06-02 12:48 -------- d-----w- c:\users\Fanda\AppData\Roaming\ICQ
2010-09-28 14:14 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-27 17:25 . 2010-05-28 07:51 -------- d-----w- c:\program files\EA Sports
2010-09-26 12:20 . 2009-07-14 08:44 677286 ----a-w- c:\windows\system32\perfh005.dat
2010-09-26 12:20 . 2009-07-14 08:44 143982 ----a-w- c:\windows\system32\perfc005.dat
2010-09-26 09:12 . 2006-03-13 12:24 -------- d-sh--r- c:\users\Fanda\AppData\Roaming\winbooterr
2010-09-25 09:57 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-09-25 09:57 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-09-25 09:57 . 2009-07-13 23:24 811520 ----a-w- c:\windows\system32\user32.dll
2010-09-25 09:40 . 2010-05-26 23:37 -------- d-----w- c:\programdata\NVIDIA
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Plocha
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Oblíbené položky
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Šablony
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Nabídka Start
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Dokumenty
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Data aplikací
2010-09-25 08:30 . 2010-08-28 06:44 21592 ----a-w- c:\windows\system32\emptyregdb.dat
2010-09-25 08:10 . 2010-08-17 06:58 -------- d-----w- c:\programdata\TuneUp Software
2010-09-25 08:10 . 2010-07-16 10:01 -------- d-----w- c:\programdata\TrackMania
2010-09-25 08:10 . 2010-07-29 13:50 -------- d-----w- c:\programdata\Soluto
2010-09-25 08:10 . 2010-07-03 07:28 -------- d-----w- c:\programdata\Synetic
2010-09-25 08:10 . 2010-05-29 08:13 -------- d-----w- c:\programdata\Tencent
2010-09-25 08:10 . 2010-06-28 18:48 -------- d-----w- c:\programdata\Skype
2010-09-25 08:10 . 2010-06-21 19:23 -------- d-----w- c:\programdata\NokiaMusic
2010-09-25 08:10 . 2010-05-30 12:25 -------- d-----w- c:\programdata\PC Suite
2010-09-25 08:10 . 2010-08-25 11:52 -------- d-----w- c:\programdata\Nitro PDF
2010-09-25 08:10 . 2010-08-28 08:49 -------- d-----w- c:\programdata\MicroWorld
2010-09-25 08:10 . 2010-05-27 13:09 -------- d-----w- c:\programdata\Microsoft Help
2010-09-25 08:10 . 2010-05-27 00:47 -------- d-----w- c:\programdata\Nero
2010-09-25 08:08 . 2010-06-04 06:01 -------- d-----w- c:\program files\Real
2010-09-25 08:08 . 2010-07-28 08:47 -------- d-----w- c:\program files\Pro Evolution Soccer 2010
2010-09-25 08:08 . 2010-07-27 15:59 -------- d-----w- c:\program files\PowerISO
2010-09-25 08:08 . 2010-09-07 10:21 -------- d-----w- c:\program files\Portrait Displays
2010-09-25 08:08 . 2010-08-04 07:44 -------- d-----w- c:\program files\PlayReady
2010-09-25 08:08 . 2010-05-30 12:24 -------- d-----w- c:\program files\Nokia
2010-09-25 08:08 . 2010-08-25 11:52 -------- d-----w- c:\program files\Nitro PDF
2010-09-25 08:07 . 2010-07-29 14:09 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 2
2010-09-25 08:07 . 2010-05-27 00:47 -------- d-----w- c:\program files\Nero
2010-09-25 08:07 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-09-25 08:07 . 2010-08-21 12:03 -------- d-----w- c:\program files\MotoGP2
2010-09-25 08:07 . 2010-05-27 13:16 -------- d-----w- c:\program files\Microsoft.NET
2010-09-25 08:07 . 2010-08-08 10:48 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-09-25 08:07 . 2010-06-19 19:55 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-25 08:07 . 2010-05-26 23:47 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-09-25 08:07 . 2010-08-08 11:24 -------- d-----w- c:\program files\Microsoft
2010-09-25 08:07 . 2010-08-04 12:51 -------- d-----w- c:\program files\MediaCoder
2010-09-25 08:07 . 2010-07-01 09:57 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2010-09-25 08:06 . 2010-08-28 18:24 -------- d-----w- c:\program files\Loco Mania
2010-09-25 08:06 . 2010-07-25 11:41 -------- d-----w- c:\program files\linguatec
2010-09-25 08:06 . 2010-06-28 18:57 -------- d-----w- c:\program files\Labtec
2010-09-25 08:06 . 2010-05-29 07:12 -------- d-----w- c:\program files\KWorld Multimedia
2010-09-25 08:06 . 2010-08-05 15:53 -------- d-----w- c:\program files\jv16 PowerTools 2010
2010-09-25 08:06 . 2010-05-30 07:10 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-09-25 08:06 . 2010-07-06 09:51 -------- d-----w- c:\program files\Java
2010-09-25 08:06 . 2010-05-31 05:15 -------- d-----w- c:\program files\IVT Corporation
2010-09-25 08:06 . 2010-05-27 07:19 -------- d-----w- c:\program files\IObit
2010-09-25 08:06 . 2010-05-27 01:38 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-25 08:05 . 2010-07-06 08:38 -------- d-----w- c:\program files\Google
2010-09-25 08:05 . 2010-08-07 01:41 -------- d-----w- c:\program files\Flock
2010-09-25 08:05 . 2010-05-27 00:21 -------- d-----w- c:\program files\Elaborate Bytes
2010-09-25 07:59 . 2010-09-25 07:59 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-23 08:05 . 2010-09-23 08:05 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2010-09-23 08:03 . 2010-09-23 08:03 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
2010-08-28 08:49 . 2010-08-28 08:49 632064 ----a-w- c:\windows\system32\msvcr80.dll
2010-08-28 08:49 . 2010-08-28 08:49 554240 ----a-w- c:\windows\system32\msvcp80.dll
2010-08-28 08:49 . 2010-08-28 08:49 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-08-28 08:49 . 2010-08-28 08:49 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-08-20 17:37 . 2010-08-20 18:03 969504 ----a-w- c:\users\Fanda\Windows7-USB-DVD-tool.exe
2010-08-17 06:59 . 2010-08-17 06:59 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2010-08-17 06:59 . 2010-08-17 06:59 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\windows\Sys3390 SettingsCollection.bin
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-07-29 12:59 . 2010-07-29 13:50 925960 ----a-w- c:\programdata\Soluto\Installer\SolutoInstaller.exe
2010-07-27 16:45 . 2010-07-27 16:24 1392304 ----a-w- c:\windows\system32\AutoPartNt.exe
2010-07-27 16:19 . 2010-07-27 15:35 114048 ----a-w- c:\windows\system32\drivers\snapman.sys
2010-07-23 04:13 . 2010-07-23 04:13 72488 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.33.17.8\SetupAdmin.exe
2010-07-18 17:02 . 2010-07-18 17:02 479232 ---ha-w- C:\SZKGFS.dat
2010-07-17 03:00 . 2010-07-06 09:51 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-13 11:40 . 2010-07-13 11:32 528345264 ----a-w- c:\users\Fanda\trackmania_nations_forever.exe
2010-07-03 07:28 . 2010-07-03 07:28 3121624 ----a-w- c:\users\Fanda\AppData\Roaming\ProtectDisc\pe17af2e29.dll
2010-07-02 18:13 . 2010-07-02 18:13 50321 ----a-w- c:\users\Fanda\pardubice-20100701.zip
2010-07-02 07:42 . 2010-07-02 07:42 95232 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 8192 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-07-02 07:42 . 2010-07-02 07:42 61440 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 10240 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe
2010-07-02 07:41 . 2010-07-02 07:43 36684048 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze.exe
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
------- Sigcheck -------
[-] 2010-09-25 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7600.16385] . . c:\windows\System32\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-04-30 9210400]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-08-04 226816]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-07-27 180224]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872]
"VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 92704]
"CTF Loader"="c:\windows\System32\ctfmon.exe" [2009-07-14 8704]
"Security Gateway"="c:\windows\system32\mslsgw.exe" [2010-09-28 87489536]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Remote Control.lnk - c:\program files\KWorld Multimedia\TV Tuner Card Utilities\HMCP3XCtl.exe [2010-5-29 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-06-09 08:06 976832 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"Service"=c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Servicerun.exe c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Service.exe
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2010-06-30 336728]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2010-09-13 23456]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\EVEREST Ultimate Edition\kerneld.wnt [2010-03-30 27760]
R3 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 136176]
R3 IS360service;IS360service;c:\program files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-28 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-26 691696]
S0 PCGenFAM;PCGenFAM;c:\windows\system32\DRIVERS\PCGenFAM.sys [2010-06-30 179144]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-09-09 142592]
S2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [2008-08-01 143467]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 OpenMceIrService;OpenMceIrService;c:\program files\OpenMceIrService\OpenMceIrServiceX86.exe [2009-10-06 191488]
S2 PdiService;Portrait Displays SDK Service;c:\program files\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2009-07-15 109168]
S2 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe [2009-07-12 21096]
S2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys [2009-07-12 25448]
S3 3xHybrid;3xHybrid service;c:\windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
.
Obsah adresáře 'Naplánované úlohy'
2010-09-18 c:\windows\Tasks\1-Click Maintenance.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
2010-09-23 c:\windows\Tasks\AWC Update.job
- c:\program files\IObit\Advanced SystemCare 3\IObitUpdate.exe [2010-05-27 09:08]
2010-07-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\Úklid 1 kliknutím.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = <local>
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: Send by Bluetooth - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
IE: Send via &Message... - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
IE: {{B1CF6225-211E-4B4C-B466-5F224E348FF3} - c:\program files\Crawler\Weather\CWeather.exe
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xcomm.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xshared.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xsupport.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xwsg.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npBitCometAgent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npnul32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPOFF12.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppdf32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppl3260.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprpjplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\OberonGameHost@OberonGames.com\platform\WINNT_x86-msvc\plugins\npOberonGameHost.dll
---- NASTAVENÍ FIREFOXU ----
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
d:\program files\FIREFOX\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
d:\program files\FIREFOX\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
MSConfigStartUp-BCSSync - c:\program files\Microsoft Office\Office14\BCSSync.exe
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-28 19:07:38
ComboFix-quarantined-files.txt 2010-09-28 17:07
Před spuštěním: Volných bajtů: 10 411 941 888
Po spuštění: Volných bajtů: 10 020 425 728
- - End Of File - - BB3972B5236EC70E9BBE6ABB81D2ABDC
ComboFix 10-09-27.05 - Fanda 28.09.2010 18:55:54.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3008.2097 [GMT 2:00]
Spuštěný z: c:\users\Fanda\Stažené soubory\ComboFix.exe
SP: Spyware Terminator *disabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\Fanda\AppData\Roaming\logs.dat
c:\users\Fanda\b.o.b. - airplanes (ft. hayley williams) .mp3
c:\windows\Install
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\FiSH.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\gimp.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\hide.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\install.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\lag.hsh
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\microsoft.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\process.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\radmin.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\random.ECL
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\remote.ini
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\restart.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\service32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\services.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\stuffmp3.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\telnet.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\404.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\index.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\vnc_bypauth.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\windows1337.dll
c:\windows\system32\Winbooterr
D:\explorer.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-28 do 2010-09-28 )))))))))))))))))))))))))))))))
.
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\users\Fanda\AppData\Local\TaskManager
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\program files\Free Extended Task Manager
2010-09-28 16:30 . 2010-09-28 16:30 -------- d-----w- c:\programdata\TaskManager
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\msgrd.exe
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\system32\mslsgw.exe
2010-09-27 17:52 . 2008-07-10 09:00 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2010-09-27 16:18 . 2010-09-27 16:18 -------- d-----w- c:\users\Fanda\AppData\Roaming\Promixis
2010-09-27 16:17 . 2010-09-27 16:17 -------- d-----w- c:\program files\OpenMceIrService
2010-09-27 16:15 . 2010-09-27 16:17 -------- d-----w- c:\program files\Girder5
2010-09-27 13:35 . 2010-09-27 13:38 -------- d-----w- c:\program files\Pro Evolution Soccer 2011 DEMO
2010-09-27 08:21 . 2010-09-27 08:38 -------- d-----w- c:\users\Fanda\[PC Game-Multi5]Mafia 2-CLONEDVD-PC-ELiTE-Crackfix.PROPER-MEiGUO+Trad.Ita
2010-09-26 16:32 . 2006-06-19 13:53 1152 ---ha-w- C:\unroot.bat
2010-09-26 12:26 . 2010-09-26 12:27 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-09-26 08:04 . 2010-09-26 08:04 -------- d--h--r- c:\users\Public\Libraries
2010-09-25 09:12 . 2009-07-14 16:23 343 ----a-w- c:\windows\FIN2.cmd
2010-09-25 09:07 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-25 09:07 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-25 09:01 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-25 09:01 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-25 09:01 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-25 09:01 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-25 09:01 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-25 08:58 . 2010-09-26 12:20 -------- d-----w- c:\windows\system32\wbem\Performance
2010-09-25 08:55 . 2010-09-25 08:55 109240 ----a-w- c:\users\Fanda\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-25 08:50 . 2010-09-25 08:41 -------- d-----w- c:\windows\Panther
2010-09-25 08:24 . 2010-09-25 08:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-09-25 08:03 . 2010-09-28 16:49 -------- d-----r- c:\users\Fanda\Stažené soubory
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\windows\system32\RTCOM
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\program files\Realtek
2010-09-24 09:23 . 2010-09-06 12:20 11776 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
2010-09-23 10:11 . 2010-09-25 08:10 -------- d-----w- c:\programdata\Nokia
2010-09-23 10:05 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\NokiaAccount
2010-09-23 09:12 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-09-23 09:12 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Connectivity Solution
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx86.exe
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx64.exe
2010-09-23 09:09 . 2010-09-23 09:09 77824 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2010-09-23 09:09 . 2010-09-23 09:09 50000 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\pcswpc.exe
2010-09-23 09:09 . 2010-09-23 09:06 102913480 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
2010-09-23 09:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\NokiaInstallerCache
2010-09-21 07:42 . 2010-09-25 08:11 -------- d-----w- c:\windows\RegistryBooster 2
2010-09-21 07:42 . 2010-09-25 08:08 -------- d-----w- c:\program files\RegistryBooster 2
2010-09-21 07:32 . 2010-09-25 08:09 -------- d-----w- c:\program files\Uniblue
2010-09-20 16:41 . 2010-09-25 08:06 -------- d-----w- c:\program files\GRID
2010-09-20 07:35 . 2010-09-26 10:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-20 05:50 . 2010-09-20 05:50 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-09-20 05:30 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-09-20 05:30 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-09-20 05:30 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-09-20 05:30 . 2010-09-14 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-09-18 17:55 . 2010-09-18 17:55 -------- d-----w- c:\users\Fanda\AppData\Roaming\DAEMON Tools Pro
2010-09-16 02:03 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Works
2010-09-16 01:55 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-09-15 08:03 . 2010-09-25 08:09 -------- d-----w- c:\programdata\Codemasters
2010-09-15 06:30 . 2010-09-25 08:08 -------- d-----w- c:\program files\OpenAL
2010-09-15 06:30 . 2010-09-15 06:30 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-09-15 06:30 . 2010-09-15 06:30 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-09-15 03:26 . 2010-09-15 03:26 -------- d-sh--w- c:\windows\ftpcache
2010-09-14 03:22 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Drivers HeadQuarters
2010-09-14 03:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\UAB
2010-09-14 03:06 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\PC_Drivers_Headquarters
2010-09-14 03:05 . 2010-09-25 08:10 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2010-09-14 03:04 . 2010-09-25 08:04 -------- d-----w- c:\program files\Driver Detective
2010-09-13 10:44 . 2010-09-25 08:05 -------- d-----w- c:\program files\EVEREST Ultimate Edition
2010-09-13 10:28 . 2010-01-05 10:03 688640 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
2010-09-13 10:28 . 2009-12-17 09:35 23456 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent32.sys
2010-09-13 10:28 . 2009-12-17 06:59 21712 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent64.sys
2010-09-13 07:13 . 2010-09-13 07:13 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-09-13 07:13 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\eSupport.com
2010-09-12 00:51 . 2010-06-08 09:33 52224 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\FFExternalAlert.dll
2010-09-12 00:51 . 2010-06-08 09:33 101376 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\RadioWMPCore.dll
2010-09-11 07:46 . 2010-09-25 08:09 -------- d-----w- c:\program files\Yahoo!
2010-09-11 07:46 . 2010-09-25 08:04 -------- d-----w- c:\program files\CCleaner
2010-09-09 08:56 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Uniblue
2010-09-09 08:55 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\TeroSoft_PC_Booster_Pack_v1_0
2010-09-09 07:47 . 2010-09-09 07:47 -------- d-----r- C:\MSOCache
2010-09-09 07:02 . 2010-09-25 08:09 -------- d-----w- c:\program files\WinClamAVShield
2010-09-09 06:58 . 2010-09-25 08:04 -------- d-----w- c:\program files\Crawler
2010-09-09 06:56 . 2010-09-09 06:56 6144 ----a-w- c:\programdata\Spyware Terminator\sp_rsdel.exe
2010-09-09 06:56 . 2010-09-09 06:56 5632 ----a-w- c:\programdata\Spyware Terminator\fileobjinfo.sys
2010-09-09 06:56 . 2010-09-09 06:56 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\users\Fanda\AppData\Roaming\Spyware Terminator
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\programdata\Spyware Terminator
2010-09-09 06:55 . 2010-09-28 16:13 -------- d-----w- c:\program files\Spyware Terminator
2010-09-08 14:46 . 2010-08-18 14:18 1448448 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash\components\IBitCometExtension.dll
2010-09-08 10:38 . 2010-09-25 08:09 -------- d-----w- c:\programdata\boost_interprocess
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\TigerPlayer
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\CometPlayer
2010-09-08 10:37 . 2010-09-09 06:53 -------- d-----w- c:\program files\MpcStar
2010-09-08 10:35 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\BitComet
2010-09-08 09:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Audacity
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Thunderbird
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\Thunderbird
2010-09-08 07:28 . 2010-09-25 08:04 -------- d-----w- c:\program files\Audacity 1.3 Beta (Unicode)
2010-09-08 07:26 . 2010-09-25 08:05 -------- d-----w- c:\program files\FreeApps
2010-09-08 07:25 . 2010-09-25 08:09 -------- d-----w- c:\programdata\FreeApp
2010-09-07 10:25 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\DisplayTune
2010-09-07 10:24 . 2004-11-22 10:07 2304 ----a-w- c:\windows\system32\Machnm32.sys
2010-09-07 10:22 . 2006-11-16 15:20 15920 ----a-w- c:\windows\system32\drivers\PdiPorts.sys
2010-09-07 10:20 . 2010-09-07 10:20 -------- d-----w- C:\Swsetup
2010-09-05 06:57 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido No Angel
2010-09-05 06:52 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Live for rent
2010-09-05 06:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Hunter
2010-09-01 14:43 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\2K Games
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-28 16:27 . 2010-09-28 16:26 -------- d-----w- c:\programdata\SecTaskMan
2010-09-28 16:11 . 2010-05-26 23:54 -------- d-----w- c:\users\Fanda\AppData\Roaming\uTorrent
2010-09-28 15:03 . 2010-06-02 12:48 -------- d-----w- c:\users\Fanda\AppData\Roaming\ICQ
2010-09-28 14:14 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-27 17:25 . 2010-05-28 07:51 -------- d-----w- c:\program files\EA Sports
2010-09-26 12:20 . 2009-07-14 08:44 677286 ----a-w- c:\windows\system32\perfh005.dat
2010-09-26 12:20 . 2009-07-14 08:44 143982 ----a-w- c:\windows\system32\perfc005.dat
2010-09-26 09:12 . 2006-03-13 12:24 -------- d-sh--r- c:\users\Fanda\AppData\Roaming\winbooterr
2010-09-25 09:57 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-09-25 09:57 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-09-25 09:57 . 2009-07-13 23:24 811520 ----a-w- c:\windows\system32\user32.dll
2010-09-25 09:40 . 2010-05-26 23:37 -------- d-----w- c:\programdata\NVIDIA
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Plocha
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Oblíbené položky
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Šablony
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Nabídka Start
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Dokumenty
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Data aplikací
2010-09-25 08:30 . 2010-08-28 06:44 21592 ----a-w- c:\windows\system32\emptyregdb.dat
2010-09-25 08:10 . 2010-08-17 06:58 -------- d-----w- c:\programdata\TuneUp Software
2010-09-25 08:10 . 2010-07-16 10:01 -------- d-----w- c:\programdata\TrackMania
2010-09-25 08:10 . 2010-07-29 13:50 -------- d-----w- c:\programdata\Soluto
2010-09-25 08:10 . 2010-07-03 07:28 -------- d-----w- c:\programdata\Synetic
2010-09-25 08:10 . 2010-05-29 08:13 -------- d-----w- c:\programdata\Tencent
2010-09-25 08:10 . 2010-06-28 18:48 -------- d-----w- c:\programdata\Skype
2010-09-25 08:10 . 2010-06-21 19:23 -------- d-----w- c:\programdata\NokiaMusic
2010-09-25 08:10 . 2010-05-30 12:25 -------- d-----w- c:\programdata\PC Suite
2010-09-25 08:10 . 2010-08-25 11:52 -------- d-----w- c:\programdata\Nitro PDF
2010-09-25 08:10 . 2010-08-28 08:49 -------- d-----w- c:\programdata\MicroWorld
2010-09-25 08:10 . 2010-05-27 13:09 -------- d-----w- c:\programdata\Microsoft Help
2010-09-25 08:10 . 2010-05-27 00:47 -------- d-----w- c:\programdata\Nero
2010-09-25 08:08 . 2010-06-04 06:01 -------- d-----w- c:\program files\Real
2010-09-25 08:08 . 2010-07-28 08:47 -------- d-----w- c:\program files\Pro Evolution Soccer 2010
2010-09-25 08:08 . 2010-07-27 15:59 -------- d-----w- c:\program files\PowerISO
2010-09-25 08:08 . 2010-09-07 10:21 -------- d-----w- c:\program files\Portrait Displays
2010-09-25 08:08 . 2010-08-04 07:44 -------- d-----w- c:\program files\PlayReady
2010-09-25 08:08 . 2010-05-30 12:24 -------- d-----w- c:\program files\Nokia
2010-09-25 08:08 . 2010-08-25 11:52 -------- d-----w- c:\program files\Nitro PDF
2010-09-25 08:07 . 2010-07-29 14:09 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 2
2010-09-25 08:07 . 2010-05-27 00:47 -------- d-----w- c:\program files\Nero
2010-09-25 08:07 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-09-25 08:07 . 2010-08-21 12:03 -------- d-----w- c:\program files\MotoGP2
2010-09-25 08:07 . 2010-05-27 13:16 -------- d-----w- c:\program files\Microsoft.NET
2010-09-25 08:07 . 2010-08-08 10:48 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-09-25 08:07 . 2010-06-19 19:55 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-25 08:07 . 2010-05-26 23:47 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-09-25 08:07 . 2010-08-08 11:24 -------- d-----w- c:\program files\Microsoft
2010-09-25 08:07 . 2010-08-04 12:51 -------- d-----w- c:\program files\MediaCoder
2010-09-25 08:07 . 2010-07-01 09:57 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2010-09-25 08:06 . 2010-08-28 18:24 -------- d-----w- c:\program files\Loco Mania
2010-09-25 08:06 . 2010-07-25 11:41 -------- d-----w- c:\program files\linguatec
2010-09-25 08:06 . 2010-06-28 18:57 -------- d-----w- c:\program files\Labtec
2010-09-25 08:06 . 2010-05-29 07:12 -------- d-----w- c:\program files\KWorld Multimedia
2010-09-25 08:06 . 2010-08-05 15:53 -------- d-----w- c:\program files\jv16 PowerTools 2010
2010-09-25 08:06 . 2010-05-30 07:10 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-09-25 08:06 . 2010-07-06 09:51 -------- d-----w- c:\program files\Java
2010-09-25 08:06 . 2010-05-31 05:15 -------- d-----w- c:\program files\IVT Corporation
2010-09-25 08:06 . 2010-05-27 07:19 -------- d-----w- c:\program files\IObit
2010-09-25 08:06 . 2010-05-27 01:38 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-25 08:05 . 2010-07-06 08:38 -------- d-----w- c:\program files\Google
2010-09-25 08:05 . 2010-08-07 01:41 -------- d-----w- c:\program files\Flock
2010-09-25 08:05 . 2010-05-27 00:21 -------- d-----w- c:\program files\Elaborate Bytes
2010-09-25 07:59 . 2010-09-25 07:59 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-23 08:05 . 2010-09-23 08:05 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2010-09-23 08:03 . 2010-09-23 08:03 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
2010-08-28 08:49 . 2010-08-28 08:49 632064 ----a-w- c:\windows\system32\msvcr80.dll
2010-08-28 08:49 . 2010-08-28 08:49 554240 ----a-w- c:\windows\system32\msvcp80.dll
2010-08-28 08:49 . 2010-08-28 08:49 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-08-28 08:49 . 2010-08-28 08:49 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-08-20 17:37 . 2010-08-20 18:03 969504 ----a-w- c:\users\Fanda\Windows7-USB-DVD-tool.exe
2010-08-17 06:59 . 2010-08-17 06:59 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2010-08-17 06:59 . 2010-08-17 06:59 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\windows\Sys3390 SettingsCollection.bin
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-07-29 12:59 . 2010-07-29 13:50 925960 ----a-w- c:\programdata\Soluto\Installer\SolutoInstaller.exe
2010-07-27 16:45 . 2010-07-27 16:24 1392304 ----a-w- c:\windows\system32\AutoPartNt.exe
2010-07-27 16:19 . 2010-07-27 15:35 114048 ----a-w- c:\windows\system32\drivers\snapman.sys
2010-07-23 04:13 . 2010-07-23 04:13 72488 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.33.17.8\SetupAdmin.exe
2010-07-18 17:02 . 2010-07-18 17:02 479232 ---ha-w- C:\SZKGFS.dat
2010-07-17 03:00 . 2010-07-06 09:51 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-13 11:40 . 2010-07-13 11:32 528345264 ----a-w- c:\users\Fanda\trackmania_nations_forever.exe
2010-07-03 07:28 . 2010-07-03 07:28 3121624 ----a-w- c:\users\Fanda\AppData\Roaming\ProtectDisc\pe17af2e29.dll
2010-07-02 18:13 . 2010-07-02 18:13 50321 ----a-w- c:\users\Fanda\pardubice-20100701.zip
2010-07-02 07:42 . 2010-07-02 07:42 95232 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 8192 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-07-02 07:42 . 2010-07-02 07:42 61440 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 10240 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe
2010-07-02 07:41 . 2010-07-02 07:43 36684048 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze.exe
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
------- Sigcheck -------
[-] 2010-09-25 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7600.16385] . . c:\windows\System32\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-04-30 9210400]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-08-04 226816]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-07-27 180224]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872]
"VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 92704]
"CTF Loader"="c:\windows\System32\ctfmon.exe" [2009-07-14 8704]
"Security Gateway"="c:\windows\system32\mslsgw.exe" [2010-09-28 87489536]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Remote Control.lnk - c:\program files\KWorld Multimedia\TV Tuner Card Utilities\HMCP3XCtl.exe [2010-5-29 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-06-09 08:06 976832 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"Service"=c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Servicerun.exe c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Service.exe
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2010-06-30 336728]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2010-09-13 23456]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\EVEREST Ultimate Edition\kerneld.wnt [2010-03-30 27760]
R3 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 136176]
R3 IS360service;IS360service;c:\program files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-28 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-26 691696]
S0 PCGenFAM;PCGenFAM;c:\windows\system32\DRIVERS\PCGenFAM.sys [2010-06-30 179144]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-09-09 142592]
S2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [2008-08-01 143467]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 OpenMceIrService;OpenMceIrService;c:\program files\OpenMceIrService\OpenMceIrServiceX86.exe [2009-10-06 191488]
S2 PdiService;Portrait Displays SDK Service;c:\program files\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2009-07-15 109168]
S2 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe [2009-07-12 21096]
S2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys [2009-07-12 25448]
S3 3xHybrid;3xHybrid service;c:\windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
.
Obsah adresáře 'Naplánované úlohy'
2010-09-18 c:\windows\Tasks\1-Click Maintenance.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
2010-09-23 c:\windows\Tasks\AWC Update.job
- c:\program files\IObit\Advanced SystemCare 3\IObitUpdate.exe [2010-05-27 09:08]
2010-07-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\Úklid 1 kliknutím.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = <local>
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: Send by Bluetooth - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
IE: Send via &Message... - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
IE: {{B1CF6225-211E-4B4C-B466-5F224E348FF3} - c:\program files\Crawler\Weather\CWeather.exe
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xcomm.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xshared.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xsupport.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xwsg.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npBitCometAgent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npnul32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPOFF12.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppdf32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppl3260.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprpjplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\OberonGameHost@OberonGames.com\platform\WINNT_x86-msvc\plugins\npOberonGameHost.dll
---- NASTAVENÍ FIREFOXU ----
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
d:\program files\FIREFOX\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
d:\program files\FIREFOX\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
MSConfigStartUp-BCSSync - c:\program files\Microsoft Office\Office14\BCSSync.exe
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-28 19:07:38
ComboFix-quarantined-files.txt 2010-09-28 17:07
Před spuštěním: Volných bajtů: 10 411 941 888
Po spuštění: Volných bajtů: 10 020 425 728
- - End Of File - - BB3972B5236EC70E9BBE6ABB81D2ABDC