VIRY.CZ

Niekedy pocujem zvuky klikania aj ked s pc nic nerobim, pripadne zvuk typu Denied (pripisoval som to seknutej myske) Minule som pocul z pc nejake hlasy (vazne) aj ked skype, ventrilo a vsetko bolo off a dnes mi zacali avast! vyhadzovat upozornenia tak vas prosim o pomoc, dalej rychlost internetu je asi tak 10 percent normalu. Vopred dakujem za snahu a ochotu.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Vlado at 2011-02-05 21:51:54
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 12 GB (25%) free of 50 GB
Total RAM: 1023 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:52:16, on 5.2.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ANIWConnService.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\D-Link\DWL-G122_DWA-110\AirGCFG.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\DOCUME~1\Vlado\LOCALS~1\Temp\TakisESD.exe
C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files\Codebox\BitMeter\BitMeter2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Rqycai.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\DOCUME~1\Vlado\LOCALS~1\Temp\Ryv.exe
C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Vlado\Dokumenty\Downloads\RSIT (1).exe
C:\Program Files\trend micro\Vlado.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?SearchSource ... =CT2770693
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
R3 - URLSearchHook: RadarSync2 Toolbar - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Program Files\RadarSync2\tbRada.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: RadarSync2 Toolbar - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Program Files\RadarSync2\tbRada.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: RadarSync2 Toolbar - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Program Files\RadarSync2\tbRada.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [D-Link D-Link Wireless G DWL-G122_DWA-110] C:\Program Files\D-Link\DWL-G122_DWA-110\AirGCFG.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Pando Media Booster] "C:\Program Files\Pando Networks\Media Booster\PMB.exe"
O4 - HKCU\..\Run: [GoogleUpdate] C:\DOCUME~1\Vlado\LOCALS~1\Temp\TakisESD.exe
O4 - HKCU\..\Run: [CE8SIIFGSU] C:\DOCUME~1\Vlado\LOCALS~1\Temp\Ryv.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bitmeter2.lnk = C:\Program Files\Codebox\BitMeter\BitMeter2.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{9BFB6DF6-E194-4B52-82C3-3F01EC308C50}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: Antiwpa - antiwpa.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ANIWConn Service (ANIWConnService) - Unknown owner - C:\WINDOWS\system32\ANIWConnService.exe
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

--
End of file - 8700 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-261903793-725345543-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-261903793-725345543-1004UA.job
C:\WINDOWS\tasks\RegCure Program Check.job
C:\WINDOWS\tasks\RegCure.job
C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6edc3889-b841-4127-a2bf-c5fc48f972c7}]
RadarSync2 Toolbar - C:\Program Files\RadarSync2\tbRada.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10 184423]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-05 988480]
{6edc3889-b841-4127-a2bf-c5fc48f972c7} - RadarSync2 Toolbar - C:\Program Files\RadarSync2\tbRada.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [2005-11-10 36975]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
"ANIWZCS2Service"=C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe [2009-08-21 98304]
"D-Link D-Link Wireless G DWL-G122_DWA-110"=C:\Program Files\D-Link\DWL-G122_DWA-110\AirGCFG.exe [2009-09-18 1708032]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-11-17 577536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-09-15 81000]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-14 98304]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-18 15360]
"Google Update"=C:\Documents and Settings\Vlado\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-01-05 136176]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-01-05 396152]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-03 15028104]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2002-01-04 3046808]
"GoogleUpdate"=C:\DOCUME~1\Vlado\LOCALS~1\Temp\TakisESD.exe [2011-01-25 57344]
"CE8SIIFGSU"=C:\DOCUME~1\Vlado\LOCALS~1\Temp\Ryv.exe [2010-02-05 143360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bitmeter2.lnk - C:\Program Files\Codebox\BitMeter\BitMeter2.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Antiwpa]
C:\WINDOWS\system32\antiwpa.dll [2003-05-25 60416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-07-15 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-18 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Games\4\hon.exe"="D:\Games\4\hon.exe:*:Enabled:Heroes of Newerth"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe"="C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe:*:Enabled:Adobe Bridge CS4"
"D:\Games\LOTRO\TurbineInvoker.exe"="D:\Games\LOTRO\TurbineInvoker.exe:*:Enabled:The Lord of the Rings Online"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:PMB"
"D:\Games\LOTRO\TurbineRegisterGDF.exe"="D:\Games\LOTRO\TurbineRegisterGDF.exe:*:Enabled:TurbineRegisterGDF"
"D:\Games\LOTRO\TurbineLauncher.exe"="D:\Games\LOTRO\TurbineLauncher.exe:*:Enabled:TurbineLauncher"
"D:\Games\LOTRO\TurbineElevator.exe"="D:\Games\LOTRO\TurbineElevator.exe:*:Enabled:TurbineElevator"
"D:\Games\LOTRO\lotroclient.exe"="D:\Games\LOTRO\lotroclient.exe:*:Enabled:lotroclient"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

======List of files/folders created in the last 1 months======

2011-02-05 21:52:04 ----D---- C:\Program Files\trend micro
2011-02-05 21:51:54 ----D---- C:\rsit
2011-01-19 01:40:50 ----D---- C:\WINDOWS\system32\LogFiles
2011-01-15 23:21:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
2011-01-15 23:10:36 ----D---- C:\Program Files\Adobe Media Player
2011-01-15 23:09:35 ----D---- C:\Documents and Settings\Vlado\Data aplikací\skypePM
2011-01-15 23:07:35 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-01-15 23:03:23 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-01-15 22:53:40 ----D---- C:\Program Files\Common Files\Skype
2011-01-15 22:53:38 ----RD---- C:\Program Files\Skype
2011-01-15 22:53:36 ----D---- C:\Documents and Settings\Vlado\Data aplikací\Skype
2011-01-15 22:53:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-01-11 08:44:55 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-01-11 08:44:20 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2011-01-09 16:14:21 ----D---- C:\Program Files\Realtek
2011-01-09 16:14:16 ----A---- C:\WINDOWS\RtlExUpd.dll
2011-01-09 12:12:02 ----D---- C:\WINDOWS\system32\XPSViewer
2011-01-09 12:11:58 ----D---- C:\Program Files\MSBuild
2011-01-09 12:11:52 ----D---- C:\Program Files\Reference Assemblies
2011-01-09 12:11:28 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-01-09 12:11:28 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-01-09 12:11:28 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-01-09 03:04:16 ----SHD---- C:\Config.Msi
2011-01-09 03:02:01 ----D---- C:\Program Files\MSXML 6.0
2011-01-08 03:01:17 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-01-08 03:01:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-01-07 12:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-01-07 12:37:39 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-01-07 12:37:32 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-01-07 12:37:25 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-01-07 12:37:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-01-07 12:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-01-07 12:37:06 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-01-07 12:37:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-01-07 12:36:54 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-01-07 12:36:50 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-01-07 12:36:43 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-01-07 12:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2011-01-07 12:35:53 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-01-07 12:35:47 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-01-07 12:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-01-07 12:35:34 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-01-07 12:35:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-01-07 12:35:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-01-07 12:35:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-01-07 12:35:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-01-07 12:35:07 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-01-07 12:35:01 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-01-07 12:34:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-01-07 12:34:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-01-07 12:34:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-01-07 12:34:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-01-07 12:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-01-07 12:34:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-01-07 12:34:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2011-01-07 12:34:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-01-07 12:33:57 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-01-07 12:33:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-01-07 12:33:46 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-01-07 12:33:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-01-07 12:33:35 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-01-07 12:33:29 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-01-07 12:33:25 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-01-07 12:33:19 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-01-07 12:33:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-01-07 12:33:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-01-07 12:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-01-07 12:32:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-01-07 12:32:48 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-01-07 12:32:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-01-07 12:32:33 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2011-01-07 12:32:28 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-01-07 12:32:22 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2011-01-07 12:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-01-07 12:32:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-01-07 12:32:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-01-07 12:32:03 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-07 12:32:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2011-01-07 12:31:55 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-01-07 12:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-01-07 12:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-01-07 12:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-01-07 12:31:34 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-01-07 12:31:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-01-07 12:31:09 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2011-01-07 12:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2011-01-07 12:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-01-07 12:30:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-01-07 12:30:40 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-01-06 03:25:09 ----D---- C:\WINDOWS\system32\CatRoot_bak
2011-01-06 03:15:12 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-01-06 03:06:29 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-01-06 03:01:37 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-01-06 03:01:28 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-01-06 03:01:19 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-01-06 03:01:11 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-01-06 03:01:04 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-01-06 03:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-01-06 03:00:46 ----D---- C:\WINDOWS\system32\PreInstall
2011-01-06 03:00:44 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-01-06 03:00:35 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-01-06 03:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2011-01-06 02:49:59 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-01-06 02:48:02 ----D---- C:\Documents and Settings\Vlado\Data aplikací\ATI
2011-01-06 02:48:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2011-01-06 02:04:45 ----A---- C:\WINDOWS\system32\ANIWConnService.exe
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\wnicapi.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\wlanapp.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\odSupp_M.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\AQCKGen.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\ANIWZCS2.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\ANICtl.dll
2011-01-06 02:04:35 ----A---- C:\WINDOWS\system32\aIPH.dll
2011-01-06 02:04:20 ----D---- C:\Program Files\ANI
2011-01-06 02:04:20 ----A---- C:\WINDOWS\system32\ANIOApi.dll
2011-01-06 02:04:20 ----A---- C:\WINDOWS\system32\ANIO64.sys
2011-01-06 02:04:20 ----A---- C:\WINDOWS\system32\anio4.sys
2011-01-06 02:04:20 ----A---- C:\WINDOWS\system32\ANIO.sys
2011-01-06 02:04:03 ----A---- C:\WINDOWS\system32\ssleay32.dll
2011-01-06 02:04:03 ----A---- C:\WINDOWS\system32\libeay32.dll
2011-01-06 02:04:03 ----A---- C:\WINDOWS\system32\ANIWPS.exe
2011-01-06 02:04:03 ----A---- C:\WINDOWS\system32\ANIOWPS.dll
2011-01-06 02:03:38 ----A---- C:\WINDOWS\system32\drivers\Dr71WU.sys
2011-01-06 02:03:37 ----D---- C:\Program Files\D-Link
2011-01-06 02:03:37 ----A---- C:\WINDOWS\system32\rt25u98.sys
2011-01-06 02:03:37 ----A---- C:\WINDOWS\system32\Dr71WU98.sys
2011-01-06 01:46:42 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-01-06 01:46:42 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-01-06 01:46:42 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-01-06 01:46:42 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-01-06 01:46:41 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-01-06 01:46:41 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-01-06 01:46:41 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-01-06 01:46:40 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-01-06 01:46:40 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-01-06 01:46:40 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-01-06 01:46:40 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-01-06 01:46:39 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-01-06 01:45:21 ----D---- C:\directx
2011-01-06 01:39:38 ----D---- C:\WINDOWS\system32\cs-CZ
2011-01-06 01:35:05 ----D---- C:\WINDOWS\system32\en-US
2011-01-06 01:35:02 ----D---- C:\Program Files\Microsoft.NET
2011-01-06 01:33:32 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2011-01-06 01:33:16 ----D---- C:\Program Files\ATI Technologies
2011-01-06 01:31:37 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2011-01-06 01:28:42 ----R---- C:\WINDOWS\system32\ChCfg.exe
2011-01-06 01:28:39 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-01-06 01:28:38 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-01-06 01:28:37 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2011-01-06 01:28:34 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-01-06 01:28:33 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-01-06 01:28:32 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-01-06 01:28:32 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-01-06 01:28:31 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-01-06 01:28:30 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011-01-06 01:28:29 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2011-01-06 01:28:28 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011-01-06 01:28:26 ----R---- C:\WINDOWS\system32\RTLCPL.exe
2011-01-06 01:28:26 ----R---- C:\WINDOWS\system32\RtlCPAPI.dll
2011-01-06 01:28:25 ----R---- C:\WINDOWS\system32\drivers\alcxwdm.sys
2011-01-06 01:28:25 ----R---- C:\WINDOWS\soundman.exe
2011-01-06 01:28:24 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-01-06 01:28:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-01-06 01:28:21 ----D---- C:\Program Files\Realtek Sound Manager
2011-01-06 01:28:20 ----R---- C:\WINDOWS\avrack.ini
2011-01-06 01:28:20 ----D---- C:\Program Files\AvRack
2011-01-06 01:28:06 ----R---- C:\WINDOWS\alcupd.exe
2011-01-06 01:28:05 ----RA---- C:\WINDOWS\Alcrmv.exe
2011-01-06 01:26:09 ----A---- C:\WINDOWS\system32\nvusmb.exe
2011-01-06 01:26:00 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2011-01-06 01:18:02 ----D---- C:\NVIDIA
2011-01-06 00:45:37 ----D---- C:\Documents and Settings\Vlado\Data aplikací\PriceGong
2011-01-06 00:45:17 ----D---- C:\Program Files\RadarSync2
2011-01-06 00:45:09 ----D---- C:\Program Files\RadarSync
2011-01-06 00:19:18 ----A---- C:\WINDOWS\system32\drivers\DrvAgent32.sys
2011-01-06 00:06:23 ----A---- C:\WINDOWS\system32\h323log.txt
2011-01-06 00:05:45 ----D---- C:\WINDOWS\Options
2011-01-06 00:05:45 ----D---- C:\Program Files\Atheros
2011-01-06 00:05:23 ----D---- C:\temp
2011-01-06 00:05:22 ----D---- C:\Documents and Settings\Vlado\Data aplikací\InstallShield
2011-01-06 00:05:01 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2011-01-06 00:02:19 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-01-06 00:01:59 ----A---- C:\WINDOWS\system32\drivers\rasirda.sys
2011-01-06 00:01:57 ----A---- C:\WINDOWS\system32\wshirda.dll
2011-01-06 00:01:57 ----A---- C:\WINDOWS\system32\irmon.dll
2011-01-06 00:01:57 ----A---- C:\WINDOWS\system32\irftp.exe
2011-01-06 00:01:57 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2011-01-06 00:01:54 ----A---- C:\WINDOWS\system32\drivers\irsir.sys
2011-01-06 00:01:46 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys
2011-01-06 00:01:28 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-01-06 00:01:23 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-01-06 00:01:22 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-01-06 00:01:22 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-01-06 00:01:22 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-01-06 00:01:21 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-01-06 00:01:20 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-01-06 00:01:20 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-01-06 00:01:19 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-01-06 00:01:18 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-01-06 00:01:17 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-01-06 00:01:16 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-01-06 00:01:15 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-01-06 00:01:15 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-01-06 00:01:15 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-01-06 00:01:15 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-01-06 00:01:15 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-01-06 00:01:14 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-01-06 00:01:14 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-01-06 00:01:14 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-01-06 00:01:14 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-01-06 00:01:14 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-01-06 00:01:13 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-01-06 00:01:13 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-01-06 00:01:13 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-01-06 00:01:13 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-01-06 00:01:13 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-01-06 00:01:12 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-01-06 00:01:12 ----A---- C:\WINDOWS\system32\usbui.dll
2011-01-06 00:01:09 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-01-06 00:01:09 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-01-06 00:01:09 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-01-06 00:01:08 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-01-06 00:01:08 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-01-06 00:01:08 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-01-06 00:01:08 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-01-06 00:01:07 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2011-01-06 00:01:07 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-01-06 00:01:07 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2011-01-06 00:00:06 ----A---- C:\WINDOWS\imsins.BAK
2011-01-06 00:00:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-06 00:00:03 ----SHD---- C:\WINDOWS\Installer
2011-01-06 00:00:03 ----D---- C:\Program Files\Common Files\ODBC
2011-01-06 00:00:03 ----A---- C:\WINDOWS\ODBCINST.INI
2011-01-06 00:00:01 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-01-06 00:00:00 ----RD---- C:\Program Files
2011-01-06 00:00:00 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-01-06 00:00:00 ----D---- C:\Program Files\Common Files

======List of files/folders modified in the last 1 months======

2011-02-05 21:52:02 ----D---- C:\WINDOWS\Prefetch
2011-02-05 21:51:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Bitmeter2
2011-02-05 21:48:38 ----SD---- C:\WINDOWS\Tasks
2011-02-05 21:46:23 ----D---- C:\Documents and Settings\Vlado\Data aplikací\uTorrent
2011-02-05 21:41:15 ----D---- C:\WINDOWS\Temp
2011-01-16 21:52:28 ----D---- C:\Documents and Settings\Vlado\Data aplikací\Adobe
2011-01-15 23:13:19 ----D---- C:\Program Files\Adobe
2011-01-15 23:11:55 ----D---- C:\WINDOWS\system32\drivers
2011-01-15 23:11:51 ----D---- C:\Program Files\Common Files\Adobe
2011-01-12 14:32:32 ----D---- C:\WINDOWS\Microsoft.NET
2011-01-11 08:45:12 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-11 08:44:54 ----HD---- C:\WINDOWS\$hf_mig$
2011-01-09 16:14:20 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-09 12:11:38 ----D---- C:\WINDOWS\system32\spool
2011-01-07 13:05:15 ----D---- C:\WINDOWS\system32\wbem
2011-01-07 13:05:15 ----D---- C:\WINDOWS\AppPatch
2011-01-07 12:37:27 ----D---- C:\Program Files\Messenger
2011-01-07 12:34:35 ----D---- C:\Program Files\Movie Maker
2011-01-07 12:32:30 ----D---- C:\Program Files\Outlook Express
2011-01-07 12:31:16 ----D---- C:\Program Files\Internet Explorer
2011-01-07 02:35:08 ----D---- C:\Documents and Settings\Vlado\Data aplikací\Bitmeter2
2011-01-06 02:04:18 ----D---- C:\Program Files\Common Files\InstallShield
2011-01-06 02:04:09 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-01-06 01:45:42 ----D---- C:\WINDOWS\Logs
2011-01-06 00:25:42 ----D---- C:\WINDOWS\pchealth
2011-01-06 00:01:59 ----D---- C:\WINDOWS\Media

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvatabus;nvatabus; C:\WINDOWS\system32\drivers\nvatabus.sys [2005-08-18 93568]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-08-18 61056]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-01-05 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-09-15 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-09-15 52368]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-18 39936]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 ANIO;ANIO Service; \??\C:\WINDOWS\system32\ANIO.SYS []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-03-08 4027840]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-18 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-09-15 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-07-15 4407808]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-18 61824]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RT73;D-Link USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\Dr71WU.sys [2009-07-17 476544]
S3 a8dwfcpw;a8dwfcpw; C:\WINDOWS\system32\drivers\a8dwfcpw.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ANIWConnService;ANIWConn Service; C:\WINDOWS\system32\ANIWConnService.exe [2009-07-07 151552]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-09-15 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-07-15 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-09-15 138680]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2004-08-18 14336]
R2 SSHNAS;SSHNAS; C:\WINDOWS\system32\svchost.exe [2004-08-18 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-09-15 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-09-15 352920]
S2 ANIWZCSdService;ANIWZCSd Service; C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe [2009-08-21 102400]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-07-14 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-01-15 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Zdravim a pekny den preji

A myslite ze na bezpecnostnim foru se dockate podpory nelegalniho systemu

Tento pc ma uz niekolko rokov a samozrejme bol aj x krat preinstalovany OS, samozrejme som ho dostal ako 13 rocny s predinstalovanym OS a vtedy ma vobec nazaujimalo ci som k tomu dostal aj instalacku alebo, kde som ju asi tak odlozil takze som pri poslednom preinstalovani pouzil Win, ktory som dostal k notebook. Ten je registrovany na nom, takze tento som si musel bud cracknut alebo kupovat novy win (co som blazon?) kazdopadne ak nieje mozne pomoct mi tak vam dakujem, ajked myslim, ze by som vasu pomoc odcenil viac ako Bill Gates

len som vas chcel ubezpecit, ze ten windows som si tak ci tak uz raz v zivote zaplatil

(co som blazon?)

Blazen byste nebyl, ale rozumny clovek

Nejde taky ani o pomoct B.Gatesovi, jako o to ze dle pravidel fora (viz zde a a zde bod c.3 ) se nelegalnim SW nezabyvame, jelikoz nelegalni programy jsou vetsinou zdrojem haveti. Navic tim porusujete i autorska prava Obrázek

, pachate trestny cin a ten jako takovy nebude nasim forem podporovan. Uvedomte si, ze jste na bezpecnostnim foru - podpora warezu by byla zcela proti logice fora

PC je zaliskane od sklepa az na pudu a jelikoz Vy ani v planu nemate ci neuvazujete o legalizaci OS ci koupi novejsiho typu OS - patrno z vasi poznamky vyse, takze se od nas podpory nedockate. Jsme to ve volnem case a zadarmo a nemate tu cas a chut lecit PC ktere si nekdo zanese vlastni vinou.

Chcel som len objasnit, ze pc bol povodne aj s legalnym OS avsak som ho dostal ako uplne veci neznaly 13 rocny chlapec tak ma asi nezaujimalo, ci k tomu mam Registarcne cislo v pripade, ze by som ho este niekedy potreboval. A tak mi pride, ze ako student bez penazi nebudem snad vyhadzovat to malo co mam, za nieco co som si uz raz zaplatil(resp. dostal). Mam doma dalsie 2 notebooky s legalnym OS cize nie nemam problem podporit developerov. Kazdopadne dakujem za ozrejmenie problematiky a vas cas. Stacilo by mi aj male odporucanie ako postupovat

Dobra tedy, PC vylecime ale pokud se tu jeste objevite s logem kde budou prvky warezu, tak bude pomoc odmitnuta

Zazalohujte si dulezita data, jak jsem psal, mate tam pekne stadecko konicku trojskych a malou vesnici rootkitu a predpokladam ze i mbr rootkity = reinstal systemu nepomuze, jelikoz mbr sektor zustava pri formatu nedotcen

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich
motji píše: Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr

Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Ted nerestartujte PC - prisli byste o ucinek RKillu

Pri stahovani ComboFixu - navod a postup nize, jej prejmenujte na Beruska.com

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Tak teraz vam pisem z laptopu, lebo po sputeni rkillu, nabehlo cmd okno a avast opat zacal vypustat hlasky. Potom rkill zavrel vsetko takze mi ostalo len pozadie, ziadne ikony nic, cakal som skusal som ctra alt del nic, tak som skusil restart, ze dam rkill znova avsak po restarte stale len pozadie...

Prihlaste se do nouzoveho rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)

Tam aplikujte ComboFix dle navodu - RKill neprovadejte

Nanestastie pri prihlaseni v tomto rezime vyskakuje okno ozamujuce, ze Win nieje registrovany a musim pc spustit v normal mode aby som ho registroval, normal mod vsak uz ani neukazuje pozadie len cierna obrazovka....ach, mal by som teraz preinstalovat OS?

Nevyhoda nelegalnich Win, opravy jsou tezke...zkuste jeste po restartu mackat F8 a zvolit Posledni znama funkcni konfigurace pak zkuste ci WIN nabehnou do normalniho rezimu...

Nepomaha...prinajmensom ma to presvedcilo o nutnosti legalneho OS

nejake dalsie postupy? PC potrebujem nutne k praci a studiu, planujem si kupit novy pc aj s legal OS hned ako dosporim.

Takze v nouzovem rezimu Vas to nenecha nic udelat

Ty vyskakujici hlasky nejdou nejak odkliknout

Predpokladam ze mate moznost vypalit CD

Lognut sa da len v nudzovom rezime, alebo nudzovom rezime s ms-dos. V nudzovom rezime s pracou v sieti odmietna lognut moj account alebo administratora, normalny alebo posledna znama konfiguracia - cierna obrazovka. Neviem ci mam prazdne CD, snad ano pri najmensom mam usb kluc

Stahnete si na flashku ComboFix a prejmenujte jej na Beruska

Preneste jej do infikovaneho PC - tam budte prihlasen v nouzovem rezimu (bez site)

Zkuste ComboFix spustit

Uz neni co moc pokazit, data se daji vytahnout pres nejake live CD

Nevim jestli Vam PC podporuje bootovani pres flash disk, proto jsem chtel to prazdne CD. Navic vytvorit boot CD je snazsi nez flash disk

Beruska.com spustila scan, chcela stiahnut konzolu pre zotavenie, avsak nebolo to v safe mode mozne. Ku koncu mazala explorer.exe a winlog a potom sa pokusil restartovat pc... nechal som ho sa zapnut ale po starte winu sa sam znova restartoval tak som skusil zapnut v safe mode a taktiez sa restartoval cize nejde ani safe mode...a myslim, ze moznost bootovat z usb mi bios podporuje

VIRY.CZ

Vir v explorer.exe atd.

Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.

Re: Vir v explorer.exe atd.