ComboFix 10-09-20.02 - Jouda 21.09.2010   5:58.1.2 - x86
Systm Microsoft Windows XP Professional  5.1.2600.2.1250.420.1029.18.3070.2529 [GMT 2:00]
Sputn z: c:\documents and settings\Jouda\Plocha\ComboFix.exe
AV: Microsoft Security Essentials *On-access scanning enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}

VAROVN - NA TOMTO POTAI NEN NAINSTALOVNA KONZOLA PRO ZOTAVEN !!
.

(((((((((((((((((((((((((((((((((((((((   Ostatn vmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\WinPCap
c:\program files\WinPCap\daemon_mgm.exe
c:\program files\WinPCap\npf_mgm.exe
c:\program files\WinPCap\rpcapd.exe
c:\windows\system32\drivers\npf.sys
c:\windows\system32\Packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\WanPacket.dll
c:\windows\system32\wpcap.dll
c:\windows\Temp\log.txt

.
(((((((((((((((((((((((((((((((((((((((   Ovladae/Sluby   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_NPF


(((((((((((((((((((((((((   Soubory vytvoen od 2010-08-21 do 2010-09-21  )))))))))))))))))))))))))))))))
.

2010-09-21 03:51 . 2004-08-03 21:08	26496	----a-w-	c:\windows\system32\dllcache\usbstor.sys
2010-09-20 21:18 . 2007-06-29 03:45	183056	----a-w-	c:\windows\UNINST32.EXE
2010-09-20 21:18 . 2006-01-20 21:42	17408	----a-w-	c:\windows\system32\drivers\DKbFltr.SYS
2010-09-20 21:18 . 2004-12-09 19:04	5120	----a-w-	c:\windows\system32\FILTRCOI.DLL
2010-09-20 21:15 . 2007-04-30 13:37	2206976	----a-w-	c:\windows\system32\drivers\NETw4x32.sys
2010-09-20 21:15 . 2007-04-16 18:21	2772992	----a-w-	c:\windows\system32\NETw4r32.dll
2010-09-20 21:15 . 2007-04-16 18:21	684032	----a-w-	c:\windows\system32\NETw4c32.dll
2010-09-20 21:15 . 2010-09-20 12:22	--------	d-----w-	c:\windows\modem
2010-09-20 21:15 . 2006-12-22 18:56	988800	----a-w-	c:\windows\system32\drivers\HSF_DPV.sys
2010-09-20 21:15 . 2006-12-22 18:56	209664	----a-w-	c:\windows\system32\drivers\HSFHWAZL.sys
2010-09-20 21:15 . 2006-12-22 18:55	730112	----a-w-	c:\windows\system32\drivers\HSF_CNXT.sys
2010-09-20 21:15 . 2006-12-21 00:37	176128	----a-w-	c:\windows\system32\UCI32M16.dll
2010-09-20 21:15 . 2006-06-19 21:26	12672	----a-w-	c:\windows\system32\drivers\mdmxsdk.sys
2010-09-20 21:15 . 2006-06-19 21:26	94208	----a-w-	c:\windows\system32\mdmxsdk.dll
2010-09-20 18:26 . 2010-09-20 18:26	--------	d-----w-	C:\rsit
2010-09-20 18:26 . 2010-09-20 18:26	--------	d-----w-	c:\program files\trend micro
2010-09-20 18:21 . 2010-09-20 18:21	--------	d-----w-	c:\windows\ServicePackFiles
2010-09-20 18:19 . 2010-09-20 18:19	--------	d-----w-	c:\program files\MSXML 6.0
2010-09-20 18:18 . 2010-09-20 18:18	--------	d-----w-	c:\program files\Microsoft CAPICOM 2.1.0.2
2010-09-20 18:13 . 2010-02-12 10:03	293376	------w-	c:\windows\system32\browserchoice.exe
2010-09-20 18:11 . 2010-02-24 12:31	454016	------w-	c:\windows\system32\dllcache\mrxsmb.sys
2010-09-20 17:52 . 2010-09-20 17:52	--------	d-s---w-	c:\documents and settings\Jouda\UserData
2010-09-20 17:26 . 2010-09-20 17:26	691696	----a-w-	c:\windows\system32\drivers\sptd.sys
2010-09-20 17:26 . 2010-09-20 17:30	--------	d-----w-	c:\program files\DAEMON Tools Lite
2010-09-20 17:23 . 2010-09-20 18:01	--------	d-----w-	c:\documents and settings\Jouda\.VirtualBox
2010-09-20 17:22 . 2010-08-05 12:08	143184	----a-w-	c:\windows\system32\drivers\VBoxDrv.sys
2010-09-20 17:22 . 2010-08-05 12:08	41936	----a-w-	c:\windows\system32\drivers\VBoxUSBMon.sys
2010-09-20 17:13 . 2010-09-20 17:13	--------	d-----w-	c:\program files\Oracle
2010-09-20 16:55 . 2010-09-20 16:55	--------	d-----w-	c:\program files\Crawler
2010-09-20 16:52 . 2010-06-01 17:37	221568	------w-	c:\windows\system32\MpSigStub.exe
2010-09-20 16:48 . 2010-09-20 16:48	--------	d-----w-	c:\program files\WIP Miranda IM 1.7.12
2010-09-20 16:44 . 2010-09-20 17:28	--------	d-----w-	c:\program files\Microsoft Security Essentials
2010-09-20 16:41 . 2010-09-20 16:41	--------	d-----w-	c:\documents and settings\NetworkService\Nabdka Start
2010-09-20 16:40 . 2010-09-20 16:40	0	----a-w-	c:\windows\nsreg.dat
2010-09-20 16:39 . 2010-09-20 17:04	--------	d-----w-	C:\totalcmd
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\UC.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\RAR.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\PKZIP.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\PKUNZIP.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\NOCLOSE.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\LHA.PIF
2010-09-20 16:39 . 2008-08-08 05:04	545	----a-w-	c:\windows\ARJ.PIF
2010-09-20 12:41 . 2010-09-21 04:01	12	----a-w-	c:\windows\bthservsdp.dat
2010-09-20 12:40 . 2010-09-20 12:40	--------	d-----w-	c:\program files\Launch Manager
2010-09-20 12:40 . 2007-12-10 15:59	8704	----a-w-	c:\windows\system32\drivers\TVicPort64.sys
2010-09-20 12:40 . 2007-12-10 15:59	6144	----a-w-	c:\windows\system32\drivers\zntport64.sys
2010-09-20 12:40 . 2007-12-10 15:59	6080	----a-w-	c:\windows\system32\drivers\zntport.sys
2010-09-20 12:40 . 2007-12-10 15:59	14544	----a-w-	c:\windows\system32\drivers\TVicPort.sys
2010-09-20 12:40 . 2007-12-10 15:59	8704	----a-w-	c:\windows\system32\drivers\int15_64.sys
2010-09-20 12:40 . 2007-12-10 15:59	14120	----a-w-	c:\windows\system32\drivers\int15.sys
2010-09-20 12:39 . 2007-04-13 09:51	321024	----a-w-	c:\windows\system32\ERUpdateHidden.EXE
2010-09-20 12:39 . 2006-03-30 11:06	258048	----a-w-	c:\windows\system32\CheckD2DSystem.exe
2010-09-20 12:39 . 2006-03-23 10:02	258048	----a-w-	c:\windows\system32\Uninstall_eRecovery.exe
2010-09-20 12:39 . 2005-12-09 07:12	16384	----a-w-	c:\windows\system32\ClearEvent.exe
2010-09-20 12:39 . 2004-11-03 07:06	159744	----a-w-	c:\windows\system32\CloseProcessWindow.dll
2010-09-20 12:39 . 2010-09-20 12:39	319488	----a-w-	c:\windows\system32\AegisI5Installer.exe
2010-09-20 12:39 . 2010-09-20 12:39	21425	----a-w-	c:\windows\system32\drivers\AegisP.sys
2010-09-20 12:38 . 2007-07-20 12:30	65536	----a-w-	c:\windows\system32\acerGina.dll
2010-09-20 12:38 . 2007-07-20 12:29	888832	----a-w-	c:\windows\system32\WirelessMgr.dll
2010-09-20 12:38 . 2010-09-20 12:38	--------	d-----w-	c:\windows\Downloaded Installations
2010-09-20 12:37 . 2006-07-20 08:33	65536	----a-w-	c:\windows\system32\NATTraversal.dll
2010-09-20 12:37 . 2007-03-06 12:58	57344	----a-w-	c:\windows\system32\acpimof.dll
2010-09-20 12:37 . 2006-02-16 13:39	45056	----a-w-	c:\windows\system32\Epm-Po.dll
2010-09-20 12:37 . 2005-04-07 16:08	78208	----a-w-	c:\windows\system32\drivers\epm-shd.sys
2010-09-20 12:37 . 2004-07-19 11:10	4096	----a-w-	c:\windows\system32\drivers\epm-psd.sys
2010-09-20 12:35 . 2006-02-22 09:19	69632	----a-w-	c:\windows\system32\eRecUtil.dll
2010-09-20 12:35 . 2006-06-13 12:42	602112	----a-w-	c:\windows\system32\Acer.Empowering.Windows.Forms_v820.dll
2010-09-20 12:35 . 2007-07-12 07:30	618496	----a-w-	c:\windows\system32\Acer.Empowering.Windows.Forms.dll
2010-09-20 12:35 . 2007-07-12 07:30	53248	----a-w-	c:\windows\system32\Interop.Shell32.dll
2010-09-20 12:35 . 2006-05-25 16:18	331776	----a-w-	c:\windows\system32\ScrollBarLib.dll
2010-09-20 12:35 . 2006-04-18 17:54	49152	----a-w-	c:\windows\system32\SysMonitor.exe
2010-09-20 12:35 . 2010-09-20 12:35	--------	d-----w-	C:\Acer
2010-09-20 12:35 . 2010-09-20 16:37	--------	d-----w-	c:\program files\Yahoo!
2010-09-20 12:34 . 2007-09-07 18:56	110592	----a-w-	c:\windows\system32\SynTPCo4.dll
2010-09-20 12:34 . 2007-04-18 20:02	36909056	----a-w-	c:\windows\system32\acer.scr
2010-09-20 12:34 . 2007-05-16 14:48	7734011	----a-w-	c:\windows\system32\acer.exe
2010-09-20 12:34 . 2010-09-20 12:34	--------	d-----w-	c:\windows\ACER
2010-09-20 12:30 . 2010-09-20 12:30	--------	d-----w-	c:\documents and settings\Jouda\Bluetooth Software
2010-09-20 12:30 . 2004-08-17 13:49	21504	----a-w-	c:\windows\system32\hidserv.dll
2010-09-20 12:30 . 2004-08-17 13:49	21504	----a-w-	c:\windows\system32\dllcache\hidserv.dll
2010-09-20 12:29 . 2004-08-03 20:58	100992	----a-w-	c:\windows\system32\drivers\bthpan.sys
2010-09-20 12:29 . 2004-08-03 20:58	100992	----a-w-	c:\windows\system32\dllcache\bthpan.sys
2010-09-20 12:29 . 2007-03-31 20:02	55352	----a-w-	c:\windows\system32\drivers\btwhid.sys
2010-09-20 12:29 . 2007-03-23 17:50	67960	----a-w-	c:\windows\system32\drivers\btwusb.sys
2010-09-20 12:29 . 2007-03-23 17:50	149123	----a-w-	c:\windows\system32\drivers\btwdndis.sys
2010-09-20 12:29 . 2007-03-23 17:50	106557	----a-w-	c:\windows\system32\btw_ci.dll
2010-09-20 12:29 . 2007-03-31 20:02	876384	----a-w-	c:\windows\system32\drivers\btkrnl.sys
2010-09-20 12:29 . 2007-03-23 17:50	37424	----a-w-	c:\windows\system32\drivers\btport.sys
2010-09-20 12:29 . 2007-03-23 17:49	539072	----a-w-	c:\windows\system32\drivers\btaudio.sys
2010-09-20 12:28 . 2010-09-20 12:28	--------	d-----w-	c:\program files\WIDCOMM
2010-09-20 12:28 . 2004-08-03 21:10	59648	----a-w-	c:\windows\system32\drivers\rfcomm.sys
2010-09-20 12:28 . 2004-08-03 21:10	59648	----a-w-	c:\windows\system32\dllcache\rfcomm.sys
2010-09-20 12:28 . 2004-08-03 21:10	17024	----a-w-	c:\windows\system32\drivers\BthEnum.sys
2010-09-20 12:28 . 2004-08-03 21:10	17024	----a-w-	c:\windows\system32\dllcache\bthenum.sys
2010-09-20 12:28 . 2008-06-14 18:00	272128	----a-w-	c:\windows\system32\drivers\bthport.sys
2010-09-20 12:28 . 2008-06-14 18:00	272128	----a-w-	c:\windows\system32\dllcache\bthport.sys
2010-09-20 12:27 . 2004-10-15 06:37	--------	d--h--w-	c:\documents and settings\Jouda\Okoln tiskrny
2010-09-20 12:27 . 2004-10-15 06:37	--------	d--h--w-	c:\documents and settings\Jouda\Okoln s
2010-09-20 12:23 . 2001-10-24 09:54	12160	----a-w-	c:\windows\system32\drivers\mouhid.sys
2010-09-20 12:23 . 2001-08-17 20:02	9600	----a-w-	c:\windows\system32\drivers\hidusb.sys
2010-09-20 12:23 . 2010-09-20 12:23	0	----a-w-	c:\windows\ativpsrm.bin
2010-09-20 12:22 . 2010-09-20 12:22	--------	d-----w-	c:\program files\CONEXANT

.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-20 20:54 . 2007-08-14 06:19	--------	d-----w-	c:\program files\NewTech Infosystems
2010-09-20 20:53 . 2007-08-14 06:26	--------	d-----w-	c:\program files\Microsoft SQL Server
2010-09-20 20:50 . 2004-10-15 06:47	--------	d-----w-	c:\program files\microsoft frontpage
2010-09-20 20:47 . 2007-08-14 06:10	--------	d-----w-	c:\program files\Common Files\NewTech Infosystems
2010-09-20 20:45 . 2007-08-14 06:09	--------	d-----w-	c:\program files\Common Files\LightScribe
2010-09-20 20:45 . 2007-08-14 06:09	--------	d-----w-	c:\program files\Common Files\InstallShield
2010-09-20 20:45 . 2007-08-14 06:12	--------	d-----w-	c:\program files\Common Files\Adobe
2010-09-20 20:45 . 2007-08-14 06:08	--------	d-----w-	c:\program files\Broadcom
2010-09-20 19:04 . 2007-08-14 06:53	74450	----a-w-	c:\windows\system32\perfc005.dat
2010-09-20 19:04 . 2007-08-14 06:53	400304	----a-w-	c:\windows\system32\perfh005.dat
2010-09-20 16:30 . 2007-08-14 06:34	--------	d-----w-	c:\program files\Common Files\Symantec Shared
2010-09-20 12:43 . 2007-08-14 06:13	--------	d-----w-	c:\program files\Acer Inc
2010-09-20 12:40 . 2007-08-14 06:19	--------	d--h--w-	c:\program files\InstallShield Installation Information
2010-09-20 12:39 . 2007-08-14 06:07	--------	d-----w-	c:\program files\Intel
2010-09-20 12:36 . 2007-08-14 06:19	--------	d-----w-	c:\program files\CyberLink
2010-09-20 12:33 . 2010-09-20 12:33	--------	d-----w-	c:\program files\Common Files\snp2uvc
2010-09-20 12:33 . 2010-09-20 12:31	--------	d-----w-	c:\program files\ATI Technologies
.

((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"preload"="c:\windows\RUNXMLPL.exe" [2007-04-20 20480]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-03-21 174872]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-07 1015808]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-28 16132608]
"AzMixerSel"="c:\program files\Realtek\InstallShield\AzMixerSel.exe" [2005-06-11 53248]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-18 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-18 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-18 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-18 455168]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-18 110592]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"PLFSetL"="c:\windows\PLFSetL.exe" [2007-07-05 94208]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-07 102400]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2007-02-20 61440]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-01-08 68640]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"Acer ePresentation HPD"="c:\acer\Empowering Technology\ePresentation\ePresentation.exe" [2007-03-02 208896]
"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 475136]
"Boot"="c:\acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 579584]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-05-28 342528]
"eRecoveryService"="c:\acer\Empowering Technology\eRecovery\eRAgent.exe" [2007-07-11 421888]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-10-17 858632]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]

c:\documents and settings\All Users\Nabdka Start\Programy\Po sputn\
Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2010-9-20 45056]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-4-1 568176]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\Program Files\\WIP Miranda IM 1.7.12\\miranda32.exe"=

R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [20.9.2010 19:22 143184]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [20.9.2010 19:22 41936]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [20.9.2010 19:26 691696]
.
Obsah adrese 'Naplnovan lohy'

2010-09-20 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Essentials\MpCmdRun.exe [2010-03-25 19:40]

2010-09-21 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Essentials\MpCmdRun.exe [2010-03-25 19:40]
.
.
------- Doplkov sken -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60342
mStart Page = hxxp://cs.intl.acer.yahoo.com
uSearchURL,(Default) = hxxp://uk.rd.yahoo.com/customize/ycomp/defaults/su/*http://uk.yahoo.com
IE: Crawler Search - tbr:iemenu
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: {95ED4667-102A-42DA-9586-6C0B6679A099} = 213.192.60.5,213.192.60.6
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\documents and settings\Jouda\Data aplikac\Mozilla\Firefox\Profiles\803zzgnu.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60342&qkw=
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xcomm.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xshared.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xsupport.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xwsg.dll

---- NASTAVEN FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -

HKLM-Run-eLockMonitor - c:\acer\Empowering Technology\eLock\Monitor\LaunchMonitor.exe
AddRemove-ShockwaveFlash - c:\windows\system32\Macromed\Flash\FlashUtil9b.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-21 06:04
Windows 5.1.2600 Service Pack 2 NTFS

skenovn skrytch proces ...  

skenovn skrytch poloek 'Po sputn' ... 

skenovn skrytch soubor ...  


c:\windows\TEMP\TMP00000009533D592849B2484D 524288 bytes

sken byl spen dokonen
skryt soubory: 1

**************************************************************************
.
--------------------- Knihovny navzan na bc procesy ---------------------

- - - - - - - > 'winlogon.exe'(996)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(3732)
c:\windows\system32\MSNCHATHOOK.DLL
c:\windows\system32\sysenv.dll
c:\windows\system32\CryptoAPI.dll
c:\windows\system32\ShowErrMsg.dll
c:\windows\system32\MFC71U.DLL
c:\windows\system32\btmmhook.dll
c:\acer\Empowering Technology\ePower\SysHook.dll
c:\windows\system32\browselc.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
.
------------------------ Jin sputen procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Microsoft Security Essentials\MsMpEng.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\acer\Empowering Technology\eLock\Service\eLockServ.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\rundll32.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\windows\system32\wbem\unsecapp.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\docume~1\Jouda\LOCALS~1\Temp\RtkBtMnt.exe
.
**************************************************************************
.
Celkov as: 2010-09-21  06:07:27 - pota byl restartovn
ComboFix-quarantined-files.txt  2010-09-21 04:07

Ped sputnm: Volnch bajt: 39034228736
Po sputn: Volnch bajt: 39072194560

- - End Of File - - 3331E9B1635A1CE21F7FF4A1A630F6C9
