ComboFix 12-08-14.05 - Veronika 16.08.2012  14:15:16.1.2 - x86
Systm Microsoft Windows XP Professional  5.1.2600.3.1250.420.1029.18.3062.1713 [GMT 2:00]
Sputn z: c:\documents and settings\Veronika\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
VAROVN - NA TOMTO POTAI NEN NAINSTALOVNA KONZOLA PRO ZOTAVEN !!
.
.
(((((((((((((((((((((((((((((((((((((((   Ostatn vmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Veronika\WINDOWS
C:\install.exe
c:\program files\Common Files\Temp
c:\windows\apppatch\AppLoc.exe
c:\windows\IsUn0405.exe
c:\windows\IsUn0411.exe
c:\windows\msmqinst.log
c:\windows\RazorDOX
c:\windows\RazorDOX\RazorDOX.dll
c:\windows\system32\etc
c:\windows\system32\etc\gtk-2.0\gtk.immodules
c:\windows\system32\etc\gtk-2.0\gtkrc
c:\windows\system32\etc\pango\pango.modules
c:\windows\system32\SET110.tmp
c:\windows\system32\SET115.tmp
c:\windows\system32\SET11C.tmp
c:\windows\system32\SET125.tmp
c:\windows\system32\SET127.tmp
c:\windows\system32\SET12A.tmp
c:\windows\system32\SET7DC3.tmp
c:\windows\system32\SET7DC4.tmp
c:\windows\system32\SET7DC5.tmp
c:\windows\system32\SET7DC6.tmp
c:\windows\system32\SET7DCC.tmp
c:\windows\system32\SET7DCD.tmp
c:\windows\system32\SET7DCE.tmp
c:\windows\system32\SET7DD3.tmp
c:\windows\system32\SET7DD7.tmp
c:\windows\system32\SET7DDA.tmp
c:\windows\system32\SET7DDE.tmp
c:\windows\system32\SET7DE3.tmp
c:\windows\system32\SET7DE8.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
(((((((((((((((((((((((((   Soubory vytvoen od 2012-07-16 do 2012-08-16  )))))))))))))))))))))))))))))))
.
.
2012-08-15 22:32 . 2012-08-15 22:32	--------	d-----w-	c:\documents and settings\Veronika\Data aplikac\Sonic Focus
2012-08-15 22:11 . 2000-10-02 10:24	102160	----a-w-	c:\windows\system32\VB6JP.DLL
2012-08-15 22:09 . 2006-09-07 11:25	1178088	----a-w-	c:\windows\system32\drivers\sthda.sys
2012-08-15 22:09 . 2012-08-15 22:09	--------	d-----w-	c:\program files\SigmaTel
2012-08-15 00:41 . 2012-08-16 16:58	512	----a-w-	C:\Physical0MBR.bin
2012-08-14 13:55 . 2012-08-14 13:56	--------	d-----w-	C:\rsit
2012-08-14 13:55 . 2012-08-14 13:55	--------	d-----w-	c:\program files\trend micro
2012-08-12 00:43 . 2008-04-10 18:05	7925760	----a-w-	c:\windows\system32\idtsg.cpl
2012-08-11 23:39 . 2012-08-15 21:50	--------	d-----w-	C:\cabs
2012-08-11 19:31 . 2012-08-11 19:31	--------	d-----w-	c:\documents and settings\Veronika\Data aplikac\PunkBuster
2012-08-10 18:54 . 2012-08-10 18:54	--------	d-----w-	c:\program files\DIFX
2012-08-10 18:54 . 2008-03-21 11:57	14640	------w-	c:\windows\system32\spmsgXP_2k3.dll
2012-08-10 18:53 . 2009-04-06 09:13	25512	----a-w-	c:\windows\system32\drivers\ggsemc.sys
2012-08-10 18:53 . 2009-04-06 09:13	13224	----a-w-	c:\windows\system32\drivers\ggflt.sys
2012-08-10 18:53 . 2008-03-27 16:49	1112288	----a-w-	c:\windows\system32\WdfCoInstaller01007.dll
2012-08-10 18:37 . 2012-08-10 18:37	--------	d-----w-	c:\documents and settings\LocalService\Plocha
2012-08-10 18:37 . 2012-08-10 18:37	--------	d-----w-	c:\documents and settings\LocalService\Nabdka Start
2012-08-02 17:34 . 2012-08-02 17:34	--------	d-----w-	c:\documents and settings\All Users\Data aplikac\Sony
2012-08-02 17:27 . 2012-08-02 17:27	--------	d-----w-	c:\program files\Avanquest update
2012-08-02 17:27 . 2012-08-02 17:27	--------	d-----w-	c:\documents and settings\All Users\Data aplikac\Avanquest
2012-08-02 17:25 . 2012-08-02 17:25	--------	d-----w-	c:\documents and settings\Veronika\Local Settings\Data aplikac\Sony Ericsson
2012-08-02 17:25 . 2012-08-02 17:25	--------	d-----w-	c:\documents and settings\All Users\Data aplikac\BVRP Software
2012-07-18 18:10 . 2012-07-18 18:10	--------	d-----w-	c:\documents and settings\All Users\Data aplikac\Hi-Rez Studios
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-11 19:31 . 2011-05-23 15:39	189248	----a-w-	c:\windows\system32\PnkBstrB.exe
2012-08-11 19:31 . 2011-05-23 15:39	75136	----a-w-	c:\windows\system32\PnkBstrA.exe
2012-08-05 10:42 . 2012-04-03 15:05	426184	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2012-08-05 10:42 . 2011-05-31 16:41	70344	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-13 13:55 . 2004-08-18 12:00	1866112	----a-w-	c:\windows\system32\win32k.sys
2012-06-05 15:49 . 2009-08-19 16:07	1372672	----a-w-	c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2004-08-18 12:00	1172480	----a-w-	c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2004-08-18 12:00	152576	----a-w-	c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2007-11-14 13:37	15384	----a-w-	c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2007-11-14 13:37	22552	----a-w-	c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2007-11-14 09:55	329240	----a-w-	c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2007-11-14 09:55	210968	----a-w-	c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2007-11-14 09:55	219160	----a-w-	c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2007-11-14 13:37	45080	----a-w-	c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2007-11-14 13:37	18456	----a-w-	c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2007-11-14 13:37	15384	----a-w-	c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2007-11-14 09:55	53784	----a-w-	c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2007-11-14 09:55	35864	----a-w-	c:\windows\system32\wups.dll
2012-06-02 13:19 . 2004-08-18 12:00	97304	----a-w-	c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2007-11-14 09:55	577048	----a-w-	c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2007-11-14 09:55	1933848	----a-w-	c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2008-01-04 14:05	17648	----a-w-	c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2008-01-04 14:05	214256	----a-w-	c:\windows\system32\muweb.dll
2012-06-02 13:18 . 2008-01-04 14:05	275696	----a-w-	c:\windows\system32\mucltui.dll
2012-05-31 13:19 . 2004-08-18 12:00	602624	----a-w-	c:\windows\system32\crypt32.dll
2004-10-01 14:00 . 2007-11-14 13:39	40960	----a-w-	c:\program files\Uninstall_CDS.exe
.
.
((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2008-07-16 1266992]
"{687578b9-7132-4a7a-80e4-30ee31099e03}"= "c:\program files\uTorrentControl2\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
.
[HKEY_CLASSES_ROOT\clsid\{687578b9-7132-4a7a-80e4-30ee31099e03}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
2011-05-09 08:49	176936	----a-w-	c:\program files\uTorrentControl2\prxtbuTor.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{687578b9-7132-4a7a-80e4-30ee31099e03}"= "c:\program files\uTorrentControl2\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{687578b9-7132-4a7a-80e4-30ee31099e03}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{687578B9-7132-4A7A-80E4-30EE31099E03}"= "c:\program files\uTorrentControl2\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{687578b9-7132-4a7a-80e4-30ee31099e03}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2010-08-25 14:36	70264	----a-w-	c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-02-24 68856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DiskeeperSystray"="c:\program files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [2006-02-24 196709]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"CRBroadCasting"="c:\program files\CardReader2.0\CRBroadCasting.exe" [2004-02-26 24576]
"mouseElf"="c:\progra~1\TWINTO~1\MouseElf.EXE" [2004-11-16 196608]
"WService"="WService.EXE" [2002-09-07 28672]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-01-10 385024]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-18 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-18 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-18 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-18 455168]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-09-11 2054360]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-05-15 15504192]
"NvMediaCenter"="NvMCTray.dll" [2012-05-15 108352]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2012-05-15 1634112]
"IntelAudioStudio"="c:\program files\Intel Audio Studio\IntelAudioStudio.exe" [2006-12-06 9138176]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabdka Start\Programy\Po sputn\
Philips Device Manager.lnk - c:\program files\Philips\SA28XX Device Manager\main.exe [2008-11-26 7971634]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Nabdka Start\Programy\Po sputn\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Veronika^Nabdka Start^Programy^Po sputn^OpenOffice.org 2.4.lnk]
path=c:\documents and settings\Veronika\Nabdka Start\Programy\Po sputn\OpenOffice.org 2.4.lnk
backup=c:\windows\pss\OpenOffice.org 2.4.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2008-10-14 20:38	623992	----a-w-	c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0EYTHM]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-02-02 17:18	135664	----atw-	c:\documents and settings\Veronika\Local Settings\Data aplikac\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
2005-07-08 14:25	1397760	------w-	c:\program files\Ahead\InCD\InCD.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 09:50	155648	----a-w-	c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage]
2002-06-03 10:38	49152	----a-w-	c:\program files\ScanSoft\OmniPageSE\opware32.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-06-09 11:06	254696	----a-w-	c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2008-02-24 20:07	68856	----a-w-	c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2008-01-28 19:29	185896	----a-w-	c:\program files\Common Files\Real\Update_OB\realsched.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Software602\\602SQL11\\602gcli11.exe"=
"c:\\Program Files\\Common Files\\Adobe\\Adobe Version Cue CS3\\Server\\bin\\VersionCueCS3.exe"=
"c:\\Program Files\\Zend\\ZendStudio-5.5.0\\jre\\bin\\javaw.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Apteryx\\Apteryx Imaging\\DrSuni.exe"=
"c:\\xampp\\apache\\bin\\apache.exe"=
"c:\\Program Files\\miranda\\miranda32.exe"=
"c:\\Program Files\\VPN Anonymizer\\privoxy\\VPN_Anonymizer_webfilter.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\KVIrc\\kvirc.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Documents and Settings\\Veronika\\Dokumenty\\ICQ\\440036354\\ReceivedFiles\\320411275 ?? ?? ???~\\?????.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Documents and Settings\\Veronika\\Plocha\\?????.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Mass Effect 2\\Binaries\\MassEffect2.exe"=
"c:\\Program Files\\Mass Effect 2\\MassEffect2Launcher.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikac\\NexonUS\\NGM\\NGM.exe"=
"c:\\Program Files\\Pidgin\\pidgin.exe"=
"d:\\Verca\\TERA\\TERA-Launcher.exe"=
"d:\\Verca\\Mass Effect 3 rLD\\Mass Effect 3\\Binaries\\Win32\\MassEffect3.exe"=
"d:\\Verca\\AC2\\AssassinsCreedIIGame.exe"=
"d:\\Verca\\AC2\\AssassinsCreedII.exe"=
"d:\\Verca\\AC2\\UPlayBrowser.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Opera\\pluginwrapper\\opera_plugin_wrapper.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Engine\\Sony Ericsson Update Engine.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"d:\\Verca\\ACB\\ACBSP.exe"=
"d:\\Verca\\ACB\\ACBMP.exe"=
"d:\\Verca\\ACB\\AssassinsCreedBrotherhood.exe"=
"d:\\Verca\\ACB\\UPlayBrowser.exe"=
"c:\documents and settings\Veronika\Plocha\?????.exe"= 
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3703:TCP"= 3703:TCP:Adobe Version Cue CS3 Server
"3704:TCP"= 3704:TCP:Adobe Version Cue CS3 Server
"50900:TCP"= 50900:TCP:Adobe Version Cue CS3 Server
"50901:TCP"= 50901:TCP:Adobe Version Cue CS3 Server
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"6112:TCP"= 6112:TCP:wow
"6881:TCP"= 6881:TCP:wow02
"18926:TCP"= 18926:TCP:BitComet 18926 TCP
"18926:UDP"= 18926:UDP:BitComet 18926 UDP
"58226:TCP"= 58226:TCP:*:Disabled:Pando Media Booster
"58226:UDP"= 58226:UDP:*:Disabled:Pando Media Booster
"57190:TCP"= 57190:TCP:*:Disabled:Pando Media Booster
"57190:UDP"= 57190:UDP:*:Disabled:Pando Media Booster
"57693:TCP"= 57693:TCP:*:Disabled:Pando Media Booster
"57693:UDP"= 57693:UDP:*:Disabled:Pando Media Booster
"57847:TCP"= 57847:TCP:Pando Media Booster
"57847:UDP"= 57847:UDP:Pando Media Booster
"58634:TCP"= 58634:TCP:Pando Media Booster
"58634:UDP"= 58634:UDP:Pando Media Booster
"3389:TCP"= 3389:TCP:Remote Desktop
"65533:TCP"= 65533:TCP:Services
"52344:TCP"= 52344:TCP:Services
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [29.6.2008 18:55 721904]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [11.9.2009 8:23 108792]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [11.9.2009 8:26 96408]
R2 Apache2.2;Apache2.2;c:\xampp\apache\bin\apache.exe [21.9.2007 0:29 17408]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [11.9.2009 8:24 735960]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [15.10.2008 22:17 222456]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [13.3.2012 20:41 1262400]
R3 tap0901_2gm;VPN Anonymizer Adapter;c:\windows\system32\drivers\tap0901_2gm.sys [21.6.2007 17:21 30720]
S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikac\Skype\Toolbars\Skype C2C Service\c2c_service.exe [5.7.2012 18:41 3048136]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [5.4.2012 11:37 158856]
S2 XAMPP;XAMPP Service;c:\xampp\service.exe [23.10.2006 15:24 60928]
S3 cpuz130;cpuz130;\??\c:\docume~1\Veronika\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> c:\docume~1\Veronika\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 dj6e8bn0.sys;dj6e8bn0.sys;\??\c:\windows\system32\drivers\dj6e8bn0.sys --> c:\windows\system32\drivers\dj6e8bn0.sys [?]
S3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [14.11.2007 17:46 6656]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [10.8.2012 20:53 13224]
S3 IDMTDI;IDMTDI;c:\windows\system32\DRIVERS\idmtdi.sys --> c:\windows\system32\DRIVERS\idmtdi.sys [?]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [29.6.2007 2:01 42512]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 SE31bus;Sony Ericsson Device 049 Driver driver (WDM);c:\windows\system32\drivers\SE31bus.sys [19.11.2007 13:52 61600]
S3 SE31mdfl;Sony Ericsson Device 049 USB WMC Modem Filter;c:\windows\system32\drivers\SE31mdfl.sys [19.11.2007 13:53 9360]
S3 SE31mdm;Sony Ericsson Device 049 USB WMC Modem Driver;c:\windows\system32\drivers\SE31mdm.sys [19.11.2007 13:53 97184]
S3 SE31mgmt;Sony Ericsson Device 049 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\SE31mgmt.sys [19.11.2007 13:54 88688]
S3 se31nd5;Sony Ericsson Device 049 USB Ethernet Emulation SEMC49 (NDIS);c:\windows\system32\drivers\se31nd5.sys [19.11.2007 13:56 18704]
S3 SE31obex;Sony Ericsson Device 049 USB WMC OBEX Interface;c:\windows\system32\drivers\SE31obex.sys [19.11.2007 13:54 86560]
S3 se31unic;Sony Ericsson Device 049 USB Ethernet Emulation SEMC49 (WDM);c:\windows\system32\drivers\se31unic.sys [19.11.2007 13:55 90800]
S3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2.8.2012 19:34 155320]
S3 UfasoftSnifDriver4;Ufasoft Snif Driver v4;c:\program files\Ufasoft\Sniffer\usft_sn4.sys [29.3.2008 17:02 23600]
S3 VSPerfDrv90;Performance Tools Driver 9.0;c:\program files\Microsoft Visual Studio 9.0\Team Tools\Performance Tools\VSPerfDrv90.sys [4.9.2007 17:53 55664]
.
Obsah adrese 'Naplnovan lohy'
.
2012-08-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 15:57]
.
.
------- Doplkov sken -------
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.centrum.cz/?ms=ge
uInternet Connection Wizard,ShellNext = hxxp://gmail.com/
uInternet Settings,ProxyServer = 187.4.205.90:8080
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm
IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikac\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
IE: {{141D2E4F-F313-4991-B61A-EE5D6D849361} - http://bleskove.centrum.cz
IE: {{2A5CFB1C-AAA2-4760-8462-1B61CF74B7D8} - http://www.centrum.cz
IE: {{2BCB61BF-DC41-4738-A149-BDAAAD7FF0BD} - http://www.xchat.cz
IE: {{2E01031B-AB09-4455-823D-25F1A1C11F48} - http://aktualne.centrum.cz
IE: {{2F741D0A-150E-40F9-A602-1B2421475F1D} - http://slovniky.centrum.cz
IE: {{309176E6-E204-40A0-8D13-7F19C0498C40} - http://www.supermapy.cz
IE: {{49681216-5BF4-41A2-AAFA-129A6BD625DA} - http://mp3.centrum.cz/
IE: {{8B6E8E01-D262-4980-8C27-B8B2802285C1} - http://www.zena.cz
IE: {{8FD64249-590C-4FBC-B181-12A6BAF516AF} - http://www.fotoalba.cz
IE: {{A5050656-2286-454F-A489-C605ED1B461C} - http://pocasi.centrum.cz
IE: {{BC78516C-9DC9-40C5-A91E-74593222EF89} - http://sportplus.centrum.cz
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Veronika\Nabdka Start\Programy\IMVU\Run IMVU.lnk
IE: {{DAE865E8-970E-4931-A172-119CB56BBAF5} - http://www.digitalne.cz/
IE: {{ECC5777A-6E88-BFCE-13CE-81F134789E7B} - c:\program files\Refresher 1.2\Refresher
IE: {{FC29EB7D-EDBA-4299-AEE4-D1BDC70EFA15} - http://www.stahuj.cz/
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
TCP: DhcpNameServer = 192.168.1.1
.
.
------- Asociace soubor -------
.
txtfile="c:\program files\PSPad editor\PSPad.exe" "%1"
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -
.
BHO-{11D54ACE-09A9-11D4-8ACE-00C04F542830} - (no file)
BHO-{FC7D27FB-CA10-4CE3-B312-8A164671FD03} - (no file)
HKLM-Run-CmUsbSound - cmcnfgu.cpl
HKLM-Run-SysTrayApp - c:\program files\IDT\WDM\sttray.exe
HKLM-Run-SigmatelSysTrayApp - sttray.exe
AddRemove-Darkness 2 Repack - d:\verca\VictorVal\Darkness 2 Repack\Desinstalar.exe
AddRemove-Fallout Collection - d:\111_verca\Fallout\Fallout Collection_Uninst.exe
AddRemove-Fallout Mod Manager_is1 - d:\111_verca\Fallout.3.Full-Rip.Skullptura\Fallout 3\fomm\uninstall\unins000.exe
AddRemove-Guild Wars 2 - d:\verca\GW2\Guild Wars 2\Gw2.exe
AddRemove-Mozilla Firefox (3.6.10) - c:\program files\Mozilla Firefox 3 Beta 1\uninstall\helper.exe
AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe
AddRemove-Syndicate_is1 - d:\verca\Syndicate\Syndicate\unins000.exe
AddRemove-The Secret World_is1 - d:\verca\Secret World\The Secret World\unins000.exe
AddRemove-Winamp Toolbar for Firefox - c:\documents and settings\Veronika\Data aplikac\Mozilla\Firefox\Profiles\mhamfw5p.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe
AddRemove-_{05D60953-9012-44DF-A1A6-9DD97AD6580A} - c:\program files\Corel\Corel Painter X\MSILauncher {05D60953-9012-44DF-A1A6-9DD97AD6580A}
AddRemove-{D85A387E-6EC0-40E5-9D89-A148B3E93968}_is1 - d:\111_verca\filmy\Mass Effect 2\Uninstall\unins000.exe
AddRemove-NCsoft-Aion - c:\program files\NCSoft\Launcher\NCLauncher.exe
AddRemove-NCsoft-AionEU - d:\111_verca\NCSoft\Launcher\NCLauncher.exe
AddRemove-Tunnelers - d:\111_verca\Tunnelers\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-16 14:29
Windows 5.1.2600 Service Pack 3 NTFS
.
skenovn skrytch proces ...  
.
skenovn skrytch poloek 'Po sputn' ... 
.
skenovn skrytch soubor ...  
.
sken byl spen dokonen
skryt soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Knihovny navzan na bc procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1036)
c:\windows\system32\Ati2evxx.dll
.
Celkov as: 2012-08-16  14:31:48
ComboFix-quarantined-files.txt  2012-08-16 12:31
.
Ped sputnm: Volnch bajt: 27394510848
Po sputn: Volnch bajt: 35003875328
.
- - End Of File - - 58C43B32DC3A930BAA46159AFAA838C3
