Tak tu je log a mimochodom, krásne vianoce vám želám
ComboFix 09-12-22.03 - Darkness . 12. 2009 11:25:09.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1024.666 [GMT 1:00]
Running from: i:\documents and settings\Darkness\Desktop\ComboFix.exe
Command switches used :: i:\documents and settings\Darkness\Desktop\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
file zipped: i:\documents and settings\Darkness\Application Data\Thinstall\Deep Shredder 11 UCI\40000019700003i\EngineDeepShredder11UCI.exe
file zipped: i:\windows\Internet Logs\xDB1.tmp
file zipped: i:\windows\Internet Logs\xDB2.tmp
file zipped: i:\windows\Internet Logs\xDB3.tmp
file zipped: i:\windows\system32\nfsClock03.scr
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
i:\documents and settings\Darkness\Application Data\Thinstall\Deep Shredder 11 UCI\40000019700003i\EngineDeepShredder11UCI.exe
i:\windows\Internet Logs\xDB1.tmp
i:\windows\Internet Logs\xDB2.tmp
i:\windows\Internet Logs\xDB3.tmp
i:\windows\system32\nfsClock03.scr
i:\windows\system32\drivers\etc\lmhosts . . . . failed to delete
.
((((((((((((((((((((((((( Files Created from 2009-11-24 to 2009-12-24 )))))))))))))))))))))))))))))))
.
2009-12-23 12:03 . 2009-12-23 12:07 -------- d-----w- i:\program files\Counter-Strike
2009-12-20 16:18 . 2009-12-20 16:18 -------- d-----w- i:\documents and settings\Darkness\Application Data\HP
2009-12-19 19:30 . 2009-12-19 19:30 -------- d-----w- i:\documents and settings\Darkness\Application Data\GRETECH
2009-12-18 20:02 . 2009-12-18 20:03 -------- d-----w- i:\windows\system32\drivers\UMDF
2009-12-18 20:02 . 2009-12-18 20:02 -------- d-----w- i:\windows\system32\LogFiles
2009-12-18 20:00 . 2009-12-18 20:00 12212040 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
2009-12-18 20:00 . 2009-12-18 20:00 13930312 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
2009-12-18 20:00 . 2009-12-18 20:00 77824 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2009-12-18 20:00 . 2009-12-18 20:00 61440 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx86.exe
2009-12-18 20:00 . 2009-12-18 20:00 58880 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx64.exe
2009-12-18 20:00 . 2009-12-18 20:00 50000 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\pcswpc.exe
2009-12-18 19:57 . 2009-12-18 19:56 95992424 ----a-w- i:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Nokia_Ovi_Suite_PCS_Update.exe
2009-12-18 19:57 . 2009-12-18 19:57 -------- d-----w- i:\program files\Nokia
2009-12-18 19:57 . 2009-12-18 19:57 -------- d-----w- i:\documents and settings\All Users\Application Data\OviInstallerCache
2009-12-18 19:12 . 2009-12-19 19:27 -------- d-----w- i:\program files\MarkWord
2009-12-18 07:36 . 2008-08-26 08:26 18816 ----a-w- i:\windows\system32\drivers\pccsmcfd.sys
2009-12-18 07:36 . 2009-12-18 07:36 -------- d-----w- i:\program files\PC Connectivity Solution
2009-12-18 07:34 . 2009-12-18 07:07 33863976 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_slk.exe
2009-12-18 07:34 . 2009-12-18 07:34 95232 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
2009-12-18 07:34 . 2009-12-18 07:34 8192 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
2009-12-18 07:34 . 2009-12-18 07:34 61440 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-12-18 07:34 . 2009-12-18 07:34 10240 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
2009-12-15 18:59 . 2009-12-19 19:27 -------- d-----w- i:\documents and settings\Darkness\Application Data\Notepad++
2009-12-15 16:27 . 2009-12-15 16:27 -------- d-----w- I:\_OTM
2009-12-14 10:14 . 2009-12-14 10:15 -------- d-----w- i:\program files\trend micro
2009-12-13 19:23 . 2009-12-13 19:24 -------- d-----w- i:\windows\system32\NtmsData
2009-12-13 19:19 . 2009-12-13 19:19 -------- d--h--w- i:\windows\system32\GroupPolicy
2009-12-13 15:09 . 2009-12-13 15:09 7168 ----a-w- i:\documents and settings\Darkness\Application Data\Thinstall\Deep Shredder 11 UCI\4000009f00003i\iechess.dll
2009-12-13 15:09 . 2009-12-13 15:09 -------- d-----w- i:\documents and settings\Darkness\Application Data\Thinstall
2009-12-13 14:52 . 2009-12-13 14:52 -------- d-----w- i:\documents and settings\Darkness\Local Settings\Application Data\Christofer_Persson
2009-12-13 14:52 . 2009-12-13 14:52 -------- d-----w- i:\documents and settings\Darkness\Application Data\vlc
2009-12-13 14:36 . 2009-12-13 14:36 30 ----a-w- i:\windows\mscpt.dat
2009-12-13 11:51 . 2009-12-13 11:51 -------- d-----w- i:\documents and settings\Darkness\Application Data\Sachy
2009-12-09 20:58 . 2009-12-09 20:58 -------- d-----w- i:\program files\Samsung
2009-12-09 20:58 . 2002-04-25 09:19 9164 ----a-w- i:\windows\system32\drivers\OPTMOUUF.SYS
2009-12-09 20:58 . 2002-04-25 09:19 9152 ----a-w- i:\windows\system32\drivers\optmoupf.sys
2009-12-09 20:58 . 2001-05-08 11:02 45056 ----a-w- i:\windows\system32\OPTMOUSE.EXE
2009-12-09 20:58 . 2001-05-08 11:00 577536 ----a-w- i:\windows\system32\Optmoucp.dll
2009-12-09 20:58 . 2001-05-08 10:58 86016 ----a-w- i:\windows\system32\OPTMOUSE.DLL
2009-12-07 13:09 . 2009-12-07 13:09 -------- d-----w- i:\program files\ODEON
2009-12-07 10:17 . 2006-08-29 14:56 32377 ----a-w- i:\windows\system32\drivers\prodigy.sys
2009-12-05 18:37 . 2009-12-06 14:24 -------- d-----w- i:\documents and settings\Darkness\Application Data\Nokia
2009-12-05 18:37 . 2009-12-06 14:21 -------- d-----w- i:\documents and settings\Darkness\Application Data\PC Suite
2009-12-05 18:31 . 2009-02-09 07:37 7808 ----a-w- i:\windows\system32\drivers\usbser_lowerfltj.sys
2009-12-05 18:31 . 2009-02-09 07:37 7808 ----a-w- i:\windows\system32\drivers\usbser_lowerflt.sys
2009-12-05 18:31 . 2009-02-09 07:37 22016 ----a-w- i:\windows\system32\drivers\ccdcmbo.sys
2009-12-05 18:31 . 2009-02-09 07:37 659968 ----a-w- i:\windows\system32\nmwcdcocls.dll
2009-12-05 18:31 . 2009-02-09 07:37 17664 ----a-w- i:\windows\system32\drivers\ccdcmb.sys
2009-12-05 18:31 . 2009-02-09 07:32 1112288 ----a-w- i:\windows\system32\wdfcoinstaller01007.dll
2009-12-05 18:31 . 2009-12-05 17:44 33911376 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_slk_web.exe
2009-12-05 18:31 . 2009-12-05 18:31 95232 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe
2009-12-05 18:31 . 2009-12-05 18:31 61440 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-12-05 18:31 . 2009-12-05 18:31 10240 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe
2009-12-05 18:31 . 2009-12-05 18:31 8192 ----a-w- i:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe
2009-12-05 09:38 . 2009-12-05 09:38 -------- dc-h--w- i:\documents and settings\All Users\Application Data\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
2009-12-05 09:38 . 2009-10-02 17:59 3254528 -c--a-w- i:\documents and settings\All Users\Application Data\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe
2009-12-05 09:37 . 2009-12-05 09:37 -------- d-----w- i:\documents and settings\Darkness\Local Settings\Application Data\PackageAware
2009-12-05 09:33 . 2009-12-05 09:33 -------- d-----w- i:\documents and settings\Darkness\Application Data\Stardock
2009-12-05 09:33 . 2009-12-05 09:37 -------- dc-h--w- i:\documents and settings\All Users\Application Data\{E94FD7CC-6945-4744-99C3-9BFF40AA2F24}
2009-12-05 09:33 . 2009-02-04 16:53 2755296 -c----w- i:\documents and settings\All Users\Application Data\{E94FD7CC-6945-4744-99C3-9BFF40AA2F24}\Fences.exe
2009-12-05 08:55 . 2009-12-24 10:56 -------- d-----w- i:\documents and settings\Darkness\.rainlendar2
2009-12-04 19:34 . 2009-12-19 22:21 -------- d-----w- i:\documents and settings\Darkness\Local Settings\Application Data\AnVir
2009-12-04 19:33 . 2009-12-04 19:33 -------- d-----w- i:\program files\Karen's Power Tools
2009-12-04 19:33 . 2009-12-04 19:33 -------- d-----w- i:\documents and settings\All Users\Application Data\Karen's Power Tools
2009-12-02 15:45 . 2009-12-13 14:46 -------- d-----w- i:\documents and settings\Darkness\Application Data\r2 Studios
2009-12-02 14:30 . 2009-12-02 14:41 -------- d-----w- i:\program files\Miranda pack by sssugi 2.2.1
2009-12-02 13:16 . 2009-12-02 13:16 -------- d-----w- i:\documents and settings\Darkness\Local Settings\Application Data\Identities
2009-12-02 12:57 . 2009-12-02 12:57 -------- d-----w- i:\program files\Partition Wizard Home Edition 4.2
2009-12-02 12:56 . 2009-12-02 12:56 -------- d-----w- i:\program files\NewFreeScreensavers
2009-12-01 16:02 . 2009-12-01 16:02 -------- d-----w- i:\documents and settings\Darkness\Local Settings\Application Data\Stardock
2009-11-30 12:54 . 2009-09-04 16:44 515416 ----a-w- i:\windows\system32\XAudio2_5.dll
2009-11-30 12:54 . 2009-09-04 16:44 238936 ----a-w- i:\windows\system32\xactengine3_5.dll
2009-11-30 12:54 . 2009-09-04 16:29 5501792 ----a-w- i:\windows\system32\d3dcsx_42.dll
2009-11-30 12:54 . 2009-09-04 16:29 1974616 ----a-w- i:\windows\system32\D3DCompiler_42.dll
2009-11-30 12:54 . 2009-09-04 16:29 235344 ----a-w- i:\windows\system32\d3dx11_42.dll
2009-11-30 12:54 . 2009-09-04 16:29 453456 ----a-w- i:\windows\system32\d3dx10_42.dll
2009-11-30 12:53 . 2009-09-04 16:29 1892184 ----a-w- i:\windows\system32\D3DX9_42.dll
2009-11-27 16:17 . 2009-11-27 16:17 -------- d-----w- i:\documents and settings\LocalService\Application Data\McAfee
2009-11-27 16:12 . 2009-11-27 16:12 -------- d-----w- i:\program files\Common Files\McAfee
2009-11-27 16:11 . 2009-12-18 07:02 -------- d-----w- i:\program files\McAfee
2009-11-27 16:11 . 2009-11-27 16:12 -------- d-----w- i:\documents and settings\All Users\Application Data\McAfee
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-24 10:34 . 2009-12-03 13:03 4803874 ----a-w- i:\windows\Internet Logs\tvDebug.Zip
2009-12-24 10:22 . 2009-10-26 20:36 -------- d-----w- i:\documents and settings\Darkness\Application Data\Skype
2009-12-24 09:49 . 2009-10-26 20:37 -------- d-----w- i:\documents and settings\Darkness\Application Data\skypePM
2009-12-23 14:40 . 2009-09-14 08:05 -------- d-----w- i:\program files\USDownloader135
2009-12-23 12:11 . 2009-12-23 13:34 17408 ----a-w- i:\windows\Internet Logs\xDB6.tmp
2009-12-23 12:11 . 2009-12-23 13:34 1726464 ----a-w- i:\windows\Internet Logs\xDB7.tmp
2009-12-23 12:08 . 2009-12-23 12:09 114688 ----a-w- i:\windows\Internet Logs\xDB4.tmp
2009-12-23 12:08 . 2009-12-23 12:09 1725952 ----a-w- i:\windows\Internet Logs\xDB5.tmp
2009-12-23 08:53 . 2008-12-28 11:28 -------- d---a-w- i:\documents and settings\All Users\Application Data\TEMP
2009-12-19 17:22 . 2009-10-27 19:31 -------- d-----w- i:\documents and settings\Darkness\Application Data\dvdcss
2009-12-18 07:07 . 2009-01-24 16:34 -------- d-----w- i:\documents and settings\All Users\Application Data\Installations
2009-12-13 19:44 . 2009-10-26 21:00 27032 ----a-w- i:\documents and settings\Darkness\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 20:58 . 2008-10-07 17:21 -------- d--h--w- i:\program files\InstallShield Installation Information
2009-12-08 19:29 . 2009-10-15 10:57 56816 ----a-w- i:\windows\system32\drivers\avgntflt.sys
2009-12-05 18:32 . 2009-01-24 16:39 -------- d-----w- i:\program files\DIFX
2009-12-02 13:33 . 2009-12-02 13:33 -------- d-----w- i:\documents and settings\Darkness\Application Data\CheckPoint
2009-12-02 13:33 . 2009-12-02 13:33 -------- d-----w- i:\program files\CheckPoint
2009-12-02 13:33 . 2009-11-17 19:18 4212 ---ha-w- i:\windows\system32\zllictbl.dat
2009-12-02 13:33 . 2009-12-02 13:33 -------- d-----w- i:\program files\Zone Labs
2009-12-02 13:16 . 2008-12-28 11:28 -------- d-----w- i:\program files\Your Uninstaller 2008
2009-11-30 12:54 . 2009-11-30 12:54 2316 ----a-w- i:\documents and settings\All Users\Application Data\xml5B.tmp
2009-11-30 12:54 . 2009-11-30 12:54 13490 ----a-w- i:\documents and settings\All Users\Application Data\xml5A.tmp
2009-11-30 12:54 . 2009-11-30 12:54 4675 ----a-w- i:\documents and settings\All Users\Application Data\xml59.tmp
2009-11-23 11:44 . 2009-09-06 16:03 -------- d-----w- i:\program files\Opera
2009-11-22 14:42 . 2009-12-02 13:33 1238408 ----a-w- i:\windows\system32\zpeng25.dll
2009-11-22 14:42 . 2009-12-02 13:33 69000 ----a-w- i:\windows\system32\zlcomm.dll
2009-11-22 14:42 . 2009-12-02 13:33 103816 ----a-w- i:\windows\system32\zlcommdb.dll
2009-11-22 13:35 . 2009-11-22 13:35 -------- d-----w- i:\documents and settings\Darkness\Application Data\Media Player Classic
2009-11-17 17:51 . 2009-11-17 17:51 -------- d-----w- i:\documents and settings\Darkness\Application Data\TweakNow RegCleaner
2009-11-15 11:32 . 2009-11-15 11:32 152576 ----a-w- i:\documents and settings\Darkness\Application Data\Sun\Java\jre1.6.0_17\lzma.dll
2009-11-15 11:32 . 2009-11-15 11:32 79488 ----a-w- i:\documents and settings\Darkness\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-11-14 17:40 . 2009-11-14 17:40 -------- d-----w- i:\documents and settings\Darkness\Application Data\BSplayer Pro
2009-11-13 16:11 . 2009-11-13 16:11 -------- d-----w- i:\documents and settings\Darkness\Application Data\IrfanView
2009-11-11 20:34 . 2009-11-11 20:27 -------- d-----w- i:\documents and settings\Darkness\Application Data\MxBoost
2009-11-11 20:29 . 2009-11-11 20:29 0 ----a-w- i:\windows\system32\cid_store.dat
2009-11-11 12:13 . 2009-06-15 15:43 -------- d-----r- i:\program files\Skype
2009-11-11 10:16 . 2009-11-10 21:28 364040 --sha-w- i:\windows\system32\drivers\fidbox.idx
2009-11-11 10:16 . 2009-11-10 21:28 30883872 --sha-w- i:\windows\system32\drivers\fidbox.dat
2009-11-10 14:08 . 2009-11-07 19:55 -------- d-----w- i:\documents and settings\Darkness\Application Data\DivX
2009-11-10 11:42 . 2009-11-10 11:42 -------- d-----w- i:\program files\Common Files\Skype
2009-11-10 11:42 . 2009-06-15 15:43 -------- d-----w- i:\documents and settings\All Users\Application Data\Skype
2009-11-07 19:54 . 2009-11-07 19:53 -------- d-----w- i:\program files\Common Files\DivX Shared
2009-11-07 07:13 . 2009-11-06 17:10 -------- d-----w- i:\documents and settings\Darkness\Application Data\ChessBase
2009-11-06 20:05 . 2009-11-06 20:05 -------- d-----w- i:\program files\Your Company Name
2009-11-06 20:05 . 2008-10-07 17:11 -------- d-----w- i:\program files\Common Files\InstallShield
2009-11-06 20:03 . 2009-11-06 20:03 -------- d-----w- i:\program files\Common Files\CHESSBASE
2009-11-03 19:04 . 2009-10-30 08:21 -------- d-----w- i:\documents and settings\Darkness\Application Data\DAEMON Tools
2009-11-03 16:13 . 2009-10-11 11:23 -------- d-----w- i:\program files\CDBurnerXP
2009-11-02 13:22 . 2009-11-02 13:22 -------- d-----w- i:\documents and settings\Darkness\Application Data\Canneverbe_Limited
2009-10-30 08:24 . 2009-10-30 08:24 -------- d-----w- i:\program files\Microsoft.NET
2009-10-29 18:09 . 2009-10-29 18:09 -------- d-----w- i:\documents and settings\Darkness\Application Data\Launchy
2009-10-26 19:57 . 2009-10-26 19:57 -------- d-----w- i:\documents and settings\Darkness\Application Data\URSoft
2009-10-11 11:20 . 2009-10-11 11:20 2272 ----a-w- i:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-10-11 03:17 . 2009-10-20 13:50 411368 ----a-w- i:\windows\system32\deploytk.dll
2009-10-06 16:56 . 2009-04-26 11:02 737280 ----a-w- i:\windows\iun6002.exe
2009-10-06 10:52 . 2009-01-24 16:38 91136 ----a-w- i:\windows\system32\nmwcdcls.dll
2009-10-01 19:26 . 2009-10-01 19:26 50672 ----a-w- i:\windows\system32\KarenWareInet.exe
2009-09-28 19:57 . 2009-10-11 11:23 7168 ----a-w- i:\windows\system32\drivers\StarOpen.sys
2009-09-25 16:42 . 2009-11-07 19:54 120056 ----a-w- i:\windows\system32\pxcpyi64.exe
2009-09-25 16:42 . 2009-11-07 19:54 118520 ----a-w- i:\windows\system32\pxinsi64.exe
2009-09-25 16:41 . 2009-09-25 16:41 90112 ----a-w- i:\windows\system32\dpl100.dll
2009-09-25 16:41 . 2009-09-25 16:41 856064 ----a-w- i:\windows\system32\divx_xx0c.dll
2009-09-25 16:41 . 2009-09-25 16:41 856064 ----a-w- i:\windows\system32\divx_xx07.dll
2009-09-25 16:41 . 2009-09-25 16:41 847872 ----a-w- i:\windows\system32\divx_xx0a.dll
2009-09-25 16:41 . 2009-09-25 16:41 843776 ----a-w- i:\windows\system32\divx_xx16.dll
2009-09-25 16:41 . 2009-09-25 16:41 839680 ----a-w- i:\windows\system32\divx_xx11.dll
2009-09-25 16:41 . 2009-09-25 16:41 696320 ----a-w- i:\windows\system32\DivX.dll
2009-09-25 16:41 . 2009-09-25 16:41 1044480 ----a-w- i:\program files\mozilla firefox\plugins\libdivx.dll
2009-09-25 16:41 . 2009-09-25 16:41 200704 ----a-w- i:\program files\mozilla firefox\plugins\ssldivx.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-12-23_10.53.48 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-12-24 10:34 . 2009-12-24 10:34 16384 i:\windows\Temp\Perflib_Perfdata_684.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AnVir Task Manager Free"="j:\program files\AnVir Task Manager Free\AnVir.exe" [2009-12-03 1709792]
"Rainlendar2"="j:\program files\Rainlendar2\Rainlendar2.exe" [2009-08-22 5148672]
"PC Suite Tray"="j:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-11-11 1451520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CnxDslTaskBar"="i:\program files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe Microcom\ADSL DeskPorte USB" [X]
"LVCOMSX"="i:\windows\system32\LVCOMSX.EXE" [2004-10-08 221184]
"Smapp"="i:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"ATIPTA"="i:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-09-11 335872]
"HP Software Update"="i:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 49152]
"avgnt"="i:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"SunJavaUpdateSched"="j:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"ZoneAlarm Client"="i:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2009-11-22 1037192]
"ISW"="i:\program files\CheckPoint\ZAForceField\ForceField.exe" [2009-10-14 730480]
"OPTMOUSEMOUSE"="i:\windows\system32\optmouse.exe" [2001-05-08 45056]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="i:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
i:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - i:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "j:\program files\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"i:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"i:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"i:\\Program Files\\Opera\\opera.exe"=
"i:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;i:\program files\Avira\AntiVir Desktop\sched.exe [15. 10. 2009 11:57 108289]
R2 ISWKL;ZoneAlarm Toolbar ISWKL;i:\program files\CheckPoint\ZAForceField\ISWKL.sys [14. 10. 2009 14:30 25208]
R2 IswSvc;ZoneAlarm Toolbar IswSvc;i:\program files\CheckPoint\ZAForceField\ISWSVC.exe [14. 10. 2009 14:30 476528]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;i:\progra~1\mcafee\SITEAD~1\mcsacore.exe [27. 11. 2009 17:11 93320]
R3 CnxEtP;Conexant AccessRunner USB ADSL Adapter Filter Driver;i:\windows\system32\drivers\CnxEtP.sys [7. 10. 2008 18:29 131072]
R3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;i:\windows\system32\drivers\CnxEtU.sys [7. 10. 2008 18:29 614272]
R3 CnxTgNP;Conexant AccessRunner ADSL WAN PPPoE Adapter Driver;i:\windows\system32\drivers\CnxTgNP.sys [7. 10. 2008 18:29 60416]
R3 optmoupf;Samsung OptMouse PS2 Filter Driver;i:\windows\system32\drivers\optmoupf.sys [9. 12. 2009 21:58 9152]
S3 PRODIGY;PRODIGY;i:\windows\system32\drivers\prodigy.sys [7. 12. 2009 11:17 32377]
S4 sptd;sptd;i:\windows\system32\Drivers\sptd.sys --> i:\windows\system32\Drivers\sptd.sys [?]
.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = hxxp://
www.disk-tools.com/download/daemon
IE: E&xportovať do programu Microsoft Excel - j:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - i:\documents and settings\Darkness\Application Data\Mozilla\Firefox\Profiles\rc0h7faf.default\
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://
www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=mcafee&p=
FF - component: i:\program files\McAfee\SiteAdvisor\components\McFFPlg.dll
FF - component: j:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - plugin: i:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: i:\program files\Mozilla Firefox\plugins\NPAskSBr.dll
FF - plugin: j:\program files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll
FF - plugin: j:\program files\DivX\DivX Player\npDivxPlayerPlugin.dll
FF - plugin: j:\program files\DivX\DivX Web Player\npdivx32.dll
FF - plugin: j:\program files\Java\jre6\bin\new_plugin\npdeploytk.dll
FF - plugin: j:\program files\Java\jre6\bin\new_plugin\npjp2.dll
---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: content.notify.backoffcount - 5
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.cache.memory.capacity - 65536i:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2009-12-24 11:55
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-1491950412-2009852829-4049741679-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID]
@Denied: (Full) (LocalSystem)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(660)
i:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
- - - - - - - > 'lsass.exe'(716)
i:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
- - - - - - - > 'explorer.exe'(2492)
i:\windows\system32\SHDOCVW.dll
i:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
j:\program files\AnVir Task Manager Free\AnvirHook62.dll
i:\progra~1\mcafee\SITEAD~1\saHook.dll
i:\windows\system32\OPTMOUSE.DLL
i:\windows\system32\WPDShServiceObj.dll
j:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
j:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
j:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_slk.nlr
j:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
j:\program files\Stardock\Fences\FencesMenu.dll
j:\program files\stardock\fences\DesktopDock.dll
i:\windows\system32\PortableDeviceTypes.dll
i:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
i:\program files\Avira\AntiVir Desktop\avguard.exe
j:\program files\Java\jre6\bin\jqs.exe
i:\program files\CDBurnerXP\NMSAccessU.exe
i:\program files\Analog Devices\SoundMAX\SMAgent.exe
i:\windows\system32\rundll32.exe
i:\windows\system32\wscntfy.exe
i:\program files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe
i:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
i:\program files\PC Connectivity Solution\ServiceLayer.exe
i:\program files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
i:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
i:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
.
**************************************************************************
.
Completion time: 2009-12-24 12:00:47 - machine was rebooted
ComboFix-quarantined-files.txt 2009-12-24 11:00
ComboFix2.txt 2009-12-23 10:57
Pre-Run: 879 337 472 bytes free
Post-Run: 859 021 312 bytes free
- - End Of File - - 0E14D107B7C266CB682135F0AB32E0E7
Zazálohujte si důležitá data, pro jistotu 
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - 
:
Přispějete na provoz fóra?