Dobrý deň, mám problém s USB portami, z ničoho nič mi prestanú fungovať USB porty. Väčšinou pomôže restart PC a potom nejakú dobu fungujú. Niekedy stačí zapojiť/vypojiť jedno, dve USB zariadenia (zapojím, vypojím USB DVD mechaniku) a porty znova vypadnú, prejaví sa to tak, že PC sa tvári, že tam USB kľúč, mechanika, HDD nie je, alebo ho nevie rozpoznať a nedokáže nainštalovať ovládače. A podobný problém mám aj s novou PCMCIA kartou, nedokáže nainštalovať ovládače. Ďakujem za každú radu.
PC som prebehol spybot-om - nepomohlo
ESET - nenašiel žiadny vírus
----LOG----
Logfile of random's system information tool 1.07 (written by random/random)
Run by gaspariks at 2010-05-07 16:56:14
Microsoft Windows XP Professional Service Pack 3
System drive C: has 3 GB (5%) free of 69 GB
Total RAM: 1015 MB (24% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:56, on 2010-05-07
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\IFXTCS.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\KeyboardSurrogate.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe
C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\IFXSPMGT.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\SYSTEM32\WISPTIS.EXE
C:\WINDOWS\System32\tabbtnu.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ProtectTools\Embedded Security Software\PSDrt.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\TCServer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
D:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
C:\Program Files\DrayTek\Vigor318 ADSL\CnxDslTb.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\My Lockbox\flockbox.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Creative\Software Update 3\SoftAuto.exe
C:\Documents and Settings\gaspariks\Application Data\QipGuard\QipGuard.exe
C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Update\1.2.183.23\GoogleCrashHandler.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\SaveSnap\SaveSnap.exe
C:\Program Files\Creative\Software Update 3\SoftU.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\QIP Infium\infium.exe
C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
c:\Downloads\RSIT.exe
C:\Program Files\trend micro\gaspariks.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.hp.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 10.0.0.10:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\gaspariks\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget2 urlcatch - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\gaspariks\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [TabletWizard] C:\WINDOWS\help\SplshWrp.exe
O4 - HKLM\..\Run: [TabletTip] "C:\Program Files\Common Files\microsoft shared\ink\tabtip.exe" /resume
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "D:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\DrayTek\Vigor318 ADSL\CnxDslTb.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [flockbox] C:\Program Files\My Lockbox\flockbox.exe /a
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "c:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [FinePrint Dispečér v5] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [UVS10 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SoftAuto.exe] "C:\Program Files\Creative\Software Update 3\SoftAuto.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Documents and Settings\gaspariks\Application Data\QipGuard\QipGuard.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: SaveSnap.lnk = C:\Program Files\SaveSnap\SaveSnap.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Download All by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
O8 - Extra context menu item: &Download by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Prevziať pomocou FDM - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Prevziať video pomocou FDM - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Prevziať vybrané pomocou FDM - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Prevziať všetko pomocou FDM - file://C:\Program Files\Free Download Manager\dlall.htm
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF269~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http:\\intranet
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7354736218
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = zssturmy.sk
O17 - HKLM\Software\..\Telephony: DomainName = zssturmy.sk
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = zssturmy.sk
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: EMP_NSWLSV - SEIKO EPSON CORPORATION - C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe
O23 - Service: EMP_UDSA - Unknown owner - C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\IFXSPMGT.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\IFXTCS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe (file missing)
--
End of file - 16736 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{79499DBE-B16C-4236-98F8-79D3DD3D3556}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F364306-AA45-47B5-9F9D-39A8B94E7EF1}]
FG2CatchUrl - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll [2008-08-19 104016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\gaspariks\Application Data\Microsoft\Internet Explorer\qipsearchbar.dll [2009-06-17 119808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll [2008-05-25 734704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TabletWizard"=C:\WINDOWS\help\SplshWrp.exe [2008-04-14 16384]
"TabletTip"=C:\Program Files\Common Files\microsoft shared\ink\tabtip.exe [2008-04-14 271872]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-17 49152]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-09-15 1015808]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-02-14 454656]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-03-07 131072]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-02-22 40960]
"Recguard"=C:\WINDOWS\Sminst\Recguard.exe [2005-12-21 1187840]
"DAEMON Tools-1033"=D:\Program Files\D-Tools\daemon.exe [2003-10-02 81920]
"CnxDslTaskBar"=C:\Program Files\DrayTek\Vigor318 ADSL\CnxDslTb.exe [2004-05-06 516096]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-02-06 2021400]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"=C:\Program Files\Google\Gmail Notifier\gnotify.exe [2005-07-15 479232]
"flockbox"=C:\Program Files\My Lockbox\flockbox.exe [2007-12-14 1071472]
"QuickTime Task"=C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe [2009-05-26 413696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"PTHOSTTR"=C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE [2006-02-14 122880]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"AdobeCS4ServiceManager"=c:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"FinePrint Dispečér v5"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe [2008-03-05 516096]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-08-20 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-08-20 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-08-20 137752]
"UVS10 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe [2006-03-07 36864]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SoftAuto.exe"=C:\Program Files\Creative\Software Update 3\SoftAuto.exe [2008-08-13 405504]
"Google Update"=C:\Documents and Settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 133104]
"QIP Internet Guardian"=C:\Documents and Settings\gaspariks\Application Data\QipGuard\QipGuard.exe [2010-04-12 184272]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-28 2329936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-01-28 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulohy]
c:\Program Files\Doklady\DokladyUlohy.Exe [2006-10-22 165888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^eBeam Interact.lnk]
C:\PROGRA~1\Luidia\EBEAMI~1\EBEAMI~1.EXE [2006-09-05 2506752]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\gaspariks\Start Menu\Programs\Startup
SaveSnap.lnk - C:\Program Files\SaveSnap\SaveSnap.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IfxWlxEN]
C:\WINDOWS\system32\IfxWlxEN.dll [2005-08-19 389120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\loginkey]
C:\Program Files\Common Files\Microsoft Shared\Ink\loginkey.dll [2008-04-14 47104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\TabBtnWL]
C:\WINDOWS\system32\TabBtnWL.dll [2002-08-29 11776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tpgwlnotify]
C:\WINDOWS\system32\tpgwlnot.dll [2008-04-14 32256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSimpleStartMenu"=1
"NoDriveAutoRun"=67108863
"NoRun"=0
"NoViewContextMenu"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=
"NoViewContextMenu"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Stando\EA GAMES\UOAM\uoam.exe"="C:\Stando\EA GAMES\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool."
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{261d6f8b-098d-11df-b8c0-001b3835fa35}]
shell\AutoRun\command - G:\c2e.exe
shell\open\command - G:\c2e.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{425bca04-9d18-11de-b7e3-001b3835fa35}]
shell\AutoRun\command - G:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5d52f03a-b341-11de-b80e-001a6bb9af04}]
shell\AutoRun\command - G:\6ruaqx.exe
shell\open\command - G:\6ruaqx.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{60bb3592-5bcc-11de-b795-001b77989c8f}]
shell\AutoRun\command - H:\fk.exe
shell\open\command - H:\fk.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{74e7d5ea-1b30-11dd-b599-001b77989c8f}]
shell\AutoRun\command - G:\kmj.exe
shell\open\command - G:\kmj.exe
======File associations======
.bat - edit - %SystemRoot%\System32\NOTEPAD.EXE %1"
.ini - open - %SystemRoot%\System32\NOTEPAD.EXE %1"
======List of files/folders created in the last 1 months======
2010-05-07 16:56:14 ----D---- C:\rsit
2010-05-06 14:28:36 ----D---- C:\Documents and Settings\gaspariks\Application Data\Ulead Systems
2010-05-06 14:09:44 ----D---- C:\Program Files\SmartSound Software
2010-05-06 14:06:22 ----D---- C:\Program Files\Ulead Systems
2010-04-26 10:56:57 ----D---- C:\Program Files\Jalbum
2010-04-26 10:54:34 ----D---- C:\Program Files\Microsoft
2010-04-26 10:54:18 ----D---- C:\Program Files\Windows Live SkyDrive
2010-04-26 10:54:00 ----D---- C:\Program Files\Windows Live
2010-04-26 10:53:28 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-04-26 10:49:01 ----D---- C:\Program Files\Common Files\Windows Live
2010-04-26 10:30:36 ----D---- C:\Program Files\Glenlay Gallery
2010-04-26 09:45:42 ----D---- C:\Documents and Settings\All Users\Application Data\Arclab
2010-04-26 09:44:52 ----D---- C:\Program Files\Arclab
2010-04-24 04:57:34 ----A---- C:\WINDOWS\crywmvtoavi.ini
2010-04-24 04:56:39 ----D---- C:\Program Files\Crystal Software
2010-04-23 08:19:45 ----D---- C:\Program Files\Photo Story 3 for Windows
2010-04-16 17:41:32 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2010-04-16 17:41:29 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2010-04-09 10:17:58 ----D---- C:\Temp
2010-04-09 10:14:54 ----D---- C:\Program Files\MP4Converter
======List of files/folders modified in the last 1 months======
2010-05-07 16:56:24 ----D---- C:\Program Files\trend micro
2010-05-07 16:56:21 ----D---- C:\WINDOWS\temp
2010-05-07 16:53:14 ----D---- C:\Downloads
2010-05-07 16:53:14 ----A---- C:\WINDOWS\WINCMD.INI
2010-05-07 16:32:20 ----D---- C:\WINDOWS\system32\CatRoot2
2010-05-07 16:29:53 ----SD---- C:\WINDOWS\Tasks
2010-05-07 16:29:42 ----D---- C:\WINDOWS
2010-05-07 16:27:07 ----D---- C:\WINDOWS\system32
2010-05-07 16:25:33 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-05-07 16:07:12 ----D---- C:\Stando
2010-05-07 14:49:03 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-05-07 14:03:52 ----D---- C:\WINDOWS\Prefetch
2010-05-07 03:15:53 ----A---- C:\WINDOWS\winamp.ini
2010-05-06 23:16:53 ----A---- C:\WINDOWS\Marias.ini
2010-05-06 22:30:57 ----SHD---- C:\WINDOWS\CSC
2010-05-06 15:48:08 ----D---- C:\SwSetup
2010-05-06 14:12:33 ----HD---- C:\WINDOWS\inf
2010-05-06 14:09:49 ----SHD---- C:\WINDOWS\Installer
2010-05-06 14:09:49 ----SHD---- C:\Config.Msi
2010-05-06 14:09:49 ----HD---- C:\Program Files\InstallShield Installation Information
2010-05-06 14:09:45 ----D---- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
2010-05-06 14:09:44 ----RD---- C:\Program Files
2010-05-06 14:06:52 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2010-05-06 14:06:28 ----D---- C:\Program Files\Common Files\Ulead Systems
2010-05-06 14:06:22 ----D---- C:\Documents and Settings\All Users\Application Data\Ulead Systems
2010-05-06 13:32:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-05-06 11:29:18 ----A---- C:\WINDOWS\win.ini
2010-05-06 09:48:46 ----D---- C:\WINDOWS\security
2010-05-03 16:12:32 ----D---- C:\Program Files\Mozilla Firefox
2010-05-01 15:24:45 ----D---- C:\WINDOWS\Debug
2010-05-01 01:00:19 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-04-29 10:23:06 ----D---- C:\Program Files\Internet Explorer
2010-04-27 14:56:46 ----D---- C:\Program Files\Doklady
2010-04-27 11:57:42 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2010-04-27 09:56:12 ----RSD---- C:\WINDOWS\Fonts
2010-04-26 10:54:23 ----SD---- C:\Documents and Settings\gaspariks\Application Data\Microsoft
2010-04-26 10:54:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-04-26 10:54:08 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-04-26 10:53:47 ----D---- C:\WINDOWS\system32\DirectX
2010-04-26 10:53:28 ----RSD---- C:\WINDOWS\assembly
2010-04-26 10:49:01 ----D---- C:\Program Files\Common Files
2010-04-26 08:05:46 ----D---- C:\Zaloha
2010-04-24 04:10:29 ----D---- C:\Program Files\MediaCell Video Converter
2010-04-20 15:40:19 ----D---- C:\Documents and Settings\gaspariks\Application Data\Spyware Terminator
2010-04-20 05:30:23 ----A---- C:\WINDOWS\NeroDigital.ini
2010-04-19 13:30:57 ----A---- C:\Log.txt
2010-04-18 03:25:33 ----D---- C:\Documents and Settings\gaspariks\Application Data\Adobe
2010-04-16 20:53:28 ----D---- C:\WINDOWS\system32\drivers
2010-04-16 17:41:32 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2010-04-16 14:58:24 ----D---- C:\WINDOWS\system32\Adobe
2010-04-16 14:58:23 ----D---- C:\WINDOWS\system32\Macromed
2010-04-16 14:58:23 ----D---- C:\Documents and Settings\gaspariks\Application Data\Macromedia
2010-04-16 14:55:01 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-04-16 08:57:27 ----D---- C:\Documents and Settings
2010-04-16 08:54:54 ----D---- C:\napalit
2010-04-16 00:12:45 ----D---- C:\Program Files\Spyware Terminator
2010-04-16 00:12:33 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-04-15 11:02:24 ----D---- C:\Program Files\QIP Infium
2010-04-14 13:11:43 ----D---- C:\Documents and Settings\gaspariks\Application Data\QipGuard
2010-04-13 23:43:28 ----RSHD---- C:\WINDOWS\system32\dllcache
2010-04-13 23:43:18 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-13 23:36:07 ----D---- C:\WINDOWS\ie8updates
2010-04-12 12:03:16 ----D---- C:\Documents and Settings\gaspariks\Application Data\Zoner
2010-04-12 12:01:00 ----D---- C:\Program Files\Zoner
2010-04-08 13:41:27 ----D---- C:\Documents and Settings\gaspariks\Application Data\BITS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
R1 EMP_MAP;EPSON Network Presentation Driver Service; C:\WINDOWS\system32\DRIVERS\EMP_Map.sys [2006-05-31 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD; C:\WINDOWS\system32\DRIVERS\EMP_UDMm.sys [2006-05-31 6400]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-02-06 56280]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2005-10-25 35488]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-02-06 130952]
R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2004-08-04 63232]
R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2004-08-04 55936]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2006-11-08 62336]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-10-17 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-10-01 281600]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2006-01-30 1120352]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2006-03-11 130048]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2006-01-12 142720]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-02-27 1342602]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 EMP_Mirr;EMP_Mirr; C:\WINDOWS\system32\DRIVERS\EMP_Mirr.sys [2006-05-31 6272]
R3 EMP_UDMR;EMP_UDMR; C:\WINDOWS\system32\DRIVERS\EMP_UDMr.sys [2006-04-25 6272]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-02-06 33096]
R3 genmcmnUSB;USB Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gflmouhid.sys [2003-08-07 6528]
R3 GTIPCI21;GTIPCI21; C:\WINDOWS\system32\DRIVERS\gtipci21.sys [2006-02-28 87808]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2005-06-10 35968]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MQAC;Message Queuing access control; \??\C:\WINDOWS\system32\drivers\mqac.sys []
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-17 3636864]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RMCAST;Reliable Multicast Protocol driver; \??\C:\WINDOWS\system32\drivers\RMCast.sys []
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-08-17 35913]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-09-15 213696]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-11-30 162560]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 vdisp;vdisp; C:\WINDOWS\system32\DRIVERS\EMP_Vd1.sys [2005-04-03 6656]
R3 WacomISDPen;Wacom Penabled HID MiniDriver; C:\WINDOWS\system32\DRIVERS\wacomisdpen.sys [2005-07-14 23936]
S1 HMFAxCore46691b2fe72383a3b643d95081ef1d95;HMFAxCore46691b2fe72383a3b643d95081ef1d95; \??\C:\WINDOWS\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys []
S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2006-02-27 401664]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-02-27 30363]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-02-27 148168]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-02-27 57096]
S3 catchme;catchme; \??\C:\DOCUME~1\GASPAR~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CnxEtP;Conexant AccessRunner USB ADSL WAN Adapter Filter Driver; C:\WINDOWS\system32\DRIVERS\CnxEtP.sys [2004-04-28 60288]
S3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver; C:\WINDOWS\system32\DRIVERS\CnxEtU.sys [2004-04-28 646400]
S3 CnxTgN;Conexant AccessRunner USB ADSL WAN Adapter Driver; C:\WINDOWS\system32\DRIVERS\CnxTgN.sys [2004-04-29 108771]
S3 CrystalSysInfo;CrystalSysInfo; \??\c:\Program Files\MediaCoder\SysInfo.sys []
S3 Dot4;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-17 23808]
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-12-15 25280]
S3 LSDRVA;StarBoard FX-DUO Light Sensor USB Driver (lsdrva.sys); C:\WINDOWS\System32\Drivers\lsdrva.sys [2008-01-21 20992]
S3 LVHybrid;LVHybrid service; C:\WINDOWS\system32\DRIVERS\LVHybrid.sys [2007-09-04 660992]
S3 motccgp;Motorola USB Composite Device Driver; C:\WINDOWS\system32\DRIVERS\motccgp.sys [2009-06-19 19712]
S3 motccgpfl;MotCcgpFlService; C:\WINDOWS\system32\DRIVERS\motccgpfl.sys [2009-01-29 8320]
S3 MotDev;Motorola Inc. USB Device; C:\WINDOWS\system32\DRIVERS\motodrv.sys [2009-05-08 42752]
S3 motmodem;Motorola USB CDC ACM Driver; C:\WINDOWS\system32\DRIVERS\motmodem.sys [2009-01-29 23680]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nm;Network Monitor Driver; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\WINDOWS\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\WINDOWS\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\WINDOWS\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNPT513;PC Camera (6025 VGA); C:\WINDOWS\system32\DRIVERS\snpt513.sys [2003-09-05 183040]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-01-19 1428096]
S3 WacomPen;Wacom Serial Pen HID Driver; C:\WINDOWS\system32\DRIVERS\wacompen.sys [2008-04-13 14208]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-08-09 611664]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-22 116040]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2006-12-28 122512]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-02-27 258103]
R2 CTDevice_Srv;CT Device Query service; C:\Program Files\Creative\Shared Files\CTDevSrv.exe [2007-04-02 61440]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 EMP_NSWLSV;EMP_NSWLSV; C:\Program Files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2006-10-27 94208]
R2 EMP_UDSA;EMP_UDSA; C:\Program Files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2006-05-30 94208]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-03-15 135168]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\IFXSPMGT.exe [2006-01-10 458752]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\IFXTCS.exe [2005-09-02 647168]
R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-02-18 73728]
R2 PersonalSecureDriveService;Personal Secure Drive Service; C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE [2005-08-19 173600]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-04-16 488960]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 MSMQ;Message Queuing; C:\WINDOWS\system32\mqsvc.exe [2008-04-14 4608]
S2 MSMQTriggers;Message Queuing Triggers; C:\WINDOWS\system32\mqtgsvc.exe [2008-04-14 117248]
S2 PCA;PC Angel; C:\WINDOWS\SMINST\PCAngel.exe [2006-01-12 294912]
S2 Ventrilo;Ventrilo; C:\Program Files\VentSrv\ventrilo_svc.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-10-18 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 CTUPnPSv;Creative Centrale Media Server; C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-02-06 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-02-27 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-08-17 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
"Vypadávanie" usb portov, (nefungujúce USB porty)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Zdravim
no mas tam vsetko mozne;
1:
no mas tam vsetko mozne;
1:
2:Stiahnes>>Malwarebytes' Anti-Malware stiahnut-nainstalovat -aktualizovat-
sprav komplet skan,co najde ZMAZ,log vloz sem,
Pripoj USB-Kluce a nechaj pripojene.
Stiahni na plochu UsbFix
-spust>>zvol Jazyk E-[enter]
-stlac 2-[enter]>po skane log vloz sem
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Skvelé, už po prvom kroku nabehli USB-čka a aj PCMCIA karta, moc ďakujem.
Mohol by som ešte poprosiť o jednu vec, po zapnutí PC, mi vždy nabehne chybová hláška
obrázok zde
----LOG 1----
Malwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org
Verzia databázy: 4075
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2010-05-07 17:51:37
mbam-log-2010-05-07 (17-51-37).txt
Typ kontroly: Rýchla kontrola
Objektov kontrolovaných: 152108
Uplynulý čas: 11 min, 25 sek
Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 2
Infikované súbory: 2
Infikované služby pamäte:
(Škodlivé položky neboli zistené)
Infikované moduly pamäte:
(Škodlivé položky neboli zistené)
Infikované registračné kľúče:
(Škodlivé položky neboli zistené)
Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)
Infikované položky registračných dát:
(Škodlivé položky neboli zistené)
Infikované priečinky:
C:\WINDOWS\system32\76682F (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ACF7EF (Worm.AutoRun) -> Quarantined and deleted successfully.
Infikované súbory:
C:\WINDOWS\system32\76682F\670df5.txt (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\76682F\6a0d8f.txt (Worm.AutoRun) -> Quarantined and deleted successfully.
----LOG 2----
############################## | UsbFix V6.111 |
User : gaspariks () # NBTABLET
Update on 03/05/2010 by El Desaparecido , C_XX & Chimay8
Start at: 18:07:57 | 2010-05-07
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz
Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : ESET Smart Security 4.0 4.0 [ Enabled | Updated ]
FW : Norton Internet Worm Protection[ (!) Disabled ]2006
FW : ESET personal firewall[ Enabled ]4.0.314.0
FW : Norton Internet Security 2006[ Enabled ]2006
C:\ -> Local Fixed Disk # 67.78 Go (3.05 Go free) # NTFS
D:\ -> Local Fixed Disk # 6.74 Go (720.37 Mo free) [HP_RECOVERY] # FAT32
E:\ -> CD-ROM Disc
F:\ -> CD-ROM Disc
G:\ -> Local Fixed Disk # 97.66 Go (510.72 Mo free) [Western Digital - Nun] # NTFS
H:\ -> Removable Disk # 983.7 Mo (982.56 Mo free) [APACER NUN] # FAT
I:\ -> CD-ROM Disc
J:\ -> Local Fixed Disk # 51.39 Go (13.12 Go free) [WD] # NTFS
################## | Files # Infected Folders |
Deleted ! C:\log.txt
Deleted ! C:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! G:\$Recycle.Bin\S-1-5-21-1909811920-519948977-2443923349-1000
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1127
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1152
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1178
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! G:\Recycler\S-1-5-21-1482476501-1343024091-299746227-1003
Deleted ! G:\Recycler\S-1-5-21-1606980848-1214440339-682003330-1003
Deleted ! G:\Recycler\S-1-5-21-1844237615-1425521274-725345543-500
Deleted ! G:\Recycler\S-1-5-21-1957994488-1715567821-725345543-500
Deleted ! G:\Recycler\S-1-5-21-1960408961-1767777339-839522115-1003
Deleted ! G:\Recycler\S-1-5-21-343818398-115176313-725345543-1003
Deleted ! G:\Recycler\S-1-5-21-842925246-2025429265-1801674531-1003
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1127
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1152
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1178
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! J:\Recycler\S-1-5-21-1844237615-1425521274-725345543-500
Deleted ! J:\Recycler\S-1-5-21-1957994488-162531612-839522115-500
Deleted ! J:\Recycler\S-1-5-21-1960408961-1767777339-839522115-1003
Deleted ! J:\Recycler\S-1-5-21-343818398-115176313-725345543-1003
Deleted ! J:\Recycler\S-1-5-21-842925246-2025429265-1801674531-1003
################## | Registry |
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoChangeStartMenu"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoResolveSearch"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRun"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoViewContextMenu"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoViewContextMenu"
################## | Mountpoints2 |
Deleted ! HKCU\...\Explorer\MountPoints2\{261d6f8b-098d-11df-b8c0-001b3835fa35}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{425bca04-9d18-11de-b7e3-001b3835fa35}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{5d52f03a-b341-11de-b80e-001a6bb9af04}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{60bb3592-5bcc-11de-b795-001b77989c8f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{74e7d5ea-1b30-11dd-b599-001b77989c8f}\Shell\AutoRun\Command
################## | Listing of the present files |
[2008-07-01 20:24|--a------|95] C:\AUTOEXEC.BAT
[2008-09-09 10:27|--a------|49600668] C:\boot cd, image.nrg
[2007-08-27 14:09|-rahs----|211] C:\boot.ini
[2002-04-15 10:18|---------|24] C:\cb002rku.cat
[2002-04-15 10:18|---------|24] C:\cb002rwu.cat
[2004-01-20 16:18|---------|183248] C:\CnxAdslH.chm
[2004-05-06 17:14|---------|274432] C:\CnxAdslL.exe
[2001-10-03 15:08|---------|118784] C:\CnxClsCo.dll
[2004-05-06 18:01|---------|516096] C:\CnxDslTb.exe
[2004-04-29 19:59|---------|430080] C:\CnxDslWz.dll
[2003-12-23 12:36|--a------|35454] C:\CnxDunI.ico
[2004-04-28 19:47|---------|60288] C:\CnxEtP.sys
[2004-04-28 19:48|---------|646400] C:\CnxEtU.sys
[2004-04-29 08:56|---------|163840] C:\CnxHwIo.dll
[2002-08-06 15:59|---------|118784] C:\CnxMfdCo.dll
[2004-04-29 08:51|---------|108771] C:\CnxTgN.sys
[2004-05-06 17:16|---------|237568] C:\CnxUnist.exe
[2004-05-06 20:37|---------|9354] C:\CxtCB00U.inf
[2001-12-06 09:59|---------|3824] C:\CxtClsCo.inf
[2004-05-06 20:37|---------|33588] C:\CxtRmNC.inf
[2000-06-26 11:37|---------|43] C:\DISK1
[2008-11-10 13:18|--a------|62] C:\error.txt
[2009-01-29 11:35|--a------|100864] C:\glew32.dll
[?|?|?] C:\hiberfil.sys
[2007-10-27 21:35|-rahs----|0] C:\IO.SYS
[2008-07-21 09:27|--a------|60] C:\ioAskNo.ini
[2009-07-30 11:24|--a------|69] C:\ioY.ini
[2007-10-27 21:35|-rahs----|0] C:\MSDOS.SYS
[2004-08-04 10:00|-rahs----|47564] C:\ntdetect.com
[2008-08-22 22:45|-rahs----|250048] C:\ntldr
[2008-04-28 00:09|--ah-----|668] C:\os049389.bin
[?|?|?] C:\pagefile.sys
[2009-01-28 15:25|--a------|17408] C:\psapi.dll
[2007-01-30 21:12|--a------|209513] C:\QIP-lngUpe.exe
[2002-09-23 16:42|---------|24] C:\RmN2rkw.cat
[2002-09-23 16:42|---------|24] C:\RmN2rww.cat
[2010-05-07 16:54|---h-----|87656] C:\treeinfo.wc
[2010-05-07 18:14|--a------|5771] C:\UsbFix.txt
[2001-07-27 23:07|---hs----|0] D:\AUTOEXEC.BAT
[2002-01-09 12:52|---hs----|244] D:\BOOT.INI
[2001-08-17 02:26|---hs----|237728] D:\CMLDR
[2001-07-27 23:07|---hs----|0] D:\CONFIG.SYS
[2004-11-22 17:28|---hs----|8130] D:\Folder.htt
[2004-11-30 13:01|---hs----|73728] D:\Info.exe
[2001-07-27 23:07|---hs----|0] D:\IO.SYS
[2005-06-21 19:22|---hs----|0] D:\MENUND
[2001-07-27 23:07|---hs----|0] D:\MSDOS.SYS
[2001-07-25 15:00|---hs----|45124] D:\NTDETECT.COM
[2001-06-19 00:53|---hs----|0] D:\NTFS
[2001-07-25 15:00|---hs----|222880] D:\NTLDR
[2002-09-10 12:50|---hs----|181651] D:\protect.ed
[2005-07-28 21:09|---hs----|36] D:\SAVEFILE.DIR
[2005-10-21 12:12|---hs----|42] D:\st_log.ini
[2002-02-08 17:44|---hs----|88038] D:\Warning.bmp
[2001-05-24 04:19|---hs----|0] D:\XGA
[2001-08-18 11:00|---hs----|10] D:\WIN51
[2001-01-22 11:00|---hs----|11] D:\WIN51.B2
[2001-07-25 11:00|---hs----|11] D:\WIN51.RC1
[2001-07-25 16:47|---hs----|11] D:\WIN51.RC2
[2001-08-18 11:00|---hs----|10] D:\WIN51IC
[2001-03-20 11:00|---hs----|11] D:\WIN51IC.B2
[2001-07-25 11:00|---hs----|11] D:\WIN51IC.RC1
[2001-07-25 11:00|---hs----|11] D:\WIN51IC.RC2
[2001-08-17 11:00|---hs----|10] D:\WIN51IP
[2001-01-22 11:00|---hs----|11] D:\WIN51IP.B2
[2001-07-25 16:47|---hs----|11] D:\WIN51IP.RC2
[2001-08-17 09:17|---hs----|184] D:\WINBOM.INI
[2008-01-17 08:14|--ahs----|1230] D:\MASTER.LOG
[2009-12-22 06:12|--a------|84992] G:\guildovne hry.xls
[2008-02-01 01:48|--a------|2548736] G:\hardware.doc
[2008-03-12 15:36|--a------|1481472] G:\infolinka_rozbite_valce_v_telefonu.mp3
[2007-01-18 11:54|--a------|740864] G:\Krstne mena.doc
[2004-05-14 13:20|--a------|44032] G:\Rady pre dom cnosś.shs
[2000-12-21 23:34|--a------|82756] G:\UnrealT.ttf
[2007-07-19 07:02|--a------|473473] G:\vyplnenie seku.pdf
[2010-01-29 13:00|--a------|28160] G:\zivotopis.doc
[2004-05-30 23:09|-r-hs----|45182] H:\KERNEL.SYS
[2008-07-09 17:03|--a------|1048576] H:\68YHV.BIN
[2006-03-23 11:29|--a------|53] H:\config.sys
[2002-08-16 06:59|--a------|18353] H:\gpl2.txt
[2007-03-12 10:21|-r-hs----|49015] H:\Rompaq.exe
[2010-04-25 04:49|---------|2806] J:\bootex.log
[2009-08-08 03:14|--a------|607435048] J:\UCM.rar
################## | Vaccination |
# C:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# D:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# G:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# H:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# J:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
################## | Upload |
Please send the file : C:\UsbFix_Upload_Me_ZSSTURMY.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .
################## | ! End of report # UsbFix V6.111 ! |
Mohol by som ešte poprosiť o jednu vec, po zapnutí PC, mi vždy nabehne chybová hláška
obrázok zde
----LOG 1----
Malwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org
Verzia databázy: 4075
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2010-05-07 17:51:37
mbam-log-2010-05-07 (17-51-37).txt
Typ kontroly: Rýchla kontrola
Objektov kontrolovaných: 152108
Uplynulý čas: 11 min, 25 sek
Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 2
Infikované súbory: 2
Infikované služby pamäte:
(Škodlivé položky neboli zistené)
Infikované moduly pamäte:
(Škodlivé položky neboli zistené)
Infikované registračné kľúče:
(Škodlivé položky neboli zistené)
Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)
Infikované položky registračných dát:
(Škodlivé položky neboli zistené)
Infikované priečinky:
C:\WINDOWS\system32\76682F (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ACF7EF (Worm.AutoRun) -> Quarantined and deleted successfully.
Infikované súbory:
C:\WINDOWS\system32\76682F\670df5.txt (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\76682F\6a0d8f.txt (Worm.AutoRun) -> Quarantined and deleted successfully.
----LOG 2----
############################## | UsbFix V6.111 |
User : gaspariks () # NBTABLET
Update on 03/05/2010 by El Desaparecido , C_XX & Chimay8
Start at: 18:07:57 | 2010-05-07
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz
Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : ESET Smart Security 4.0 4.0 [ Enabled | Updated ]
FW : Norton Internet Worm Protection[ (!) Disabled ]2006
FW : ESET personal firewall[ Enabled ]4.0.314.0
FW : Norton Internet Security 2006[ Enabled ]2006
C:\ -> Local Fixed Disk # 67.78 Go (3.05 Go free) # NTFS
D:\ -> Local Fixed Disk # 6.74 Go (720.37 Mo free) [HP_RECOVERY] # FAT32
E:\ -> CD-ROM Disc
F:\ -> CD-ROM Disc
G:\ -> Local Fixed Disk # 97.66 Go (510.72 Mo free) [Western Digital - Nun] # NTFS
H:\ -> Removable Disk # 983.7 Mo (982.56 Mo free) [APACER NUN] # FAT
I:\ -> CD-ROM Disc
J:\ -> Local Fixed Disk # 51.39 Go (13.12 Go free) [WD] # NTFS
################## | Files # Infected Folders |
Deleted ! C:\log.txt
Deleted ! C:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! G:\$Recycle.Bin\S-1-5-21-1909811920-519948977-2443923349-1000
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1127
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1152
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1178
Deleted ! G:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! G:\Recycler\S-1-5-21-1482476501-1343024091-299746227-1003
Deleted ! G:\Recycler\S-1-5-21-1606980848-1214440339-682003330-1003
Deleted ! G:\Recycler\S-1-5-21-1844237615-1425521274-725345543-500
Deleted ! G:\Recycler\S-1-5-21-1957994488-1715567821-725345543-500
Deleted ! G:\Recycler\S-1-5-21-1960408961-1767777339-839522115-1003
Deleted ! G:\Recycler\S-1-5-21-343818398-115176313-725345543-1003
Deleted ! G:\Recycler\S-1-5-21-842925246-2025429265-1801674531-1003
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1127
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1152
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1178
Deleted ! J:\Recycler\S-1-5-21-1039189978-529690843-3723799258-1271
Deleted ! J:\Recycler\S-1-5-21-1844237615-1425521274-725345543-500
Deleted ! J:\Recycler\S-1-5-21-1957994488-162531612-839522115-500
Deleted ! J:\Recycler\S-1-5-21-1960408961-1767777339-839522115-1003
Deleted ! J:\Recycler\S-1-5-21-343818398-115176313-725345543-1003
Deleted ! J:\Recycler\S-1-5-21-842925246-2025429265-1801674531-1003
################## | Registry |
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoChangeStartMenu"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoResolveSearch"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRun"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoViewContextMenu"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoViewContextMenu"
################## | Mountpoints2 |
Deleted ! HKCU\...\Explorer\MountPoints2\{261d6f8b-098d-11df-b8c0-001b3835fa35}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{425bca04-9d18-11de-b7e3-001b3835fa35}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{5d52f03a-b341-11de-b80e-001a6bb9af04}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{60bb3592-5bcc-11de-b795-001b77989c8f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{74e7d5ea-1b30-11dd-b599-001b77989c8f}\Shell\AutoRun\Command
################## | Listing of the present files |
[2008-07-01 20:24|--a------|95] C:\AUTOEXEC.BAT
[2008-09-09 10:27|--a------|49600668] C:\boot cd, image.nrg
[2007-08-27 14:09|-rahs----|211] C:\boot.ini
[2002-04-15 10:18|---------|24] C:\cb002rku.cat
[2002-04-15 10:18|---------|24] C:\cb002rwu.cat
[2004-01-20 16:18|---------|183248] C:\CnxAdslH.chm
[2004-05-06 17:14|---------|274432] C:\CnxAdslL.exe
[2001-10-03 15:08|---------|118784] C:\CnxClsCo.dll
[2004-05-06 18:01|---------|516096] C:\CnxDslTb.exe
[2004-04-29 19:59|---------|430080] C:\CnxDslWz.dll
[2003-12-23 12:36|--a------|35454] C:\CnxDunI.ico
[2004-04-28 19:47|---------|60288] C:\CnxEtP.sys
[2004-04-28 19:48|---------|646400] C:\CnxEtU.sys
[2004-04-29 08:56|---------|163840] C:\CnxHwIo.dll
[2002-08-06 15:59|---------|118784] C:\CnxMfdCo.dll
[2004-04-29 08:51|---------|108771] C:\CnxTgN.sys
[2004-05-06 17:16|---------|237568] C:\CnxUnist.exe
[2004-05-06 20:37|---------|9354] C:\CxtCB00U.inf
[2001-12-06 09:59|---------|3824] C:\CxtClsCo.inf
[2004-05-06 20:37|---------|33588] C:\CxtRmNC.inf
[2000-06-26 11:37|---------|43] C:\DISK1
[2008-11-10 13:18|--a------|62] C:\error.txt
[2009-01-29 11:35|--a------|100864] C:\glew32.dll
[?|?|?] C:\hiberfil.sys
[2007-10-27 21:35|-rahs----|0] C:\IO.SYS
[2008-07-21 09:27|--a------|60] C:\ioAskNo.ini
[2009-07-30 11:24|--a------|69] C:\ioY.ini
[2007-10-27 21:35|-rahs----|0] C:\MSDOS.SYS
[2004-08-04 10:00|-rahs----|47564] C:\ntdetect.com
[2008-08-22 22:45|-rahs----|250048] C:\ntldr
[2008-04-28 00:09|--ah-----|668] C:\os049389.bin
[?|?|?] C:\pagefile.sys
[2009-01-28 15:25|--a------|17408] C:\psapi.dll
[2007-01-30 21:12|--a------|209513] C:\QIP-lngUpe.exe
[2002-09-23 16:42|---------|24] C:\RmN2rkw.cat
[2002-09-23 16:42|---------|24] C:\RmN2rww.cat
[2010-05-07 16:54|---h-----|87656] C:\treeinfo.wc
[2010-05-07 18:14|--a------|5771] C:\UsbFix.txt
[2001-07-27 23:07|---hs----|0] D:\AUTOEXEC.BAT
[2002-01-09 12:52|---hs----|244] D:\BOOT.INI
[2001-08-17 02:26|---hs----|237728] D:\CMLDR
[2001-07-27 23:07|---hs----|0] D:\CONFIG.SYS
[2004-11-22 17:28|---hs----|8130] D:\Folder.htt
[2004-11-30 13:01|---hs----|73728] D:\Info.exe
[2001-07-27 23:07|---hs----|0] D:\IO.SYS
[2005-06-21 19:22|---hs----|0] D:\MENUND
[2001-07-27 23:07|---hs----|0] D:\MSDOS.SYS
[2001-07-25 15:00|---hs----|45124] D:\NTDETECT.COM
[2001-06-19 00:53|---hs----|0] D:\NTFS
[2001-07-25 15:00|---hs----|222880] D:\NTLDR
[2002-09-10 12:50|---hs----|181651] D:\protect.ed
[2005-07-28 21:09|---hs----|36] D:\SAVEFILE.DIR
[2005-10-21 12:12|---hs----|42] D:\st_log.ini
[2002-02-08 17:44|---hs----|88038] D:\Warning.bmp
[2001-05-24 04:19|---hs----|0] D:\XGA
[2001-08-18 11:00|---hs----|10] D:\WIN51
[2001-01-22 11:00|---hs----|11] D:\WIN51.B2
[2001-07-25 11:00|---hs----|11] D:\WIN51.RC1
[2001-07-25 16:47|---hs----|11] D:\WIN51.RC2
[2001-08-18 11:00|---hs----|10] D:\WIN51IC
[2001-03-20 11:00|---hs----|11] D:\WIN51IC.B2
[2001-07-25 11:00|---hs----|11] D:\WIN51IC.RC1
[2001-07-25 11:00|---hs----|11] D:\WIN51IC.RC2
[2001-08-17 11:00|---hs----|10] D:\WIN51IP
[2001-01-22 11:00|---hs----|11] D:\WIN51IP.B2
[2001-07-25 16:47|---hs----|11] D:\WIN51IP.RC2
[2001-08-17 09:17|---hs----|184] D:\WINBOM.INI
[2008-01-17 08:14|--ahs----|1230] D:\MASTER.LOG
[2009-12-22 06:12|--a------|84992] G:\guildovne hry.xls
[2008-02-01 01:48|--a------|2548736] G:\hardware.doc
[2008-03-12 15:36|--a------|1481472] G:\infolinka_rozbite_valce_v_telefonu.mp3
[2007-01-18 11:54|--a------|740864] G:\Krstne mena.doc
[2004-05-14 13:20|--a------|44032] G:\Rady pre dom cnosś.shs
[2000-12-21 23:34|--a------|82756] G:\UnrealT.ttf
[2007-07-19 07:02|--a------|473473] G:\vyplnenie seku.pdf
[2010-01-29 13:00|--a------|28160] G:\zivotopis.doc
[2004-05-30 23:09|-r-hs----|45182] H:\KERNEL.SYS
[2008-07-09 17:03|--a------|1048576] H:\68YHV.BIN
[2006-03-23 11:29|--a------|53] H:\config.sys
[2002-08-16 06:59|--a------|18353] H:\gpl2.txt
[2007-03-12 10:21|-r-hs----|49015] H:\Rompaq.exe
[2010-04-25 04:49|---------|2806] J:\bootex.log
[2009-08-08 03:14|--a------|607435048] J:\UCM.rar
################## | Vaccination |
# C:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# D:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# G:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# H:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# J:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
################## | Upload |
Please send the file : C:\UsbFix_Upload_Me_ZSSTURMY.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .
################## | ! End of report # UsbFix V6.111 ! |
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
PROSIM CITAJTE POZORNE NAVODY!!!,
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte>>
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Suhlasit instalacio Konzoly pre zotavenie (Recovery console)
- ComboFix je třeba spustit pod účtem s právy administrátora.
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano;
A este raz >ANO<
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího modreho okna
- Po dokončení skenování, trvajícího maximálně 10-15 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah do svého threadu na forum
- Před použitím ComboFixu je treba vypnout všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary. NAVOD: http://www.bleepingcomputer.com/forums/topic114351.html
Mohou zasahovat do činnosti ComboFixu, což může způsobit, že nebude fungovat korektně.
V případě detekce antiviru u ComboFixu se jedná o falešný poplach.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
ComboFix 10-05-06.05 - gaspariks 2010-05-07 18:43:33.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.382 [GMT 2:00]
Running from: C:\Documents and Settings\gaspariks\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: Norton Internet Security 2006 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
C:\Documents and Settings\gaspariks\Application Data\BITS
C:\Documents and Settings\gaspariks\Application Data\BITS\BITS.ini
C:\Documents and Settings\gaspariks\Application Data\BITS\DHTTable.dat
C:\Documents and Settings\gaspariks\Application Data\BITS\ProxyList.ini
C:\Documents and Settings\gaspariks\Application Data\Microsoft\Internet Explorer\qiPSearchbar.dll
C:\Program Files\FlashGet Network
C:\Program Files\FlashGet Network\FlashGet universal\btcore.dll
C:\Program Files\FlashGet Network\FlashGet universal\btwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\BugReport.dll
C:\Program Files\FlashGet Network\FlashGet universal\BugReport.exe
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhocfg.ini
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\ComDlls.ini
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\flashget.xpi
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\FlashgetXpi.dll
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\IFlashgetXpi.xpt
C:\Program Files\FlashGet Network\FlashGet universal\dbghelp.dll
C:\Program Files\FlashGet Network\FlashGet universal\DBTrans.dll
C:\Program Files\FlashGet Network\FlashGet universal\dbtrans_verbose.log
C:\Program Files\FlashGet Network\FlashGet universal\DBTransC.exe
C:\Program Files\FlashGet Network\FlashGet universal\ed2kwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\explorerbar.dll
C:\Program Files\FlashGet Network\FlashGet universal\fgoption.ini
C:\Program Files\FlashGet Network\FlashGet universal\FGVer.dll
C:\Program Files\FlashGet Network\FlashGet universal\flashget.exe
C:\Program Files\FlashGet Network\FlashGet universal\gt.exe
C:\Program Files\FlashGet Network\FlashGet universal\hashgen.dll
C:\Program Files\FlashGet Network\FlashGet universal\Help\license.txt
C:\Program Files\FlashGet Network\FlashGet universal\Help\Readme.txt
C:\Program Files\FlashGet Network\FlashGet universal\Help\WHATSNEW.TXT
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBatchLinksDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBTTask.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Added.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddEMTask.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddHpFpLink.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlgEx.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksModern.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BrowserPlugins.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BTOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CategoryView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ComfirmWhenExitDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CommonDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ConfirmInvalidLinks.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ContextMenu.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DefaultDownloadsDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DeleteFilesDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DetailStatus.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMServers.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExplorerPane.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExtensionRuleDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FG2SearchTopPlugin.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileListCtrl.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileRemovedDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FindTaskDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashgetAbout.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashGetDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FSUStatusBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageLoginDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HotResource.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HpFpOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\LogsOutput.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MACReader.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainMenu.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainToolbar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MonitorOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NormalOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NotifyOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Option.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\P4PPluginMain.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ProxySetting.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SearchBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Security.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityScan.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityToolbar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Shutdown.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\StatusBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskDefOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskListView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskNotify.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\UserListCtrl.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\XpEnhance.ini
C:\Program Files\FlashGet Network\FlashGet universal\libupnp.dll
C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateUI.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\ComHelper\ComHelper.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\ComHelper\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\Downstat\Downstat.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Downstat\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\P4pclient\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\P4pclient\P4pclient.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\iexplorer.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.xml
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\search.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\subscribe.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\SearchTop.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\FunctionalRepair.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Scanning.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Security.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\SECURITY.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Security.xml
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\SystemFix.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\SamplerCli.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\SnapShot.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\tasknotifier\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\tasknotifier\tasknotifier.dll
C:\Program Files\FlashGet Network\FlashGet universal\P2PCfg.ini
C:\Program Files\FlashGet Network\FlashGet universal\P2PCore.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2pprot.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2snetio.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spmgr.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spmgr.ini
C:\Program Files\FlashGet Network\FlashGet universal\p2sprot.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\p4spmgr.ini
C:\Program Files\FlashGet Network\FlashGet universal\Profiles\config.dat
C:\Program Files\FlashGet Network\FlashGet universal\Profiles\tasks.dat
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify.wav
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify_board.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify_icon.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Back.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Backward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\BrowserBarCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\FlashgetResource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Forward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Home.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Backward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\BrowserBarDisableCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Forward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Home.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Available.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\CategoryTreeCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloaded.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloading.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Favorite.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Flashget.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Release.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Rubbish.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Search.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\Expbar.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\garage.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\transfer.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\BT.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\EM.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\GlobalOptionCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\HpFp.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Monitor.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Normal.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Notify.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Proxy.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\TaskDef.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MainMenuCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveDownTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveUpTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\MainToolbarCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\MainToolbarDisableCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\InfoBkg.Bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\MonitorBkg.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Down.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Error.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Normal.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\OutpuLogCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Up.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\All.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Book.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Bt.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Game.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Movie.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Music.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Phone.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Picture.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\SobarIconCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Software.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Error.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\hashing.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\OK.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pause.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pin.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Schedule.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Start.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\TaskListCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Upload.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Wait.bmp
C:\Program Files\FlashGet Network\FlashGet universal\storage.dll
C:\Program Files\FlashGet Network\FlashGet universal\SysOpt.exe
C:\Program Files\FlashGet Network\FlashGet universal\transaction.log
C:\Program Files\FlashGet Network\FlashGet universal\uninst.exe
C:\Program Files\FlashGet Network\FlashGet universal\zlib.dll
C:\WINDOWS\AUTOLNCH.REG
C:\WINDOWS\eSellerateEngine.dll
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.382 [GMT 2:00]
Running from: C:\Documents and Settings\gaspariks\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: Norton Internet Security 2006 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
C:\Documents and Settings\gaspariks\Application Data\BITS
C:\Documents and Settings\gaspariks\Application Data\BITS\BITS.ini
C:\Documents and Settings\gaspariks\Application Data\BITS\DHTTable.dat
C:\Documents and Settings\gaspariks\Application Data\BITS\ProxyList.ini
C:\Documents and Settings\gaspariks\Application Data\Microsoft\Internet Explorer\qiPSearchbar.dll
C:\Program Files\FlashGet Network
C:\Program Files\FlashGet Network\FlashGet universal\btcore.dll
C:\Program Files\FlashGet Network\FlashGet universal\btwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\BugReport.dll
C:\Program Files\FlashGet Network\FlashGet universal\BugReport.exe
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhocfg.ini
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\ComDlls.ini
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\flashget.xpi
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\FlashgetXpi.dll
C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\IFlashgetXpi.xpt
C:\Program Files\FlashGet Network\FlashGet universal\dbghelp.dll
C:\Program Files\FlashGet Network\FlashGet universal\DBTrans.dll
C:\Program Files\FlashGet Network\FlashGet universal\dbtrans_verbose.log
C:\Program Files\FlashGet Network\FlashGet universal\DBTransC.exe
C:\Program Files\FlashGet Network\FlashGet universal\ed2kwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\explorerbar.dll
C:\Program Files\FlashGet Network\FlashGet universal\fgoption.ini
C:\Program Files\FlashGet Network\FlashGet universal\FGVer.dll
C:\Program Files\FlashGet Network\FlashGet universal\flashget.exe
C:\Program Files\FlashGet Network\FlashGet universal\gt.exe
C:\Program Files\FlashGet Network\FlashGet universal\hashgen.dll
C:\Program Files\FlashGet Network\FlashGet universal\Help\license.txt
C:\Program Files\FlashGet Network\FlashGet universal\Help\Readme.txt
C:\Program Files\FlashGet Network\FlashGet universal\Help\WHATSNEW.TXT
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBatchLinksDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBTTask.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Added.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddEMTask.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddHpFpLink.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlgEx.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksModern.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BrowserPlugins.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BTOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CategoryView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ComfirmWhenExitDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CommonDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ConfirmInvalidLinks.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ContextMenu.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DefaultDownloadsDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DeleteFilesDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DetailStatus.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMServers.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExplorerPane.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExtensionRuleDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FG2SearchTopPlugin.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileListCtrl.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileRemovedDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FindTaskDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashgetAbout.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashGetDlg.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FSUStatusBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageLoginDialog.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HotResource.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HpFpOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\LogsOutput.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MACReader.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainMenu.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainToolbar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MonitorOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NormalOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NotifyOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Option.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\P4PPluginMain.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ProxySetting.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SearchBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Security.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityScan.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityToolbar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Shutdown.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\StatusBar.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskDefOption.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskListView.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskNotify.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\UserListCtrl.ini
C:\Program Files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\XpEnhance.ini
C:\Program Files\FlashGet Network\FlashGet universal\libupnp.dll
C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateUI.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\ComHelper\ComHelper.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\ComHelper\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\Downstat\Downstat.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Downstat\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\P4pclient\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\P4pclient\P4pclient.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\iexplorer.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.xml
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\search.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\subscribe.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SearchTop\SearchTop.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\FunctionalRepair.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Scanning.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Security.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\SECURITY.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\Security.xml
C:\Program Files\FlashGet Network\FlashGet universal\modules\Security\SystemFix.bmp
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\SamplerCli.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\SnapShot\SnapShot.dll
C:\Program Files\FlashGet Network\FlashGet universal\modules\tasknotifier\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\modules\tasknotifier\tasknotifier.dll
C:\Program Files\FlashGet Network\FlashGet universal\P2PCfg.ini
C:\Program Files\FlashGet Network\FlashGet universal\P2PCore.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2pprot.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2snetio.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spmgr.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spmgr.ini
C:\Program Files\FlashGet Network\FlashGet universal\p2sprot.dll
C:\Program Files\FlashGet Network\FlashGet universal\p2spwrap.dll
C:\Program Files\FlashGet Network\FlashGet universal\p4spmgr.ini
C:\Program Files\FlashGet Network\FlashGet universal\Profiles\config.dat
C:\Program Files\FlashGet Network\FlashGet universal\Profiles\tasks.dat
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\close_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\max_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_default.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_press.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\min_select.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify.wav
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify_board.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\notify_icon.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Back.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Backward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\BrowserBarCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\FlashgetResource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Forward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Home.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Backward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\BrowserBarDisableCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Forward.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Home.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Available.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\CategoryTreeCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloaded.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloading.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Favorite.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Flashget.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Release.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Rubbish.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Search.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\Expbar.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\garage.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\transfer.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\BT.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\EM.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\GlobalOptionCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\HpFp.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Monitor.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Normal.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Notify.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Proxy.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\TaskDef.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Info.ini
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MainMenuCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveDownTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveUpTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\MainToolbarCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\About.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\DeleteTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Folder.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\MainToolbarDisableCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\NewTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Open.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Option.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\PauseTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Resource.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\StartTask.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\TaskProperties.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\InfoBkg.Bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\MonitorBkg.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Down.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Error.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Normal.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\OutpuLogCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Up.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\All.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Book.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Bt.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Game.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Movie.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Music.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Phone.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Picture.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\SobarIconCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Software.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Error.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\hashing.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\OK.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pause.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pin.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Schedule.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Start.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\TaskListCT.xml
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Upload.bmp
C:\Program Files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Wait.bmp
C:\Program Files\FlashGet Network\FlashGet universal\storage.dll
C:\Program Files\FlashGet Network\FlashGet universal\SysOpt.exe
C:\Program Files\FlashGet Network\FlashGet universal\transaction.log
C:\Program Files\FlashGet Network\FlashGet universal\uninst.exe
C:\Program Files\FlashGet Network\FlashGet universal\zlib.dll
C:\WINDOWS\AUTOLNCH.REG
C:\WINDOWS\eSellerateEngine.dll
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
mas tam zdvojene AV-a Firewall-ESET a Norton,1-odinstalovat.
(((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
2:Najdi na C:\combofix.txt a zkopiruj sem a zbytok logu-staci od-AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: Norton Internet Security 2006 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
(((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Na c:\ nie je, preto som tam hodil ten čo som našiel, mám to nechať ešte raz prebehnúť?
(spúšťal som to z plochy, pri vypnutom Esete)
(spúšťal som to z plochy, pri vypnutom Esete)
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Start -> Spustit -> (napis) notepad "C:\ComboFix.txt"
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Napisal som a súbor nenájdený, "ComboFix.txt"
Dal som prehľadať disky a jediný súbor s názvom "ComboFix.txt" sa nachádza v zložke "C:\ComboFix\ComboFix.txt" výpis z neho je vyššie.
Dal som prehľadať disky a jediný súbor s názvom "ComboFix.txt" sa nachádza v zložke "C:\ComboFix\ComboFix.txt" výpis z neho je vyššie.
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
1:dobre odinstaluj Norton internet security
a pouzi aj tento program
http://service1.symantec.com/Support/ts ... 3108162039
2:Precisti pc CCleanerom
Stáhni, nainstaluj program CCleaner - http://www.ccleaner.com/download/downloadpage.aspx?f=2
- PravyKlik na kos-spustit ccleaner ->>>Cakas>>na cistenie,,
PravyKlik na kos-otvorit ccleaner-záložka Windows a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na záložku Aplikace a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na Registry, stiskni Hledej problémy, po dokončení skenování klikni na Opravit vybrané problémy,
-zvol Ano pro vytvoření zálohy, ulož nabídnutý soubor a klikni na Opravit všechny problémy,
3:Spust este raz combofix
a pouzi aj tento program
http://service1.symantec.com/Support/ts ... 3108162039
2:Precisti pc CCleanerom
Stáhni, nainstaluj program CCleaner - http://www.ccleaner.com/download/downloadpage.aspx?f=2
- PravyKlik na kos-spustit ccleaner ->>>Cakas>>na cistenie,,
PravyKlik na kos-otvorit ccleaner-záložka Windows a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na záložku Aplikace a stiskni Analyzovat a poté Spustit Cleaner
- Klikni na Registry, stiskni Hledej problémy, po dokončení skenování klikni na Opravit vybrané problémy,
-zvol Ano pro vytvoření zálohy, ulož nabídnutý soubor a klikni na Opravit všechny problémy,
3:Spust este raz combofix
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
tu je ten neštastný log 
ComboFix 10-05-06.05 - gaspariks 2010-05-07 20:53:49.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.414 [GMT 2:00]
Running from: c:\documents and settings\gaspariks\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
2010-05-07 16:14 . 2010-05-07 16:14 3412 ----a-w- C:\UsbFix_Upload_Me_ZSSTURMY.zip
2010-05-07 16:04 . 2010-05-07 16:14 -------- d-----w- C:\UsbFix
2010-05-07 14:56 . 2010-05-07 16:11 -------- d-----w- C:\rsit
2010-05-06 20:25 . 2008-04-13 17:46 61696 ----a-w- c:\windows\system32\ohci1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 61824 ----a-w- c:\windows\system32\nic1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 60800 ----a-w- c:\windows\system32\arp1394.sys
2010-05-06 20:25 . 2008-04-13 17:46 53376 ----a-w- c:\windows\system32\1394bus.sys
2010-05-06 20:25 . 2001-08-17 11:46 6400 ----a-w- c:\windows\system32\enum1394.sys
2010-05-06 12:28 . 2010-05-06 13:47 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Ulead Systems
2010-05-06 12:09 . 2010-05-06 12:09 -------- d-----w- c:\program files\SmartSound Software
2010-05-06 12:06 . 2010-05-06 12:06 -------- d-----w- c:\program files\Ulead Systems
2010-04-26 08:56 . 2010-04-26 08:57 -------- d-----w- c:\program files\Jalbum
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Microsoft
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live
2010-04-26 08:53 . 2010-04-26 08:53 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-04-26 08:49 . 2010-04-26 08:49 -------- d-----w- c:\program files\Common Files\Windows Live
2010-04-26 08:30 . 2010-04-26 08:30 -------- d-----w- c:\program files\Glenlay Gallery
2010-04-26 07:45 . 2010-04-26 07:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Arclab
2010-04-26 07:44 . 2010-04-26 07:44 -------- d-----w- c:\program files\Arclab
2010-04-25 06:17 . 2010-04-25 06:17 -------- d-----w- c:\documents and settings\gaspariks\.GalleryRemote
2010-04-24 02:57 . 2010-04-24 03:09 5 ----a-w- c:\windows\system32\SySwmvtoavi.dat
2010-04-24 02:56 . 2010-04-24 02:56 -------- d-----w- c:\program files\Crystal Software
2010-04-23 06:19 . 2010-04-23 06:19 -------- d-----w- c:\program files\Photo Story 3 for Windows
2010-04-21 04:51 . 2010-04-21 04:51 87 ----a-w- c:\windows\system32\EpfwUser.dat
2010-04-18 01:24 . 2008-05-29 06:03 37176 ----a-w- c:\documents and settings\gaspariks\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-04-16 15:41 . 2010-04-16 18:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-04-16 15:41 . 2010-04-16 15:41 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
2010-04-12 10:02 . 2010-04-12 10:02 -------- d-----w- c:\documents and settings\gaspariks\Local Settings\Application Data\Zoner
2010-04-09 08:17 . 2010-04-30 07:57 -------- d-----w- C:\Temp
2010-04-09 08:14 . 2010-04-09 08:14 -------- d-----w- c:\program files\MP4Converter
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-07 18:34 . 2008-03-16 21:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-05-07 18:33 . 2008-01-17 13:06 -------- d-----w- c:\program files\CCleaner
2010-05-07 18:22 . 2008-08-15 19:12 12 ----a-w- c:\windows\bthservsdp.dat
2010-05-07 18:21 . 2006-06-29 05:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-05-07 15:38 . 2009-05-23 21:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-07 14:56 . 2009-05-20 07:28 -------- d-----w- c:\program files\trend micro
2010-05-06 12:09 . 2006-06-29 04:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 12:09 . 2008-07-01 18:25 -------- d-----w- c:\documents and settings\All Users\Application Data\SmartSound Software Inc
2010-05-06 12:06 . 2008-08-02 18:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\program files\Common Files\Ulead Systems
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2010-05-03 06:17 . 2007-09-27 11:51 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-29 13:39 . 2009-05-23 21:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 13:39 . 2009-05-23 21:25 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-27 12:56 . 2008-01-16 11:04 -------- d-----w- c:\program files\Doklady
2010-04-27 10:00 . 2007-09-26 09:18 147816 ----a-w- c:\documents and settings\gaspariks\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-27 09:57 . 2007-08-17 08:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-24 02:10 . 2008-07-21 07:27 -------- d-----w- c:\program files\MediaCell Video Converter
2010-04-20 13:40 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\program files\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-04-15 09:02 . 2009-09-17 10:04 -------- d-----w- c:\program files\QIP Infium
2010-04-14 11:11 . 2010-03-03 08:17 -------- d-----w- c:\documents and settings\gaspariks\Application Data\QipGuard
2010-04-12 16:33 . 2010-03-03 08:17 280440 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\sqlite3.dll
2010-04-12 16:33 . 2010-03-03 08:17 184272 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
2010-04-12 16:33 . 2010-03-03 08:17 20944 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\chrome.dll
2010-04-12 16:33 . 2010-03-03 08:17 127440 ----a-w- c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\components\qippipe.dll
2010-04-12 10:03 . 2008-05-26 07:14 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Zoner
2010-04-12 10:01 . 2008-05-26 07:13 -------- d-----w- c:\program files\Zoner
2010-03-28 19:56 . 2008-05-21 05:48 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-03-28 19:12 . 2010-03-28 19:12 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy2
2010-03-28 19:11 . 2010-03-28 19:11 -------- d-----w- c:\program files\MyPlayCity.com
2010-03-23 12:25 . 2010-03-23 08:28 25 ----a-w- c:\windows\popcinfot.dat
2010-03-23 08:28 . 2010-03-23 08:28 -------- d-----w- c:\documents and settings\All Users\Application Data\PopCap Games
2010-03-23 08:28 . 2010-03-23 08:27 -------- d-----w- c:\program files\PopCap Games
2010-03-15 16:52 . 2010-03-15 16:52 -------- d-----w- c:\program files\GameTop.com
2010-03-15 10:47 . 2010-03-15 10:47 -------- d-----w- c:\program files\Quadrax IV
2010-03-13 16:44 . 2008-07-21 07:29 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Any Video Converter
2010-03-10 06:15 . 2004-08-04 08:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 10:14 . 2009-11-11 18:18 -------- d-----w- c:\documents and settings\gaspariks\Application Data\FileZilla
2010-03-09 00:35 . 2009-11-16 07:51 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Free Download Manager
2010-02-25 06:24 . 2004-08-04 08:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-04 08:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-24 08:16 . 2009-10-03 09:01 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-21 20:27 . 2010-02-21 20:27 292 ----a-w- c:\windows\EReg072.dat
2010-02-19 23:47 . 2010-02-19 23:47 3604480 ----a-w- c:\windows\system32\GPhotos.scr
2010-02-16 14:08 . 2004-08-04 08:00 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2004-08-04 08:00 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-13 19:30 . 2010-02-13 19:20 9562038 ----a-w- c:\documents and settings\gaspariks\Application Data\QIP\Profiles\191042588\RcvdFiles\kazujin_268451389\h3compl10all.exe
2010-02-12 10:03 . 2010-03-11 06:59 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 07:53 . 2010-02-12 07:53 286720 ------w- c:\windows\Setup1.exe
2010-02-12 07:53 . 2010-02-12 07:53 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-02-12 04:33 . 2004-08-04 08:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-04 08:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2008-05-29 10:41 . 2008-05-26 07:42 56 --sh--r- c:\windows\system32\A4177870D0.sys
2008-05-29 10:41 . 2008-05-26 07:42 1890 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-18 11:58 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
"Google Update"="c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-10-05 133104]
"QIP Internet Guardian"="c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe" [2010-04-12 184272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TabletWizard"="c:\windows\help\SplshWrp.exe" [2008-04-14 16384]
"TabletTip"="c:\program files\Common Files\microsoft shared\ink\tabtip.exe" [2008-04-14 271872]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 1015808]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-03-07 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-02-22 40960]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"DAEMON Tools-1033"="d:\program files\D-Tools\daemon.exe" [2003-10-02 81920]
"CnxDslTaskBar"="c:\program files\DrayTek\Vigor318 ADSL\CnxDslTb.exe" [2004-05-06 516096]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-02-06 2021400]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]
"flockbox"="c:\program files\My Lockbox\flockbox.exe" [2007-12-14 1071472]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2009-05-26 413696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"FinePrint Dispečér v5"="c:\windows\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" [2008-03-05 516096]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 102400]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-05 872448]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-20 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-20 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-20 137752]
"UVS10 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-03-06 36864]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\gaspariks\Start Menu\Programs\Startup\
SaveSnap.lnk - c:\program files\SaveSnap\SaveSnap.exe [2008-6-8 1264128]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hp\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleStartMenu"= 1 (0x1)
"HonorAutoRunSetting"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IfxWlxEN]
2005-08-19 13:52 389120 ----a-w- c:\windows\system32\IfxWlxEN.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\loginkey]
2008-04-14 00:11 47104 ----a-w- c:\program files\Common Files\Microsoft Shared\Ink\loginkey.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TabBtnWL]
2002-08-29 05:41 11776 ----a-w- c:\windows\system32\tabbtnwl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpgwlnotify]
2008-04-14 00:12 32256 ----a-w- c:\windows\system32\tpgwlnot.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0aswBoot.exe /M:1a3a94b017
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^eBeam Interact.lnk]
backup=c:\windows\pss\eBeam Interact.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
2009-04-28 10:13 2329936 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-01-28 11:26 3037696 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulohy]
2006-10-22 18:00 165888 ----a-w- c:\program files\Doklady\DOKLADYULOHY.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Stando\\EA GAMES\\UOAM\\uoam.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 MPRIFL;MPRIFL;c:\windows\system32\drivers\mprifl.sys [2009-10-02 17264]
R0 pnpshark;pnpshark;c:\windows\system32\drivers\pnpshark.sys [2003-10-02 119552]
R0 st3shark;st3shark;c:\windows\system32\drivers\st3shark.sys [2003-09-27 5504]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 EMP_MAP;EPSON Network Presentation Driver Service;c:\windows\system32\drivers\EMP_Map.sys [2007-08-30 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD;c:\windows\system32\drivers\EMP_UDMm.sys [2007-08-17 6400]
R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [2005-10-25 35488]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 EMP_NSWLSV;EMP_NSWLSV;c:\program files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2007-08-30 94208]
R2 EMP_UDSA;EMP_UDSA;c:\program files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2007-08-17 94208]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 EMP_Mirr;EMP_Mirr;c:\windows\system32\drivers\EMP_Mirr.sys [2007-08-30 6272]
R3 EMP_UDMR;EMP_UDMR;c:\windows\system32\drivers\EMP_UDMr.sys [2007-08-17 6272]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-08-07 6528]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2006-02-28 87808]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2005-06-10 35968]
R3 vdisp;vdisp;c:\windows\system32\drivers\EMP_Vd1.sys [2007-08-30 6656]
R3 WacomISDPen;Wacom Penabled HID MiniDriver;c:\windows\system32\drivers\wacomisdpen.sys [2005-07-14 23936]
S1 HMFAxCore46691b2fe72383a3b643d95081ef1d95;HMFAxCore46691b2fe72383a3b643d95081ef1d95;\??\c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys --> c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys [?]
S3 CnxEtP;Conexant AccessRunner USB ADSL WAN Adapter Filter Driver;c:\windows\system32\drivers\CnxEtP.sys [2008-01-04 60288]
S3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;c:\windows\system32\drivers\CnxEtU.sys [2008-01-04 646400]
S3 CnxTgN;Conexant AccessRunner USB ADSL WAN Adapter Driver;c:\windows\system32\drivers\CnxTgN.sys [2008-01-04 108771]
S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 LSDRVA;StarBoard FX-DUO Light Sensor USB Driver (lsdrva.sys);c:\windows\system32\drivers\lsdrva.sys [2008-01-21 20992]
S3 LVHybrid;LVHybrid service;c:\windows\system32\drivers\LVHybrid.sys [2008-04-02 660992]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-09-11 19712]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-09-11 8320]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2009-09-11 42752]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-02-03 27064]
S3 SNPT513;PC Camera (6025 VGA);c:\windows\system32\drivers\snpt513.sys [2007-10-19 183040]
S3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\drivers\wacompen.sys [2006-06-29 14208]
.
Contents of the 'Scheduled Tasks' folder
2010-05-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271Core.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271UA.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 16:20]
2010-05-07 c:\windows\Tasks\User_Feed_Synchronization-{79499DBE-B16C-4236-98F8-79D3DD3D3556}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uDefault_Search_URL = hxxp://search.qip.ru
uInternet Connection Wizard,ShellNext = hxxp://www.hp.com/
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 10.0.0.10:8080
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Download All by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
IE: &Download by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: Prevziať pomocou FDM - file://c:\program files\Free Download Manager\dllink.htm
IE: Prevziať video pomocou FDM - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Prevziať vybrané pomocou FDM - file://c:\program files\Free Download Manager\dlselected.htm
IE: Prevziať všetko pomocou FDM - file://c:\program files\Free Download Manager\dlall.htm
FF - ProfilePath - c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - prefs.js: network.proxy.ftp - 10.0.0.10
FF - prefs.js: network.proxy.ftp_port - 8080
FF - prefs.js: network.proxy.gopher - 10.0.0.10
FF - prefs.js: network.proxy.gopher_port - 8080
FF - prefs.js: network.proxy.http - 10.0.0.10
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.socks - 10.0.0.10
FF - prefs.js: network.proxy.socks_port - 8080
FF - prefs.js: network.proxy.ssl - 10.0.0.10
FF - prefs.js: network.proxy.ssl_port - 8080
FF - prefs.js: network.proxy.type - 1
FF - component: c:\program files\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll
FF - plugin: c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
------- File Associations -------
.
inifile=%SystemRoot%\System32\NOTEPAD.EXE %1"
.
- - - - ORPHANS REMOVED - - - -
AddRemove-Convert XLS_is1 - c:\program files\Softinterface
AddRemove-GT Interactive - Driver - c:\stando\ea games\GT Interactive\Driver\Uninst.isu
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-07 21:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????? ???@???????????????@? ????i??????(?@???????@
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1580)
c:\windows\system32\IfxWlxEN.dll
- - - - - - - > 'explorer.exe'(1472)
c:\windows\system32\WININET.dll
c:\program files\windows journal\nbmaptip.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Completion time: 2010-05-07 21:03:12
ComboFix-quarantined-files.txt 2010-05-07 19:03
Pre-Run: 3,721,957,376 bytes free
Post-Run: 3,677,999,104 bytes free
- - End Of File - - 918CE9F8F7C546F7B56B44D01B83219A
ComboFix 10-05-06.05 - gaspariks 2010-05-07 20:53:49.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.414 [GMT 2:00]
Running from: c:\documents and settings\gaspariks\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
2010-05-07 16:14 . 2010-05-07 16:14 3412 ----a-w- C:\UsbFix_Upload_Me_ZSSTURMY.zip
2010-05-07 16:04 . 2010-05-07 16:14 -------- d-----w- C:\UsbFix
2010-05-07 14:56 . 2010-05-07 16:11 -------- d-----w- C:\rsit
2010-05-06 20:25 . 2008-04-13 17:46 61696 ----a-w- c:\windows\system32\ohci1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 61824 ----a-w- c:\windows\system32\nic1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 60800 ----a-w- c:\windows\system32\arp1394.sys
2010-05-06 20:25 . 2008-04-13 17:46 53376 ----a-w- c:\windows\system32\1394bus.sys
2010-05-06 20:25 . 2001-08-17 11:46 6400 ----a-w- c:\windows\system32\enum1394.sys
2010-05-06 12:28 . 2010-05-06 13:47 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Ulead Systems
2010-05-06 12:09 . 2010-05-06 12:09 -------- d-----w- c:\program files\SmartSound Software
2010-05-06 12:06 . 2010-05-06 12:06 -------- d-----w- c:\program files\Ulead Systems
2010-04-26 08:56 . 2010-04-26 08:57 -------- d-----w- c:\program files\Jalbum
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Microsoft
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live
2010-04-26 08:53 . 2010-04-26 08:53 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-04-26 08:49 . 2010-04-26 08:49 -------- d-----w- c:\program files\Common Files\Windows Live
2010-04-26 08:30 . 2010-04-26 08:30 -------- d-----w- c:\program files\Glenlay Gallery
2010-04-26 07:45 . 2010-04-26 07:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Arclab
2010-04-26 07:44 . 2010-04-26 07:44 -------- d-----w- c:\program files\Arclab
2010-04-25 06:17 . 2010-04-25 06:17 -------- d-----w- c:\documents and settings\gaspariks\.GalleryRemote
2010-04-24 02:57 . 2010-04-24 03:09 5 ----a-w- c:\windows\system32\SySwmvtoavi.dat
2010-04-24 02:56 . 2010-04-24 02:56 -------- d-----w- c:\program files\Crystal Software
2010-04-23 06:19 . 2010-04-23 06:19 -------- d-----w- c:\program files\Photo Story 3 for Windows
2010-04-21 04:51 . 2010-04-21 04:51 87 ----a-w- c:\windows\system32\EpfwUser.dat
2010-04-18 01:24 . 2008-05-29 06:03 37176 ----a-w- c:\documents and settings\gaspariks\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-04-16 15:41 . 2010-04-16 18:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-04-16 15:41 . 2010-04-16 15:41 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
2010-04-12 10:02 . 2010-04-12 10:02 -------- d-----w- c:\documents and settings\gaspariks\Local Settings\Application Data\Zoner
2010-04-09 08:17 . 2010-04-30 07:57 -------- d-----w- C:\Temp
2010-04-09 08:14 . 2010-04-09 08:14 -------- d-----w- c:\program files\MP4Converter
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-07 18:34 . 2008-03-16 21:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-05-07 18:33 . 2008-01-17 13:06 -------- d-----w- c:\program files\CCleaner
2010-05-07 18:22 . 2008-08-15 19:12 12 ----a-w- c:\windows\bthservsdp.dat
2010-05-07 18:21 . 2006-06-29 05:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-05-07 15:38 . 2009-05-23 21:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-07 14:56 . 2009-05-20 07:28 -------- d-----w- c:\program files\trend micro
2010-05-06 12:09 . 2006-06-29 04:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 12:09 . 2008-07-01 18:25 -------- d-----w- c:\documents and settings\All Users\Application Data\SmartSound Software Inc
2010-05-06 12:06 . 2008-08-02 18:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\program files\Common Files\Ulead Systems
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2010-05-03 06:17 . 2007-09-27 11:51 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-29 13:39 . 2009-05-23 21:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 13:39 . 2009-05-23 21:25 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-27 12:56 . 2008-01-16 11:04 -------- d-----w- c:\program files\Doklady
2010-04-27 10:00 . 2007-09-26 09:18 147816 ----a-w- c:\documents and settings\gaspariks\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-27 09:57 . 2007-08-17 08:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-24 02:10 . 2008-07-21 07:27 -------- d-----w- c:\program files\MediaCell Video Converter
2010-04-20 13:40 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\program files\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-04-15 09:02 . 2009-09-17 10:04 -------- d-----w- c:\program files\QIP Infium
2010-04-14 11:11 . 2010-03-03 08:17 -------- d-----w- c:\documents and settings\gaspariks\Application Data\QipGuard
2010-04-12 16:33 . 2010-03-03 08:17 280440 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\sqlite3.dll
2010-04-12 16:33 . 2010-03-03 08:17 184272 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
2010-04-12 16:33 . 2010-03-03 08:17 20944 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\chrome.dll
2010-04-12 16:33 . 2010-03-03 08:17 127440 ----a-w- c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\components\qippipe.dll
2010-04-12 10:03 . 2008-05-26 07:14 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Zoner
2010-04-12 10:01 . 2008-05-26 07:13 -------- d-----w- c:\program files\Zoner
2010-03-28 19:56 . 2008-05-21 05:48 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-03-28 19:12 . 2010-03-28 19:12 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy2
2010-03-28 19:11 . 2010-03-28 19:11 -------- d-----w- c:\program files\MyPlayCity.com
2010-03-23 12:25 . 2010-03-23 08:28 25 ----a-w- c:\windows\popcinfot.dat
2010-03-23 08:28 . 2010-03-23 08:28 -------- d-----w- c:\documents and settings\All Users\Application Data\PopCap Games
2010-03-23 08:28 . 2010-03-23 08:27 -------- d-----w- c:\program files\PopCap Games
2010-03-15 16:52 . 2010-03-15 16:52 -------- d-----w- c:\program files\GameTop.com
2010-03-15 10:47 . 2010-03-15 10:47 -------- d-----w- c:\program files\Quadrax IV
2010-03-13 16:44 . 2008-07-21 07:29 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Any Video Converter
2010-03-10 06:15 . 2004-08-04 08:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 10:14 . 2009-11-11 18:18 -------- d-----w- c:\documents and settings\gaspariks\Application Data\FileZilla
2010-03-09 00:35 . 2009-11-16 07:51 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Free Download Manager
2010-02-25 06:24 . 2004-08-04 08:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-04 08:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-24 08:16 . 2009-10-03 09:01 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-21 20:27 . 2010-02-21 20:27 292 ----a-w- c:\windows\EReg072.dat
2010-02-19 23:47 . 2010-02-19 23:47 3604480 ----a-w- c:\windows\system32\GPhotos.scr
2010-02-16 14:08 . 2004-08-04 08:00 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2004-08-04 08:00 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-13 19:30 . 2010-02-13 19:20 9562038 ----a-w- c:\documents and settings\gaspariks\Application Data\QIP\Profiles\191042588\RcvdFiles\kazujin_268451389\h3compl10all.exe
2010-02-12 10:03 . 2010-03-11 06:59 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 07:53 . 2010-02-12 07:53 286720 ------w- c:\windows\Setup1.exe
2010-02-12 07:53 . 2010-02-12 07:53 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-02-12 04:33 . 2004-08-04 08:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-04 08:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2008-05-29 10:41 . 2008-05-26 07:42 56 --sh--r- c:\windows\system32\A4177870D0.sys
2008-05-29 10:41 . 2008-05-26 07:42 1890 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-18 11:58 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
"Google Update"="c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-10-05 133104]
"QIP Internet Guardian"="c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe" [2010-04-12 184272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TabletWizard"="c:\windows\help\SplshWrp.exe" [2008-04-14 16384]
"TabletTip"="c:\program files\Common Files\microsoft shared\ink\tabtip.exe" [2008-04-14 271872]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 1015808]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-03-07 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-02-22 40960]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"DAEMON Tools-1033"="d:\program files\D-Tools\daemon.exe" [2003-10-02 81920]
"CnxDslTaskBar"="c:\program files\DrayTek\Vigor318 ADSL\CnxDslTb.exe" [2004-05-06 516096]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-02-06 2021400]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]
"flockbox"="c:\program files\My Lockbox\flockbox.exe" [2007-12-14 1071472]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2009-05-26 413696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"FinePrint Dispečér v5"="c:\windows\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" [2008-03-05 516096]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 102400]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-05 872448]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-20 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-20 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-20 137752]
"UVS10 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-03-06 36864]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\gaspariks\Start Menu\Programs\Startup\
SaveSnap.lnk - c:\program files\SaveSnap\SaveSnap.exe [2008-6-8 1264128]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hp\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleStartMenu"= 1 (0x1)
"HonorAutoRunSetting"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IfxWlxEN]
2005-08-19 13:52 389120 ----a-w- c:\windows\system32\IfxWlxEN.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\loginkey]
2008-04-14 00:11 47104 ----a-w- c:\program files\Common Files\Microsoft Shared\Ink\loginkey.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TabBtnWL]
2002-08-29 05:41 11776 ----a-w- c:\windows\system32\tabbtnwl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpgwlnotify]
2008-04-14 00:12 32256 ----a-w- c:\windows\system32\tpgwlnot.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0aswBoot.exe /M:1a3a94b017
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^eBeam Interact.lnk]
backup=c:\windows\pss\eBeam Interact.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
2009-04-28 10:13 2329936 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-01-28 11:26 3037696 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulohy]
2006-10-22 18:00 165888 ----a-w- c:\program files\Doklady\DOKLADYULOHY.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Stando\\EA GAMES\\UOAM\\uoam.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 MPRIFL;MPRIFL;c:\windows\system32\drivers\mprifl.sys [2009-10-02 17264]
R0 pnpshark;pnpshark;c:\windows\system32\drivers\pnpshark.sys [2003-10-02 119552]
R0 st3shark;st3shark;c:\windows\system32\drivers\st3shark.sys [2003-09-27 5504]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 EMP_MAP;EPSON Network Presentation Driver Service;c:\windows\system32\drivers\EMP_Map.sys [2007-08-30 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD;c:\windows\system32\drivers\EMP_UDMm.sys [2007-08-17 6400]
R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [2005-10-25 35488]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 EMP_NSWLSV;EMP_NSWLSV;c:\program files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2007-08-30 94208]
R2 EMP_UDSA;EMP_UDSA;c:\program files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2007-08-17 94208]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 EMP_Mirr;EMP_Mirr;c:\windows\system32\drivers\EMP_Mirr.sys [2007-08-30 6272]
R3 EMP_UDMR;EMP_UDMR;c:\windows\system32\drivers\EMP_UDMr.sys [2007-08-17 6272]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-08-07 6528]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2006-02-28 87808]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2005-06-10 35968]
R3 vdisp;vdisp;c:\windows\system32\drivers\EMP_Vd1.sys [2007-08-30 6656]
R3 WacomISDPen;Wacom Penabled HID MiniDriver;c:\windows\system32\drivers\wacomisdpen.sys [2005-07-14 23936]
S1 HMFAxCore46691b2fe72383a3b643d95081ef1d95;HMFAxCore46691b2fe72383a3b643d95081ef1d95;\??\c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys --> c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys [?]
S3 CnxEtP;Conexant AccessRunner USB ADSL WAN Adapter Filter Driver;c:\windows\system32\drivers\CnxEtP.sys [2008-01-04 60288]
S3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;c:\windows\system32\drivers\CnxEtU.sys [2008-01-04 646400]
S3 CnxTgN;Conexant AccessRunner USB ADSL WAN Adapter Driver;c:\windows\system32\drivers\CnxTgN.sys [2008-01-04 108771]
S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 LSDRVA;StarBoard FX-DUO Light Sensor USB Driver (lsdrva.sys);c:\windows\system32\drivers\lsdrva.sys [2008-01-21 20992]
S3 LVHybrid;LVHybrid service;c:\windows\system32\drivers\LVHybrid.sys [2008-04-02 660992]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-09-11 19712]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-09-11 8320]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2009-09-11 42752]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-02-03 27064]
S3 SNPT513;PC Camera (6025 VGA);c:\windows\system32\drivers\snpt513.sys [2007-10-19 183040]
S3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\drivers\wacompen.sys [2006-06-29 14208]
.
Contents of the 'Scheduled Tasks' folder
2010-05-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271Core.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271UA.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 16:20]
2010-05-07 c:\windows\Tasks\User_Feed_Synchronization-{79499DBE-B16C-4236-98F8-79D3DD3D3556}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uDefault_Search_URL = hxxp://search.qip.ru
uInternet Connection Wizard,ShellNext = hxxp://www.hp.com/
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 10.0.0.10:8080
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Download All by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
IE: &Download by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: Prevziať pomocou FDM - file://c:\program files\Free Download Manager\dllink.htm
IE: Prevziať video pomocou FDM - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Prevziať vybrané pomocou FDM - file://c:\program files\Free Download Manager\dlselected.htm
IE: Prevziať všetko pomocou FDM - file://c:\program files\Free Download Manager\dlall.htm
FF - ProfilePath - c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - prefs.js: network.proxy.ftp - 10.0.0.10
FF - prefs.js: network.proxy.ftp_port - 8080
FF - prefs.js: network.proxy.gopher - 10.0.0.10
FF - prefs.js: network.proxy.gopher_port - 8080
FF - prefs.js: network.proxy.http - 10.0.0.10
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.socks - 10.0.0.10
FF - prefs.js: network.proxy.socks_port - 8080
FF - prefs.js: network.proxy.ssl - 10.0.0.10
FF - prefs.js: network.proxy.ssl_port - 8080
FF - prefs.js: network.proxy.type - 1
FF - component: c:\program files\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll
FF - plugin: c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
------- File Associations -------
.
inifile=%SystemRoot%\System32\NOTEPAD.EXE %1"
.
- - - - ORPHANS REMOVED - - - -
AddRemove-Convert XLS_is1 - c:\program files\Softinterface
AddRemove-GT Interactive - Driver - c:\stando\ea games\GT Interactive\Driver\Uninst.isu
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-07 21:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????? ???@???????????????@? ????i??????(?@???????@
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="942C4E5F7FC457AA4109956BC9DB847294B33EBBA1835329422B76D5BD45344DBC4B185077CA0C1D8746D64270F167F4275DFD89C4BE3EF299F7C1614F094CFC5F7E18C37710F788990FAFA017C84B3730FAE25F6F8DF3C6921BD2382492E047FA6BFC51D4B2E3ADCC7E6DBB3E81692D7EBEFBB0E738C0E2967B1BA9EC6EEF57304D3746FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC79335D575E7D6A3B9808A2D97226D213B555A6171C11EC38DE3D5D885B9296A596C650CE129360A2CA95E81C5D2520A3C94FF44F500A133F63C336F1C4BEAEFB6A4EAB77366CA2AE94B2DABB26B7FEACE5D73CE49162D54CAFC82585FAAF78B4210B4E1900A6457EE54166C9FB1C7D24D0A2348AC010AFC31F3B4900E1DAB7AC4383C13783A6C244C6469C2EC43FEC32B4CF972FB52FEEE19CF726F4DF28CF571D73F32959C1374784F8F3A5EA86C61100B606134BD081F7D714A6CB6275C8B73ECA371C9DC1E561B1C64842DBC62411E4DE824B5F777DE9C254953ED61451E7FBACBE0EF16534012151D5E60ACB4415D80874C3D59B18AE1635A3DBB2473914ECEF26D37BDCAB27EE6A414D69550A1316A1A7B8132A30D44CE265866DCA76006E22E895E051FAEA741D0F81F494FB191CD2CABC0402C37AA341D27502C8A0FEA080E94DCFD9F377D6A5ABE52A33C544ABF372B61777F6D4216649346FE475FAE6006E4D7A860C8AF872E32E8A49B548CA1315DC3DD312AB0A1D08A0BA3256F06AC71E371258DC7683AA69E39A68BEECC4F10EC0ED50015DEAE3B3ECEBBA46F216B3880453C5252065A455626612798D26061E41A4A0535791ECD4220D7BEFA51A521E7FF7B84683CE6F20DAF9BD9D18C2F8E6175F65BC20929FD898AE651FC1EC67B4C7C08E462FB449285367D60C11B0277149A0B895CEC4160E8064DD4695446B0553F3994F435127B023C3BB488FC8232737EFA5D98E421E2B5CC5BB78029C092DE7D9A0AE7820B1DFF8A8BF773F2AB3D911D6AC29A26A3B47836FCEEF7CB621AD223E5DD71863463F53B52A66DE36CE3A5F6442485CE1A35E9EFED6890E97C5EC71F1FC5E7F21743E880AB5824214A562F82CCD9D278E41D12E1A0A44D3053EB41AC9A27D22A00230BF4C115ECE2D174C8D43AAB6FB1CB36605E68FC7FE8D86B0B31FE39306EE65C8F7A6603202303B571E44AAC16D79CC43C912855BD57F4FF2294DCA2245DECCA300C63AD86A0FD947815090149DD913F4774A7D6CB070FA723BB5D54D0F8519C07DDCA8D0AB00EF4360071425C734C0EC5C44FA8B7D37A0067DBD76E1A3BADC80699FAA3C7CFC30D6B791E28FB5C3457E9AB6F7ED3D718DECD7CC124CDA9C622A90C93563A7C38071DA199B95C887C2622A5EE0EB847E3FC7064F84"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1580)
c:\windows\system32\IfxWlxEN.dll
- - - - - - - > 'explorer.exe'(1472)
c:\windows\system32\WININET.dll
c:\program files\windows journal\nbmaptip.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Completion time: 2010-05-07 21:03:12
ComboFix-quarantined-files.txt 2010-05-07 19:03
Pre-Run: 3,721,957,376 bytes free
Post-Run: 3,677,999,104 bytes free
- - End Of File - - 918CE9F8F7C546F7B56B44D01B83219A
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
1:odinstaluj programy
c:\program files\IObit\Advanced SystemCare 3
c:\program files\AskBarDis
2:toto je co za program??
c:\program files\Doklady\DOKLADYULOHY.EXE
3:otestujte na VIRUSTOTALu
c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
(navod prosty: po nacteni stranky kliknete na tlacitko Prochazet , najdete cestu k vyse zminenemu souboru a kliknete na tlacitko Odeslat soubor; dejte skenerum nejakych deset minut; vysledek sem vlozte)
c:\program files\IObit\Advanced SystemCare 3
c:\program files\AskBarDis
2:toto je co za program??
c:\program files\Doklady\DOKLADYULOHY.EXE
3:otestujte na VIRUSTOTALu
c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
(navod prosty: po nacteni stranky kliknete na tlacitko Prochazet , najdete cestu k vyse zminenemu souboru a kliknete na tlacitko Odeslat soubor; dejte skenerum nejakych deset minut; vysledek sem vlozte)
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
odinštalované
odinštalované
Doklady, to je do práce... DOKLADYULOHY.EXE - je otravná funkcia toho programu, ktorú vypínam cez CCleaner, keď viem že ho dlhšie nebudem používať
výsledok skenu zde
odinštalované
Doklady, to je do práce... DOKLADYULOHY.EXE - je otravná funkcia toho programu, ktorú vypínam cez CCleaner, keď viem že ho dlhšie nebudem používať
výsledok skenu zde
-
stell
- VIP in memoriam
- Příspěvky: 5175
- Registrován: 09 pro 2007 09:27
- Bydliště: SK-REVUCA
- Kontaktovat uživatele:
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
takto,ty pouzivas qip,nakolko toto cudo nema,nepouziva nikto, google ukazuje ze ma to len zopar rusov,nalez je v norme,,
c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
Takze ak chces tak to zmazem
Otvor Notepad (Poznámkový blok) a zkopíruj do neho celý zeleny tex:
Potom klik na Subor -> Uložiť ako.. .. -> Ako je Názov souboru tak do toho riadku napiš:CFScript.txt
Typ súboru tak tam vyberies *všetky súbory
A ulož ho na plochu.> Pozor CFScript.txt>Neotvarat a nemoze byt ani>CFScript.txt.txt A Urobis Toto :
Po skonceni skenu vlož log čo ComboFix vytvorí
c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
Takze ak chces tak to zmazem
Otvor Notepad (Poznámkový blok) a zkopíruj do neho celý zeleny tex:
Kód: Vybrat vše
KILLALL::
Folder::
c:\program files\AskBarDis
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"=-
[-HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"=-
[-HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoftAuto.exe"=-
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
"Cpqset" =-
File::
c:\windows\Tasks\MP Scheduled Scan.job
DDS::
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uDefault_Search_URL = hxxp://search.qip.ru
uInternet Connection Wizard,ShellNext = hxxp://www.hp.com/
uSearchAssistant = hxxp://search.qip.ru/ie
IE: &Download All by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm
IE: &Download by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm
Extra::
FireFox::
FF - ProfilePath - c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
F - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=Typ súboru tak tam vyberies *všetky súbory
A ulož ho na plochu.> Pozor CFScript.txt>Neotvarat a nemoze byt ani>CFScript.txt.txt A Urobis Toto :
Po skonceni skenu vlož log čo ComboFix vytvorí
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Re: "Vypadávanie" usb portov, (nefungujúce USB porty)
Zmazané
----LOG----
ComboFix 10-05-07.01 - gaspariks 2010-05-07 22:18:47.5.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.503 [GMT 2:00]
Running from: c:\documents and settings\gaspariks\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\gaspariks\Desktop\CFScript.txt
AV: ESET Smart Security 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FILE ::
"c:\windows\Tasks\MP Scheduled Scan.job"
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Tasks\MP Scheduled Scan.job
.
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
2010-05-07 16:14 . 2010-05-07 16:14 3412 ----a-w- C:\UsbFix_Upload_Me_ZSSTURMY.zip
2010-05-07 16:04 . 2010-05-07 16:14 -------- d-----w- C:\UsbFix
2010-05-07 14:56 . 2010-05-07 16:11 -------- d-----w- C:\rsit
2010-05-06 20:25 . 2008-04-13 17:46 61696 ----a-w- c:\windows\system32\ohci1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 61824 ----a-w- c:\windows\system32\nic1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 60800 ----a-w- c:\windows\system32\arp1394.sys
2010-05-06 20:25 . 2008-04-13 17:46 53376 ----a-w- c:\windows\system32\1394bus.sys
2010-05-06 20:25 . 2001-08-17 11:46 6400 ----a-w- c:\windows\system32\enum1394.sys
2010-05-06 12:28 . 2010-05-06 13:47 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Ulead Systems
2010-05-06 12:09 . 2010-05-06 12:09 -------- d-----w- c:\program files\SmartSound Software
2010-05-06 12:06 . 2010-05-06 12:06 -------- d-----w- c:\program files\Ulead Systems
2010-04-26 08:56 . 2010-04-26 08:57 -------- d-----w- c:\program files\Jalbum
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Microsoft
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live
2010-04-26 08:53 . 2010-04-26 08:53 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-04-26 08:49 . 2010-04-26 08:49 -------- d-----w- c:\program files\Common Files\Windows Live
2010-04-26 08:30 . 2010-04-26 08:30 -------- d-----w- c:\program files\Glenlay Gallery
2010-04-26 07:45 . 2010-04-26 07:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Arclab
2010-04-26 07:44 . 2010-04-26 07:44 -------- d-----w- c:\program files\Arclab
2010-04-25 06:17 . 2010-04-25 06:17 -------- d-----w- c:\documents and settings\gaspariks\.GalleryRemote
2010-04-24 02:57 . 2010-04-24 03:09 5 ----a-w- c:\windows\system32\SySwmvtoavi.dat
2010-04-24 02:56 . 2010-04-24 02:56 -------- d-----w- c:\program files\Crystal Software
2010-04-23 06:19 . 2010-04-23 06:19 -------- d-----w- c:\program files\Photo Story 3 for Windows
2010-04-21 04:51 . 2010-04-21 04:51 87 ----a-w- c:\windows\system32\EpfwUser.dat
2010-04-16 15:41 . 2010-04-16 18:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-04-16 15:41 . 2010-04-16 15:41 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
2010-04-12 10:02 . 2010-04-12 10:02 -------- d-----w- c:\documents and settings\gaspariks\Local Settings\Application Data\Zoner
2010-04-09 08:17 . 2010-04-30 07:57 -------- d-----w- C:\Temp
2010-04-09 08:14 . 2010-04-09 08:14 -------- d-----w- c:\program files\MP4Converter
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-07 20:25 . 2008-08-15 19:12 12 ----a-w- c:\windows\bthservsdp.dat
2010-05-07 19:16 . 2007-08-17 08:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-05-07 18:34 . 2008-03-16 21:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-05-07 18:33 . 2008-01-17 13:06 -------- d-----w- c:\program files\CCleaner
2010-05-07 18:21 . 2006-06-29 05:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-05-07 15:38 . 2009-05-23 21:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-07 14:56 . 2009-05-20 07:28 -------- d-----w- c:\program files\trend micro
2010-05-06 12:09 . 2006-06-29 04:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 12:09 . 2008-07-01 18:25 -------- d-----w- c:\documents and settings\All Users\Application Data\SmartSound Software Inc
2010-05-06 12:06 . 2008-08-02 18:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\program files\Common Files\Ulead Systems
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2010-05-03 06:17 . 2007-09-27 11:51 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-29 13:39 . 2009-05-23 21:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 13:39 . 2009-05-23 21:25 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-27 12:56 . 2008-01-16 11:04 -------- d-----w- c:\program files\Doklady
2010-04-27 10:00 . 2007-09-26 09:18 147816 ----a-w- c:\documents and settings\gaspariks\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-24 02:10 . 2008-07-21 07:27 -------- d-----w- c:\program files\MediaCell Video Converter
2010-04-20 13:40 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\program files\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-04-15 09:02 . 2009-09-17 10:04 -------- d-----w- c:\program files\QIP Infium
2010-04-14 11:11 . 2010-03-03 08:17 -------- d-----w- c:\documents and settings\gaspariks\Application Data\QipGuard
2010-04-12 16:33 . 2010-03-03 08:17 280440 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\sqlite3.dll
2010-04-12 16:33 . 2010-03-03 08:17 184272 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
2010-04-12 16:33 . 2010-03-03 08:17 20944 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\chrome.dll
2010-04-12 16:33 . 2010-03-03 08:17 127440 ----a-w- c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\components\qippipe.dll
2010-04-12 10:03 . 2008-05-26 07:14 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Zoner
2010-04-12 10:01 . 2008-05-26 07:13 -------- d-----w- c:\program files\Zoner
2010-03-28 19:56 . 2008-05-21 05:48 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-03-28 19:12 . 2010-03-28 19:12 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy2
2010-03-28 19:11 . 2010-03-28 19:11 -------- d-----w- c:\program files\MyPlayCity.com
2010-03-23 12:25 . 2010-03-23 08:28 25 ----a-w- c:\windows\popcinfot.dat
2010-03-23 08:28 . 2010-03-23 08:28 -------- d-----w- c:\documents and settings\All Users\Application Data\PopCap Games
2010-03-23 08:28 . 2010-03-23 08:27 -------- d-----w- c:\program files\PopCap Games
2010-03-15 16:52 . 2010-03-15 16:52 -------- d-----w- c:\program files\GameTop.com
2010-03-15 10:47 . 2010-03-15 10:47 -------- d-----w- c:\program files\Quadrax IV
2010-03-13 16:44 . 2008-07-21 07:29 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Any Video Converter
2010-03-10 06:15 . 2004-08-04 08:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 10:14 . 2009-11-11 18:18 -------- d-----w- c:\documents and settings\gaspariks\Application Data\FileZilla
2010-03-09 00:35 . 2009-11-16 07:51 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Free Download Manager
2010-02-25 06:24 . 2004-08-04 08:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-04 08:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-24 08:16 . 2009-10-03 09:01 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-21 20:27 . 2010-02-21 20:27 292 ----a-w- c:\windows\EReg072.dat
2010-02-19 23:47 . 2010-02-19 23:47 3604480 ----a-w- c:\windows\system32\GPhotos.scr
2010-02-16 14:08 . 2004-08-04 08:00 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2004-08-04 08:00 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-13 19:30 . 2010-02-13 19:20 9562038 ----a-w- c:\documents and settings\gaspariks\Application Data\QIP\Profiles\191042588\RcvdFiles\kazujin_268451389\h3compl10all.exe
2010-02-12 10:03 . 2010-03-11 06:59 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 07:53 . 2010-02-12 07:53 286720 ------w- c:\windows\Setup1.exe
2010-02-12 07:53 . 2010-02-12 07:53 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-02-12 04:33 . 2004-08-04 08:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-04 08:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2008-05-29 10:41 . 2008-05-26 07:42 56 --sh--r- c:\windows\system32\A4177870D0.sys
2008-05-29 10:41 . 2008-05-26 07:42 1890 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-10-05 133104]
"QIP Internet Guardian"="c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe" [2010-04-12 184272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TabletWizard"="c:\windows\help\SplshWrp.exe" [2008-04-14 16384]
"TabletTip"="c:\program files\Common Files\microsoft shared\ink\tabtip.exe" [2008-04-14 271872]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 1015808]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-03-07 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-02-22 40960]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"DAEMON Tools-1033"="d:\program files\D-Tools\daemon.exe" [2003-10-02 81920]
"CnxDslTaskBar"="c:\program files\DrayTek\Vigor318 ADSL\CnxDslTb.exe" [2004-05-06 516096]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-02-06 2021400]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]
"flockbox"="c:\program files\My Lockbox\flockbox.exe" [2007-12-14 1071472]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2009-05-26 413696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"FinePrint Dispečér v5"="c:\windows\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" [2008-03-05 516096]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 102400]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-05 872448]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-20 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-20 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-20 137752]
"UVS10 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-03-06 36864]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\gaspariks\Start Menu\Programs\Startup\
SaveSnap.lnk - c:\program files\SaveSnap\SaveSnap.exe [2008-6-8 1264128]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hp\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleStartMenu"= 1 (0x1)
"HonorAutoRunSetting"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IfxWlxEN]
2005-08-19 13:52 389120 ----a-w- c:\windows\system32\IfxWlxEN.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\loginkey]
2008-04-14 00:11 47104 ----a-w- c:\program files\Common Files\Microsoft Shared\Ink\loginkey.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TabBtnWL]
2002-08-29 05:41 11776 ----a-w- c:\windows\system32\tabbtnwl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpgwlnotify]
2008-04-14 00:12 32256 ----a-w- c:\windows\system32\tpgwlnot.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0aswBoot.exe /M:1a3a94b017
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^eBeam Interact.lnk]
backup=c:\windows\pss\eBeam Interact.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-01-28 11:26 3037696 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulohy]
2006-10-22 18:00 165888 ----a-w- c:\program files\Doklady\DOKLADYULOHY.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Stando\\EA GAMES\\UOAM\\uoam.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 MPRIFL;MPRIFL;c:\windows\system32\drivers\mprifl.sys [2009-10-02 17264]
R0 pnpshark;pnpshark;c:\windows\system32\drivers\pnpshark.sys [2003-10-02 119552]
R0 st3shark;st3shark;c:\windows\system32\drivers\st3shark.sys [2003-09-27 5504]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 EMP_MAP;EPSON Network Presentation Driver Service;c:\windows\system32\drivers\EMP_Map.sys [2007-08-30 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD;c:\windows\system32\drivers\EMP_UDMm.sys [2007-08-17 6400]
R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [2005-10-25 35488]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 EMP_NSWLSV;EMP_NSWLSV;c:\program files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2007-08-30 94208]
R2 EMP_UDSA;EMP_UDSA;c:\program files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2007-08-17 94208]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 EMP_Mirr;EMP_Mirr;c:\windows\system32\drivers\EMP_Mirr.sys [2007-08-30 6272]
R3 EMP_UDMR;EMP_UDMR;c:\windows\system32\drivers\EMP_UDMr.sys [2007-08-17 6272]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-08-07 6528]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2006-02-28 87808]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2005-06-10 35968]
R3 vdisp;vdisp;c:\windows\system32\drivers\EMP_Vd1.sys [2007-08-30 6656]
R3 WacomISDPen;Wacom Penabled HID MiniDriver;c:\windows\system32\drivers\wacomisdpen.sys [2005-07-14 23936]
S1 HMFAxCore46691b2fe72383a3b643d95081ef1d95;HMFAxCore46691b2fe72383a3b643d95081ef1d95;\??\c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys --> c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys [?]
S3 CnxEtP;Conexant AccessRunner USB ADSL WAN Adapter Filter Driver;c:\windows\system32\drivers\CnxEtP.sys [2008-01-04 60288]
S3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;c:\windows\system32\drivers\CnxEtU.sys [2008-01-04 646400]
S3 CnxTgN;Conexant AccessRunner USB ADSL WAN Adapter Driver;c:\windows\system32\drivers\CnxTgN.sys [2008-01-04 108771]
S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 LSDRVA;StarBoard FX-DUO Light Sensor USB Driver (lsdrva.sys);c:\windows\system32\drivers\lsdrva.sys [2008-01-21 20992]
S3 LVHybrid;LVHybrid service;c:\windows\system32\drivers\LVHybrid.sys [2008-04-02 660992]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-09-11 19712]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-09-11 8320]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2009-09-11 42752]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-02-03 27064]
S3 SNPT513;PC Camera (6025 VGA);c:\windows\system32\drivers\snpt513.sys [2007-10-19 183040]
S3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\drivers\wacompen.sys [2006-06-29 14208]
.
Contents of the 'Scheduled Tasks' folder
2010-05-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271Core.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271UA.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 16:20]
2010-05-07 c:\windows\Tasks\User_Feed_Synchronization-{79499DBE-B16C-4236-98F8-79D3DD3D3556}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 10.0.0.10:8080
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: Prevziať pomocou FDM - file://c:\program files\Free Download Manager\dllink.htm
IE: Prevziať video pomocou FDM - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Prevziať vybrané pomocou FDM - file://c:\program files\Free Download Manager\dlselected.htm
IE: Prevziať všetko pomocou FDM - file://c:\program files\Free Download Manager\dlall.htm
FF - ProfilePath - c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - prefs.js: network.proxy.ftp - 10.0.0.10
FF - prefs.js: network.proxy.ftp_port - 8080
FF - prefs.js: network.proxy.gopher - 10.0.0.10
FF - prefs.js: network.proxy.gopher_port - 8080
FF - prefs.js: network.proxy.http - 10.0.0.10
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.socks - 10.0.0.10
FF - prefs.js: network.proxy.socks_port - 8080
FF - prefs.js: network.proxy.ssl - 10.0.0.10
FF - prefs.js: network.proxy.ssl_port - 8080
FF - prefs.js: network.proxy.type - 1
FF - component: c:\program files\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
------- File Associations -------
.
inifile=%SystemRoot%\System32\NOTEPAD.EXE %1"
.
- - - - ORPHANS REMOVED - - - -
MSConfigStartUp-Advanced SystemCare 3 - c:\program files\IObit\Advanced SystemCare 3\AWC.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-07 22:29
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????? ???@???????????????@? ????i??????(?@???????@
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="942C4E5F7FC457AA4109956BC9DB847294B33EBBA1835329422B76D5BD45344DBC4B185077CA0C1D8746D64270F167F4275DFD89C4BE3EF299F7C1614F094CFC5F7E18C37710F788990FAFA017C84B3730FAE25F6F8DF3C6921BD2382492E047FA6BFC51D4B2E3ADCC7E6DBB3E81692D7EBEFBB0E738C0E2967B1BA9EC6EEF57304D3746FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC79335D575E7D6A3B9808A2D97226D213B555A6171C11EC38DE3D5D885B9296A596C650CE129360A2CA95E81C5D2520A3C94FF44F500A133F63C336F1C4BEAEFB6A4EAB77366CA2AE94B2DABB26B7FEACE5D73CE49162D54CAFC82585FAAF78B4210B4E1900A6457EE54166C9FB1C7D24D0A2348AC010AFC31F3B4900E1DAB7AC4383C13783A6C244C6469C2EC43FEC32B4CF972FB52FEEE19CF726F4DF28CF571D73F32959C1374784F8F3A5EA86C61100B606134BD081F7D714A6CB6275C8B73ECA371C9DC1E561B1C64842DBC62411E4DE824B5F777DE9C254953ED61451E7FBACBE0EF16534012151D5E60ACB4415D80874C3D59B18AE1635A3DBB2473914ECEF26D37BDCAB27EE6A414D69550A1316A1A7B8132A30D44CE265866DCA76006E22E895E051FAEA741D0F81F494FB191CD2CABC0402C37AA341D27502C8A0FEA080E94DCFD9F377D6A5ABE52A33C544ABF372B61777F6D4216649346FE475FAE6006E4D7A860C8AF872E32E8A49B548CA1315DC3DD312AB0A1D08A0BA3256F06AC71E371258DC7683AA69E39A68BEECC4F10EC0ED50015DEAE3B3ECEBBA46F216B3880453C5252065A455626612798D26061E41A4A0535791ECD4220D7BEFA51A521E7FF7B84683CE6F20DAF9BD9D18C2F8E6175F65BC20929FD898AE651FC1EC67B4C7C08E462FB449285367D60C11B0277149A0B895CEC4160E8064DD4695446B0553F3994F435127B023C3BB488FC8232737EFA5D98E421E2B5CC5BB78029C092DE7D9A0AE7820B1DFF8A8BF773F2AB3D911D6AC29A26A3B47836FCEEF7CB621AD223E5DD71863463F53B52A66DE36CE3A5F6442485CE1A35E9EFED6890E97C5EC71F1FC5E7F21743E880AB5824214A562F82CCD9D278E41D12E1A0A44D3053EB41AC9A27D22A00230BF4C115ECE2D174C8D43AAB6FB1CB36605E68FC7FE8D86B0B31FE39306EE65C8F7A6603202303B571E44AAC16D79CC43C912855BD57F4FF2294DCA2245DECCA300C63AD86A0FD947815090149DD913F4774A7D6CB070FA723BB5D54D0F8519C07DDCA8D0AB00EF4360071425C734C0EC5C44FA8B7D37A0067DBD76E1A3BADC80699FAA3C7CFC30D6B791E28FB5C3457E9AB6F7ED3D718DECD7CC124CDA9C622A90C93563A7C38071DA199B95C887C2622A5EE0EB847E3FC7064F84"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1576)
c:\windows\system32\IfxWlxEN.dll
- - - - - - - > 'explorer.exe'(2136)
c:\windows\system32\WININET.dll
c:\program files\windows journal\nbmaptip.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\IEFRAME.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\IFXTCS.exe
c:\program files\Common Files\Microsoft Shared\Ink\KeyboardSurrogate.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\windows\System32\SCardSvr.exe
c:\windows\system32\msdtc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\windows\system32\bgsvcgen.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Creative\Shared Files\CTDevSrv.exe
c:\windows\system32\IFXSPMGT.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
c:\windows\system32\HPZipm12.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Windows Media Player\WMPNetwk.exe
c:\windows\SYSTEM32\WISPTIS.EXE
c:\windows\System32\tabbtnu.exe
c:\program files\ProtectTools\Embedded Security Software\PSDrt.exe
c:\program files\Common Files\Microsoft Shared\Ink\TCServer.exe
c:\windows\system32\rundll32.exe
c:\progra~1\HPQ\Shared\HPQTOA~1.EXE
c:\windows\system32\igfxsrvc.exe
c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\1.2.183.23\GoogleCrashHandler.exe
.
**************************************************************************
.
Completion time: 2010-05-07 22:38:24 - machine was rebooted
ComboFix-quarantined-files.txt 2010-05-07 20:38
ComboFix2.txt 2010-05-07 19:03
Pre-Run: 3,519,971,328 bytes free
Post-Run: 3,467,218,944 bytes free
- - End Of File - - 8F1A7A2BC825D5C02ABC98FC89EA359C
----LOG----
ComboFix 10-05-07.01 - gaspariks 2010-05-07 22:18:47.5.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1033.18.1015.503 [GMT 2:00]
Running from: c:\documents and settings\gaspariks\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\gaspariks\Desktop\CFScript.txt
AV: ESET Smart Security 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FILE ::
"c:\windows\Tasks\MP Scheduled Scan.job"
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Tasks\MP Scheduled Scan.job
.
((((((((((((((((((((((((( Files Created from 2010-04-07 to 2010-05-07 )))))))))))))))))))))))))))))))
.
2010-05-07 16:14 . 2010-05-07 16:14 3412 ----a-w- C:\UsbFix_Upload_Me_ZSSTURMY.zip
2010-05-07 16:04 . 2010-05-07 16:14 -------- d-----w- C:\UsbFix
2010-05-07 14:56 . 2010-05-07 16:11 -------- d-----w- C:\rsit
2010-05-06 20:25 . 2008-04-13 17:46 61696 ----a-w- c:\windows\system32\ohci1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 61824 ----a-w- c:\windows\system32\nic1394.sys
2010-05-06 20:25 . 2008-04-13 18:51 60800 ----a-w- c:\windows\system32\arp1394.sys
2010-05-06 20:25 . 2008-04-13 17:46 53376 ----a-w- c:\windows\system32\1394bus.sys
2010-05-06 20:25 . 2001-08-17 11:46 6400 ----a-w- c:\windows\system32\enum1394.sys
2010-05-06 12:28 . 2010-05-06 13:47 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Ulead Systems
2010-05-06 12:09 . 2010-05-06 12:09 -------- d-----w- c:\program files\SmartSound Software
2010-05-06 12:06 . 2010-05-06 12:06 -------- d-----w- c:\program files\Ulead Systems
2010-04-26 08:56 . 2010-04-26 08:57 -------- d-----w- c:\program files\Jalbum
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Microsoft
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-04-26 08:54 . 2010-04-26 08:54 -------- d-----w- c:\program files\Windows Live
2010-04-26 08:53 . 2010-04-26 08:53 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-04-26 08:49 . 2010-04-26 08:49 -------- d-----w- c:\program files\Common Files\Windows Live
2010-04-26 08:30 . 2010-04-26 08:30 -------- d-----w- c:\program files\Glenlay Gallery
2010-04-26 07:45 . 2010-04-26 07:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Arclab
2010-04-26 07:44 . 2010-04-26 07:44 -------- d-----w- c:\program files\Arclab
2010-04-25 06:17 . 2010-04-25 06:17 -------- d-----w- c:\documents and settings\gaspariks\.GalleryRemote
2010-04-24 02:57 . 2010-04-24 03:09 5 ----a-w- c:\windows\system32\SySwmvtoavi.dat
2010-04-24 02:56 . 2010-04-24 02:56 -------- d-----w- c:\program files\Crystal Software
2010-04-23 06:19 . 2010-04-23 06:19 -------- d-----w- c:\program files\Photo Story 3 for Windows
2010-04-21 04:51 . 2010-04-21 04:51 87 ----a-w- c:\windows\system32\EpfwUser.dat
2010-04-16 15:41 . 2010-04-16 18:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-04-16 15:41 . 2010-04-16 15:41 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
2010-04-12 10:02 . 2010-04-12 10:02 -------- d-----w- c:\documents and settings\gaspariks\Local Settings\Application Data\Zoner
2010-04-09 08:17 . 2010-04-30 07:57 -------- d-----w- C:\Temp
2010-04-09 08:14 . 2010-04-09 08:14 -------- d-----w- c:\program files\MP4Converter
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-07 20:25 . 2008-08-15 19:12 12 ----a-w- c:\windows\bthservsdp.dat
2010-05-07 19:16 . 2007-08-17 08:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-05-07 18:34 . 2008-03-16 21:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-05-07 18:33 . 2008-01-17 13:06 -------- d-----w- c:\program files\CCleaner
2010-05-07 18:21 . 2006-06-29 05:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-05-07 15:38 . 2009-05-23 21:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-07 14:56 . 2009-05-20 07:28 -------- d-----w- c:\program files\trend micro
2010-05-06 12:09 . 2006-06-29 04:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 12:09 . 2008-07-01 18:25 -------- d-----w- c:\documents and settings\All Users\Application Data\SmartSound Software Inc
2010-05-06 12:06 . 2008-08-02 18:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\program files\Common Files\Ulead Systems
2010-05-06 12:06 . 2008-07-01 21:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2010-05-03 06:17 . 2007-09-27 11:51 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-29 13:39 . 2009-05-23 21:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 13:39 . 2009-05-23 21:25 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-27 12:56 . 2008-01-16 11:04 -------- d-----w- c:\program files\Doklady
2010-04-27 10:00 . 2007-09-26 09:18 147816 ----a-w- c:\documents and settings\gaspariks\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-24 02:10 . 2008-07-21 07:27 -------- d-----w- c:\program files\MediaCell Video Converter
2010-04-20 13:40 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\program files\Spyware Terminator
2010-04-15 22:12 . 2010-01-28 11:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Spyware Terminator
2010-04-15 09:02 . 2009-09-17 10:04 -------- d-----w- c:\program files\QIP Infium
2010-04-14 11:11 . 2010-03-03 08:17 -------- d-----w- c:\documents and settings\gaspariks\Application Data\QipGuard
2010-04-12 16:33 . 2010-03-03 08:17 280440 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\sqlite3.dll
2010-04-12 16:33 . 2010-03-03 08:17 184272 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe
2010-04-12 16:33 . 2010-03-03 08:17 20944 ----a-w- c:\documents and settings\gaspariks\Application Data\QipGuard\chrome.dll
2010-04-12 16:33 . 2010-03-03 08:17 127440 ----a-w- c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\components\qippipe.dll
2010-04-12 10:03 . 2008-05-26 07:14 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Zoner
2010-04-12 10:01 . 2008-05-26 07:13 -------- d-----w- c:\program files\Zoner
2010-03-28 19:56 . 2008-05-21 05:48 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-03-28 19:12 . 2010-03-28 19:12 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy2
2010-03-28 19:11 . 2010-03-28 19:11 -------- d-----w- c:\program files\MyPlayCity.com
2010-03-23 12:25 . 2010-03-23 08:28 25 ----a-w- c:\windows\popcinfot.dat
2010-03-23 08:28 . 2010-03-23 08:28 -------- d-----w- c:\documents and settings\All Users\Application Data\PopCap Games
2010-03-23 08:28 . 2010-03-23 08:27 -------- d-----w- c:\program files\PopCap Games
2010-03-15 16:52 . 2010-03-15 16:52 -------- d-----w- c:\program files\GameTop.com
2010-03-15 10:47 . 2010-03-15 10:47 -------- d-----w- c:\program files\Quadrax IV
2010-03-13 16:44 . 2008-07-21 07:29 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Any Video Converter
2010-03-10 06:15 . 2004-08-04 08:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 10:14 . 2009-11-11 18:18 -------- d-----w- c:\documents and settings\gaspariks\Application Data\FileZilla
2010-03-09 00:35 . 2009-11-16 07:51 -------- d-----w- c:\documents and settings\gaspariks\Application Data\Free Download Manager
2010-02-25 06:24 . 2004-08-04 08:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 13:11 . 2004-08-04 08:00 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-24 08:16 . 2009-10-03 09:01 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-21 20:27 . 2010-02-21 20:27 292 ----a-w- c:\windows\EReg072.dat
2010-02-19 23:47 . 2010-02-19 23:47 3604480 ----a-w- c:\windows\system32\GPhotos.scr
2010-02-16 14:08 . 2004-08-04 08:00 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2004-08-04 08:00 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-13 19:30 . 2010-02-13 19:20 9562038 ----a-w- c:\documents and settings\gaspariks\Application Data\QIP\Profiles\191042588\RcvdFiles\kazujin_268451389\h3compl10all.exe
2010-02-12 10:03 . 2010-03-11 06:59 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 07:53 . 2010-02-12 07:53 286720 ------w- c:\windows\Setup1.exe
2010-02-12 07:53 . 2010-02-12 07:53 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-02-12 04:33 . 2004-08-04 08:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2004-08-04 08:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2008-05-29 10:41 . 2008-05-26 07:42 56 --sh--r- c:\windows\system32\A4177870D0.sys
2008-05-29 10:41 . 2008-05-26 07:42 1890 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-10-05 133104]
"QIP Internet Guardian"="c:\documents and settings\gaspariks\Application Data\QipGuard\QipGuard.exe" [2010-04-12 184272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TabletWizard"="c:\windows\help\SplshWrp.exe" [2008-04-14 16384]
"TabletTip"="c:\program files\Common Files\microsoft shared\ink\tabtip.exe" [2008-04-14 271872]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 1015808]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-03-07 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-02-22 40960]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2005-12-20 1187840]
"DAEMON Tools-1033"="d:\program files\D-Tools\daemon.exe" [2003-10-02 81920]
"CnxDslTaskBar"="c:\program files\DrayTek\Vigor318 ADSL\CnxDslTb.exe" [2004-05-06 516096]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-02-06 2021400]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]
"flockbox"="c:\program files\My Lockbox\flockbox.exe" [2007-12-14 1071472]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2009-05-26 413696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"FinePrint Dispečér v5"="c:\windows\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" [2008-03-05 516096]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 102400]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-05 872448]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-20 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-20 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-20 137752]
"UVS10 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-03-06 36864]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\gaspariks\Start Menu\Programs\Startup\
SaveSnap.lnk - c:\program files\SaveSnap\SaveSnap.exe [2008-6-8 1264128]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hp\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleStartMenu"= 1 (0x1)
"HonorAutoRunSetting"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IfxWlxEN]
2005-08-19 13:52 389120 ----a-w- c:\windows\system32\IfxWlxEN.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\loginkey]
2008-04-14 00:11 47104 ----a-w- c:\program files\Common Files\Microsoft Shared\Ink\loginkey.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TabBtnWL]
2002-08-29 05:41 11776 ----a-w- c:\windows\system32\tabbtnwl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpgwlnotify]
2008-04-14 00:12 32256 ----a-w- c:\windows\system32\tpgwlnot.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0aswBoot.exe /M:1a3a94b017
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^eBeam Interact.lnk]
backup=c:\windows\pss\eBeam Interact.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
2010-01-28 11:26 3037696 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulohy]
2006-10-22 18:00 165888 ----a-w- c:\program files\Doklady\DOKLADYULOHY.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Stando\\EA GAMES\\UOAM\\uoam.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 MPRIFL;MPRIFL;c:\windows\system32\drivers\mprifl.sys [2009-10-02 17264]
R0 pnpshark;pnpshark;c:\windows\system32\drivers\pnpshark.sys [2003-10-02 119552]
R0 st3shark;st3shark;c:\windows\system32\drivers\st3shark.sys [2003-09-27 5504]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 EMP_MAP;EPSON Network Presentation Driver Service;c:\windows\system32\drivers\EMP_Map.sys [2007-08-30 6400]
R1 EMP_UDMM;EPSON Network Presentation Service for UD;c:\windows\system32\drivers\EMP_UDMm.sys [2007-08-17 6400]
R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [2005-10-25 35488]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 EMP_NSWLSV;EMP_NSWLSV;c:\program files\EPSON Projector\EMP NS Connection V2\EMP_NSWLSV.exe [2007-08-30 94208]
R2 EMP_UDSA;EMP_UDSA;c:\program files\EPSON Projector\EPSON USB Display V1.1\EMP_UDSA.exe [2007-08-17 94208]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 EMP_Mirr;EMP_Mirr;c:\windows\system32\drivers\EMP_Mirr.sys [2007-08-30 6272]
R3 EMP_UDMR;EMP_UDMR;c:\windows\system32\drivers\EMP_UDMr.sys [2007-08-17 6272]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-08-07 6528]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2006-02-28 87808]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2005-06-10 35968]
R3 vdisp;vdisp;c:\windows\system32\drivers\EMP_Vd1.sys [2007-08-30 6656]
R3 WacomISDPen;Wacom Penabled HID MiniDriver;c:\windows\system32\drivers\wacomisdpen.sys [2005-07-14 23936]
S1 HMFAxCore46691b2fe72383a3b643d95081ef1d95;HMFAxCore46691b2fe72383a3b643d95081ef1d95;\??\c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys --> c:\windows\system32\drivers\HMFAxCore46691b2fe72383a3b643d95081ef1d95.sys [?]
S3 CnxEtP;Conexant AccessRunner USB ADSL WAN Adapter Filter Driver;c:\windows\system32\drivers\CnxEtP.sys [2008-01-04 60288]
S3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;c:\windows\system32\drivers\CnxEtU.sys [2008-01-04 646400]
S3 CnxTgN;Conexant AccessRunner USB ADSL WAN Adapter Driver;c:\windows\system32\drivers\CnxTgN.sys [2008-01-04 108771]
S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 LSDRVA;StarBoard FX-DUO Light Sensor USB Driver (lsdrva.sys);c:\windows\system32\drivers\lsdrva.sys [2008-01-21 20992]
S3 LVHybrid;LVHybrid service;c:\windows\system32\drivers\LVHybrid.sys [2008-04-02 660992]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-09-11 19712]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-09-11 8320]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2009-09-11 42752]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-02-03 27064]
S3 SNPT513;PC Camera (6025 VGA);c:\windows\system32\drivers\snpt513.sys [2007-10-19 183040]
S3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\drivers\wacompen.sys [2006-06-29 14208]
.
Contents of the 'Scheduled Tasks' folder
2010-05-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271Core.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1039189978-529690843-3723799258-1271UA.job
- c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-05 16:24]
2010-05-07 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 16:20]
2010-05-07 c:\windows\Tasks\User_Feed_Synchronization-{79499DBE-B16C-4236-98F8-79D3DD3D3556}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 10.0.0.10:8080
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: Prevziať pomocou FDM - file://c:\program files\Free Download Manager\dllink.htm
IE: Prevziať video pomocou FDM - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Prevziať vybrané pomocou FDM - file://c:\program files\Free Download Manager\dlselected.htm
IE: Prevziať všetko pomocou FDM - file://c:\program files\Free Download Manager\dlall.htm
FF - ProfilePath - c:\documents and settings\gaspariks\Application Data\Mozilla\Firefox\Profiles\9cjcen66.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - prefs.js: network.proxy.ftp - 10.0.0.10
FF - prefs.js: network.proxy.ftp_port - 8080
FF - prefs.js: network.proxy.gopher - 10.0.0.10
FF - prefs.js: network.proxy.gopher_port - 8080
FF - prefs.js: network.proxy.http - 10.0.0.10
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.socks - 10.0.0.10
FF - prefs.js: network.proxy.socks_port - 8080
FF - prefs.js: network.proxy.ssl - 10.0.0.10
FF - prefs.js: network.proxy.ssl_port - 8080
FF - prefs.js: network.proxy.type - 1
FF - component: c:\program files\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
------- File Associations -------
.
inifile=%SystemRoot%\System32\NOTEPAD.EXE %1"
.
- - - - ORPHANS REMOVED - - - -
MSConfigStartUp-Advanced SystemCare 3 - c:\program files\IObit\Advanced SystemCare 3\AWC.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-07 22:29
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????? ???@???????????????@? ????i??????(?@???????@
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1576)
c:\windows\system32\IfxWlxEN.dll
- - - - - - - > 'explorer.exe'(2136)
c:\windows\system32\WININET.dll
c:\program files\windows journal\nbmaptip.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\IEFRAME.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\IFXTCS.exe
c:\program files\Common Files\Microsoft Shared\Ink\KeyboardSurrogate.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\windows\System32\SCardSvr.exe
c:\windows\system32\msdtc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\windows\system32\bgsvcgen.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Creative\Shared Files\CTDevSrv.exe
c:\windows\system32\IFXSPMGT.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
c:\windows\system32\HPZipm12.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Windows Media Player\WMPNetwk.exe
c:\windows\SYSTEM32\WISPTIS.EXE
c:\windows\System32\tabbtnu.exe
c:\program files\ProtectTools\Embedded Security Software\PSDrt.exe
c:\program files\Common Files\Microsoft Shared\Ink\TCServer.exe
c:\windows\system32\rundll32.exe
c:\progra~1\HPQ\Shared\HPQTOA~1.EXE
c:\windows\system32\igfxsrvc.exe
c:\documents and settings\gaspariks\Local Settings\Application Data\Google\Update\1.2.183.23\GoogleCrashHandler.exe
.
**************************************************************************
.
Completion time: 2010-05-07 22:38:24 - machine was rebooted
ComboFix-quarantined-files.txt 2010-05-07 20:38
ComboFix2.txt 2010-05-07 19:03
Pre-Run: 3,519,971,328 bytes free
Post-Run: 3,467,218,944 bytes free
- - End Of File - - 8F1A7A2BC825D5C02ABC98FC89EA359C
Přispějete na provoz fóra?
