Re: dobry den ja by sem chtěl vyřešit tuto zaležitost na vir
Napsal: 27 bře 2011 19:17
Tady Je log:
ComboFix 11-03-26.02 - Naruto 27.03.2011 19:03:41.1.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1033.18.2046.1027 [GMT 2:00]
Spuštěný z: d:\users\Naruto\Downloads\ComboFix.exe
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
D:\install.exe
d:\program files\ESET\MiNODLogin
d:\program files\ESET\MiNODLogin\MiNODLogin.exe
d:\program files\ESET\MiNODLogin\MiNODLogin.jar
d:\program files\ESET\MiNODLogin\MiNODLoginLib.dll
d:\program files\ESET\MiNODLogin\MiNODLoginUninst.exe
d:\program files\ESET\MiNODLogin\servidores.xml
d:\programdata\Microsoft\Network\Downloader\qmgr0.dat
d:\programdata\Microsoft\Network\Downloader\qmgr1.dat
d:\users\Naruto\AppData\Roaming\Narutolog.dat
d:\users\Naruto\AppData\Roaming\Windows Update
.
----- BITS: Možné infikované stránky -----
.
hxxp://download.xbox.com:80
d:\windows\system32\userinit.exe . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-27 do 2011-03-27 )))))))))))))))))))))))))))))))
.
.
2011-03-27 17:38 . 2011-03-27 18:09 -------- d-----w- d:\users\Naruto\AppData\Local\temp
2011-03-27 17:38 . 2011-03-27 17:38 -------- d-----w- d:\users\Default\AppData\Local\temp
2011-03-27 16:13 . 2011-03-27 16:13 -------- d-----w- d:\program files\Atari
2011-03-27 08:50 . 2011-03-27 08:50 28752 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\MpKsl12c40b39.sys
2011-03-26 19:14 . 2011-03-15 04:05 6792528 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\mpengine.dll
2011-03-26 16:54 . 2011-03-26 16:54 -------- d-----w- d:\program files\Bing Bar Installer
2011-03-26 13:27 . 2011-03-26 13:38 -------- d-----w- d:\program files\Dragon Age 2
2011-03-26 11:10 . 2011-03-27 10:05 -------- d-----w- d:\users\Naruto\AppData\Roaming\Hamachi
2011-03-26 11:10 . 2011-03-26 11:10 25280 ----a-w- d:\windows\system32\drivers\hamachi.sys
2011-03-25 19:59 . 2011-03-25 20:00 -------- d-----w- d:\users\Naruto\AppData\Roaming\.minecraft
2011-03-25 18:49 . 2010-11-30 09:43 439632 ------w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2011-03-25 18:49 . 2010-11-30 09:43 439632 ------w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C9235C2A-4E76-43C7-A05B-179F4D4D6A61}\gapaengine.dll
2011-03-24 16:52 . 2011-03-24 16:52 107888 ----a-w- d:\windows\system32\CmdLineExt.dll
2011-03-24 16:08 . 2011-03-24 16:55 -------- d-----w- d:\users\Naruto\AppData\Local\Rockstar Games
2011-03-24 14:42 . 2011-03-24 14:42 -------- d-----w- d:\windows\E10DB5DAE57640EAA7FC1CB2A7B283A6.TMP
2011-03-23 15:00 . 2011-03-23 15:00 -------- d-----w- d:\program files\ARO 2011
2011-03-23 14:35 . 2011-03-23 14:35 138056 ----a-w- d:\windows\system32\drivers\PnkBstrK.sys
2011-03-22 18:13 . 2011-03-22 18:13 -------- d-----w- d:\program files\Common Files\ParetoLogic
2011-03-22 18:12 . 2011-03-22 18:13 -------- d-----w- d:\programdata\ParetoLogic
2011-03-22 18:12 . 2011-03-22 18:12 -------- d-----w- d:\program files\ParetoLogic
2011-03-22 18:00 . 2011-03-23 15:38 -------- d-----w- d:\users\hry
2011-03-22 16:46 . 2011-03-22 16:46 86016 ----a-w- d:\windows\system32\OpenAL32.dll
2011-03-22 16:46 . 2011-03-22 16:46 413696 ----a-w- d:\windows\system32\wrap_oal.dll
2011-03-22 16:46 . 2011-03-22 16:46 -------- d-----w- d:\program files\OpenAL
2011-03-21 20:03 . 2011-03-21 20:03 -------- d-----w- d:\users\Naruto\AppData\Roaming\IObit
2011-03-21 19:54 . 2011-03-21 19:54 -------- d-----w- d:\program files\Common Files\Adobe AIR
2011-03-21 19:52 . 2011-03-21 19:54 -------- d-----w- d:\users\Naruto\AppData\Local\Adobe
2011-03-21 19:48 . 2011-03-21 19:48 -------- d-----w- d:\program files\Common Files\Adobe
2011-03-21 19:47 . 2011-03-21 19:48 -------- d-----w- d:\windows\system32\Adobe
2011-03-21 18:10 . 2011-03-21 18:17 -------- d-----w- d:\users\Naruto\AppData\Local\Ubisoft Game Launcher
2011-03-21 18:10 . 2011-03-22 16:32 -------- d-----w- d:\programdata\Ubisoft
2011-03-21 17:53 . 2011-03-23 14:34 189248 ----a-w- d:\windows\system32\PnkBstrB.exe
2011-03-21 17:53 . 2011-03-23 14:34 75136 ----a-w- d:\windows\system32\PnkBstrA.exe
2011-03-21 17:53 . 2011-03-21 17:53 -------- d-----w- d:\users\Naruto\AppData\Roaming\PunkBuster
2011-03-19 21:14 . 2011-03-19 21:14 -------- d-----w- d:\program files\Common Files\xing shared
2011-03-19 21:13 . 2011-03-19 21:14 -------- d-----w- d:\program files\Real
2011-03-17 14:03 . 2011-03-17 14:03 -------- d-----w- d:\users\Naruto\Caches
2011-03-16 15:14 . 2011-03-16 15:14 -------- d-----w- d:\users\Naruto\AppData\Roaming\ChromePlus
2011-03-16 14:42 . 2011-03-16 14:42 -------- d-----w- d:\program files\CCleaner
2011-03-15 19:59 . 2011-03-15 04:05 6792528 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-15 19:58 . 2011-02-05 06:20 94208 ----a-w- d:\program files\Internet Explorer\cs\iediag.resources.dll
2011-03-15 19:50 . 2011-03-15 19:50 -------- d-----w- D:\NVIDIA
2011-03-15 17:01 . 2011-03-15 17:01 48648 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-03-15 14:55 . 2011-03-15 15:41 -------- d-----w- d:\program files\StarCraft II
2011-03-15 14:08 . 2011-03-15 14:08 -------- d-----w- d:\program files\Universal Interactive
2011-03-14 17:29 . 2011-03-14 17:29 -------- d-----w- d:\program files\Microsoft Security Client
2011-03-14 16:59 . 2011-03-14 16:59 -------- d-----w- d:\users\Naruto\AppData\Local\Nero
2011-03-14 16:50 . 2011-03-14 16:50 -------- d-----w- d:\users\Naruto\AppData\Roaming\Nero
2011-03-14 16:36 . 2011-03-14 16:44 -------- d-----w- d:\programdata\Nero
2011-03-14 16:35 . 2011-03-14 16:36 -------- d-----w- d:\program files\Common Files\Nero
2011-03-14 16:35 . 2011-03-14 16:44 -------- d-----w- d:\program files\Nero
2011-03-14 14:19 . 2011-03-16 13:05 -------- d-----w- d:\program files\Common Files\Blizzard Entertainment
2011-03-14 14:19 . 2011-03-15 15:09 -------- d-----w- d:\programdata\Blizzard Entertainment
2011-03-13 19:59 . 2011-03-13 19:59 -------- d-----w- d:\program files\Microsoft Silverlight
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\cs-CZ
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\cs
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\XPSViewer
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\drivers\cs-CZ
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\drivers\UMDF\cs-CZ
2011-03-13 19:37 . 2011-03-15 19:58 -------- d-----w- d:\windows\system32\wbem\cs-CZ
2011-03-13 19:29 . 2009-07-14 01:43 3584 ----a-w- d:\windows\system32\Spool\prtprocs\w32x86\cs-CZ\LXKPTPRC.DLL.mui
2011-03-13 19:06 . 2011-03-16 15:06 -------- d-----w- d:\program files\BearShare Applications
2011-03-13 19:04 . 2011-03-13 19:04 -------- d-----w- d:\users\Naruto\AppData\Local\PackageAware
2011-03-13 03:12 . 2011-03-13 03:14 -------- d-----w- D:\a crack
2011-03-13 02:55 . 2011-03-13 02:59 -------- d-----w- d:\program files\Microsoft Games for Windows - LIVE
2011-03-13 02:55 . 2011-03-13 02:55 -------- d-----w- d:\windows\system32\xlive
2011-03-13 01:36 . 2008-07-12 16:18 467984 ----a-w- d:\windows\system32\d3dx10_39.dll
2011-03-13 01:36 . 2008-07-12 16:18 1493528 ----a-w- d:\windows\system32\D3DCompiler_39.dll
2011-03-13 01:36 . 2008-07-12 16:18 3851784 ----a-w- d:\windows\system32\D3DX9_39.dll
2011-03-13 01:31 . 2011-03-23 14:15 -------- d-----w- d:\program files\Ubisoft
2011-03-13 01:31 . 2011-03-13 01:31 -------- d-----w- d:\users\Naruto\AppData\Roaming\InstallShield
2011-03-12 22:37 . 2011-03-12 22:37 -------- d-----w- d:\program files\EA
2011-03-11 16:12 . 2011-02-11 06:54 5943120 ----a-w- d:\programdata\Microsoft\Windows Defender\Definition Updates\{8D514ABA-BF6E-4FF3-A636-4AA0DA613862}\mpengine.dll
2011-03-10 02:26 . 2011-03-24 19:17 -------- d-----w- d:\users\Naruto\AppData\Local\ElevatedDiagnostics
2011-03-10 02:10 . 2011-03-10 02:10 -------- d-----w- d:\windows\system32\SPReview
2011-03-10 02:09 . 2011-03-10 02:10 -------- d-----w- d:\windows\system32\EventProviders
2011-03-10 02:04 . 2010-11-05 01:58 1130824 ----a-w- d:\windows\system32\dfshim.dll
2011-03-10 02:02 . 2010-11-20 12:19 3207680 ----a-w- d:\windows\system32\mf.dll
2011-03-10 02:01 . 2010-11-20 12:21 270848 ----a-w- d:\windows\system32\tsmf.dll
2011-03-10 02:00 . 2010-11-20 12:18 136192 ----a-w- d:\windows\system32\cryptsvc.dll
2011-03-10 01:59 . 2010-11-20 12:21 346624 ----a-w- d:\windows\system32\untfs.dll
2011-03-10 01:58 . 2010-11-20 12:21 410624 ----a-w- d:\windows\system32\systemcpl.dll
2011-03-10 01:57 . 2010-11-20 12:16 75776 ----a-w- d:\windows\system32\psisrndr.ax
2011-03-10 01:56 . 2010-11-20 08:47 10240 ----a-w- d:\windows\system32\drivers\acpipmi.sys
2011-03-10 01:53 . 2010-11-20 12:21 780288 ----a-w- d:\windows\system32\wbem\wbemcore.dll
2011-03-10 01:53 . 2010-11-20 12:21 363008 ----a-w- d:\windows\system32\wbemcomn.dll
2011-03-10 01:53 . 2010-11-20 12:21 351232 ----a-w- d:\windows\system32\wmicmiplugin.dll
2011-03-10 01:53 . 2010-11-20 12:19 606208 ----a-w- d:\windows\system32\wbem\fastprox.dll
2011-03-10 01:52 . 2010-11-20 12:21 697344 ----a-w- d:\windows\system32\SmiEngine.dll
2011-03-10 01:51 . 2010-11-20 12:21 189952 ----a-w- d:\windows\system32\wdscore.dll
2011-03-10 01:51 . 2010-11-20 12:17 209920 ----a-w- d:\windows\system32\PkgMgr.exe
2011-03-10 01:48 . 2010-11-20 12:18 323072 ----a-w- d:\windows\system32\drvstore.dll
2011-03-10 01:48 . 2010-11-20 12:18 257024 ----a-w- d:\windows\system32\dpx.dll
2011-03-10 00:49 . 2011-03-10 00:48 737280 ----a-w- d:\windows\iun6002.exe
2011-03-10 00:49 . 2011-03-10 00:49 -------- d-----w- d:\program files\Codec Pack - All In 1
2011-03-10 00:49 . 2011-03-10 00:49 -------- d-----w- d:\windows\system32\languages
2011-03-10 00:39 . 2011-01-17 05:47 161792 ----a-w- d:\windows\system32\d3d10_1.dll
2011-03-09 16:33 . 2011-02-19 06:30 1076736 ----a-w- d:\windows\system32\DWrite.dll
2011-03-09 16:33 . 2011-02-19 06:30 805376 ----a-w- d:\windows\system32\FntCache.dll
2011-03-09 16:33 . 2011-02-19 06:30 739840 ----a-w- d:\windows\system32\d2d1.dll
2011-03-09 16:33 . 2010-12-23 05:54 642048 ----a-w- d:\windows\system32\CPFilters.dll
2011-03-09 16:32 . 2010-12-23 05:54 534528 ----a-w- d:\windows\system32\EncDec.dll
2011-03-09 16:32 . 2010-12-23 05:54 850944 ----a-w- d:\windows\system32\sbe.dll
2011-03-09 16:32 . 2010-12-23 05:50 199680 ----a-w- d:\windows\system32\mpg2splt.ax
2011-03-07 01:12 . 2011-03-07 01:14 -------- d-----w- D:\Fraps
2011-03-06 22:18 . 2011-03-06 22:18 -------- d-----w- d:\users\Naruto\AppData\Local\SKIDROW
2011-03-06 04:41 . 2011-03-24 14:41 -------- d-----w- d:\program files\Common Files\Wise Installation Wizard
2011-03-06 04:13 . 2011-03-26 13:38 -------- d-----w- d:\program files\Common Files\BioWare
2011-03-04 00:54 . 2011-03-04 00:54 -------- d-sh--w- d:\programdata\DSS
2011-03-04 00:44 . 2011-03-04 00:44 -------- d-----w- d:\users\Naruto\AppData\Local\FalloutNV
2011-03-03 23:43 . 2011-03-03 23:43 -------- d-----w- d:\program files\Bethesda Softworks
2011-03-03 03:58 . 2011-03-03 03:58 -------- d-----w- d:\program files\Electronic Arts
2011-03-02 22:11 . 2011-03-02 22:11 484160 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-02-28 05:38 . 2011-03-27 18:09 -------- d-----w- d:\program files\Steam
2011-02-28 05:37 . 2011-02-28 05:37 -------- d-----w- d:\program files\Vigil Games
2011-02-28 04:18 . 2011-02-28 05:30 -------- d-----w- d:\users\Naruto\dumps
2011-02-28 01:00 . 2011-02-28 01:00 -------- d-----w- d:\program files\Common Files\Java
2011-02-28 00:59 . 2011-02-28 00:59 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-02-28 00:59 . 2011-02-28 00:59 -------- d-----w- d:\program files\Java
2011-02-28 00:58 . 2011-02-28 00:58 -------- d-----w- d:\programdata\McAfee
2011-02-28 00:54 . 2011-03-10 00:32 -------- d-----w- d:\program files\ESET
2011-02-26 18:57 . 2011-02-26 21:32 -------- d-----w- d:\users\Naruto\AppData\Local\Darksiders
2011-02-26 18:36 . 2011-03-24 13:12 -------- d-----w- d:\program files\Common Files\Steam
2011-02-26 18:29 . 2011-03-18 19:36 -------- d-----w- d:\users\Naruto\AppData\Roaming\vlc
2011-02-26 18:28 . 2011-02-26 18:28 -------- d-----w- d:\program files\VideoLAN
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-26 17:07 . 2011-02-18 01:03 48648 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-03-26 17:07 . 2011-02-18 01:02 484160 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-03-19 21:13 . 2007-06-15 17:21 499712 ----a-w- d:\windows\system32\msvcp71.dll
2011-03-19 21:13 . 2003-02-21 12:42 348160 ----a-w- d:\windows\system32\msvcr71.dll
2011-03-13 20:20 . 2009-08-18 19:30 564632 ----a-w- d:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-03-13 20:20 . 2009-08-18 19:24 18328 ----a-w- d:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-10 02:22 . 2009-07-14 02:05 152576 ----a-w- d:\windows\system32\msclmd.dll
2011-02-19 01:50 . 2011-02-19 01:50 218688 ----a-w- d:\windows\system32\drivers\dtsoftbus01.sys
2011-02-18 00:58 . 2011-02-18 00:58 86528 ----a-w- d:\windows\system32\iesysprep.dll
2011-02-18 00:58 . 2011-02-18 00:58 76800 ----a-w- d:\windows\system32\SetIEInstalledDate.exe
2011-02-18 00:58 . 2011-02-18 00:58 74752 ----a-w- d:\windows\system32\RegisterIEPKEYs.exe
2011-02-18 00:58 . 2011-02-18 00:58 48640 ----a-w- d:\windows\system32\mshtmler.dll
2011-02-18 00:58 . 2011-02-18 00:58 161280 ----a-w- d:\windows\system32\msls31.dll
2011-02-18 00:58 . 2011-02-18 00:58 1125376 ----a-w- d:\windows\system32\wininet.dll
2011-02-18 00:58 . 2011-02-18 00:58 110592 ----a-w- d:\windows\system32\IEAdvpack.dll
2011-02-18 00:58 . 2011-02-18 00:58 74752 ----a-w- d:\windows\system32\iesetup.dll
2011-02-18 00:58 . 2011-02-18 00:58 63488 ----a-w- d:\windows\system32\tdc.ocx
2011-02-18 00:58 . 2011-02-18 00:58 420864 ----a-w- d:\windows\system32\vbscript.dll
2011-02-18 00:58 . 2011-02-18 00:58 367104 ----a-w- d:\windows\system32\html.iec
2011-02-18 00:58 . 2011-02-18 00:58 23552 ----a-w- d:\windows\system32\licmgr10.dll
2011-02-18 00:58 . 2011-02-18 00:58 203776 ----a-w- d:\windows\system32\webcheck.dll
2011-02-18 00:58 . 2011-02-18 00:58 152064 ----a-w- d:\windows\system32\wextract.exe
2011-02-18 00:58 . 2011-02-18 00:58 150528 ----a-w- d:\windows\system32\iexpress.exe
2011-02-18 00:58 . 2011-02-18 00:58 1426432 ----a-w- d:\windows\system32\inetcpl.cpl
2011-02-18 00:58 . 2011-02-18 00:58 2382336 ----a-w- d:\windows\system32\mshtml.tlb
2011-02-18 00:58 . 2011-02-18 00:58 35840 ----a-w- d:\windows\system32\imgutil.dll
2011-02-18 00:58 . 2011-02-18 00:58 1791488 ----a-w- d:\windows\system32\jscript9.dll
2011-02-18 00:58 . 2011-02-18 00:58 142848 ----a-w- d:\windows\system32\ieUnatt.exe
2011-02-18 00:58 . 2011-02-18 00:58 11776 ----a-w- d:\windows\system32\mshta.exe
2011-02-18 00:58 . 2011-02-18 00:58 101888 ----a-w- d:\windows\system32\admparse.dll
2011-02-17 21:46 . 2011-02-17 21:46 835440 ----a-r- d:\windows\system32\pbsvc.exe
2011-02-03 05:54 . 2011-02-18 00:33 219008 ----a-w- d:\windows\system32\drivers\dxgmms1.sys
2011-01-08 03:27 . 2011-03-15 19:51 10920 ----a-w- d:\windows\system32\drivers\nvBridge.kmd
2011-01-08 03:27 . 2010-07-10 13:37 1965672 ----a-w- d:\windows\system32\nvapi.dll
2011-01-08 03:27 . 2010-07-10 13:37 10078312 ----a-w- d:\windows\system32\nvd3dum.dll
2011-01-08 03:27 . 2009-07-13 22:09 5653096 ----a-w- d:\windows\system32\nvwgf2um.dll
2011-01-07 20:06 . 2011-01-07 20:06 580200 ----a-w- d:\windows\system32\easyUpdatusAPIU.dll
2011-01-07 20:06 . 2011-01-07 20:06 3597416 ----a-w- d:\windows\system32\nvcpl.dll
2011-01-07 20:06 . 2011-01-07 20:06 2620520 ----a-w- d:\windows\system32\nvsvc.dll
2011-01-07 20:06 . 2011-01-07 20:06 608872 ----a-w- d:\windows\system32\nvvsvc.exe
2011-01-07 20:06 . 2011-01-07 20:06 111208 ----a-w- d:\windows\system32\nvmctray.dll
2011-01-07 07:46 . 2011-02-24 03:47 870912 ----a-w- d:\windows\system32\XpsPrint.dll
2011-01-07 07:46 . 2011-02-24 03:47 288256 ----a-w- d:\windows\system32\XpsGdiConverter.dll
2011-01-07 07:45 . 2011-02-18 00:45 34304 ----a-w- d:\windows\system32\atmlib.dll
2011-01-07 05:43 . 2011-02-18 00:45 294400 ----a-w- d:\windows\system32\atmfd.dll
2011-01-05 03:51 . 2011-02-18 00:45 2330624 ----a-w- d:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2011-02-08 17:22 721840 ----a-w- d:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]
2011-01-18 13:05 87480 ----a-w- d:\progra~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}"= "d:\progra~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll" [2011-01-18 87480]
.
[HKEY_CLASSES_ROOT\clsid\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="d:\program files\Skype\Phone\Skype.exe" [2011-01-27 15026056]
"uTorrent"="d:\program files\uTorrent\uTorrent.exe" [2011-02-18 396152]
"DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"Steam"="d:\program files\Steam\Steam.exe" [2011-02-28 1242448]
"RGSC"="d:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"reset"="regedit" [X]
"RtHDVCpl"="d:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-30 9914984]
"DivXUpdate"="d:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-01-10 1230704]
"SunJavaUpdateSched"="d:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"egui"="d:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-13 2219184]
"NBAgent"="d:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
"MSC"="d:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408]
"TkBellExe"="d:\program files\Real\RealPlayer\Update\realsched.exe" [2011-03-19 273544]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-01-30 35736]
"Adobe ARM"="d:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-15 932288]
.
d:\users\Naruto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Syst‚m - z stupce
target.lnk - [N/A]
.
d:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Aktualizovat ESET licenci.lnk - d:\program files\ESET\MiNODLogin\MiNODLogin.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=d:\progra~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll d:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;d:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;d:\windows\system32\DRIVERS\3xHybrid.sys [2006-11-22 1121536]
R3 cpuz134;cpuz134;d:\users\hry\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [x]
R3 MpNWMon;Microsoft Malware Protection Network Driver;d:\windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NisDrv;Microsoft Network Inspection System;d:\windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 NisSrv;Microsoft Network Inspection;d:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;d:\windows\system32\DRIVERS\RTL8187B.sys [2009-07-13 347136]
R3 TsUsbFlt;TsUsbFlt; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;d:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-19 218688]
S1 ehdrv;ehdrv;d:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S1 MpKsl12c40b39;MpKsl12c40b39;d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\MpKsl12c40b39.sys [2011-03-27 28752]
S2 eamonm;eamonm;d:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;d:\program files\ESET\ESET Smart Security\ekrn.exe [2011-01-13 810144]
S2 epfwwfp;epfwwfp;d:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
S2 NAUpdate;Nero Update;d:\program files\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;d:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
S2 TeamViewer6;TeamViewer 6;d:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-03-01 2296696]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;d:\windows\system32\drivers\nvhda32v.sys [2010-11-11 122984]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;d:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-27 d:\windows\Tasks\ParetoLogic Registration3.job
- d:\program files\Common Files\ParetoLogic\UUS3\UUS3.dll [2009-10-12 05:01]
.
2011-03-23 d:\windows\Tasks\ParetoLogic Update Version3.job
- d:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2009-10-12 05:01]
.
2011-03-23 d:\windows\Tasks\PC Health Advisor Defrag.job
- d:\program files\ParetoLogic\PCHA\PCHA.exe [2010-09-30 21:40]
.
2011-03-23 d:\windows\Tasks\PC Health Advisor.job
- d:\program files\ParetoLogic\PCHA\PCHA.exe [2010-09-30 21:40]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Office Excel - d:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
HKCU-Run-PMCRemote - (no file)
AddRemove-Just Cause 2_is1 - e:\new folder\Just Cause 2\unins000.exe
AddRemove-MiNODLogin - d:\program files\ESET\MiNODLogin\MiNODLoginUninst.exe
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - d:\program files\DivX\DivXCodecUninstall.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - d:\program files\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-757483599-661166468-1204113662-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:66,27,e5,bd,a1,76,db,ad,39,f4,ff,a3,15,bc,e3,6c,90,43,9e,3f,71,50,3e,
61,1f,e2,08,76,ba,17,cb,41,a7,e6,d2,0f,ca,7f,aa,e2,da,19,0b,9c,b3,25,05,dc,\
"??"=hex:f2,c8,d2,3e,ce,54,0f,27,70,93,24,b6,9c,cb,8d,85
.
[HKEY_USERS\S-1-5-21-757483599-661166468-1204113662-1001\Software\SecuROM\License information*]
"datasecu"=hex:4c,65,98,47,d0,69,f1,e3,c7,d6,0d,e5,85,85,fe,83,fe,b2,ea,92,f1,
89,f8,62,96,2e,1b,5c,a3,e7,e6,3c,4e,25,fd,ad,8e,c3,01,2e,8c,3e,32,6c,dc,cf,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
d:\windows\system32\nvvsvc.exe
d:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
d:\program files\NVIDIA Corporation\Display\NvXDSync.exe
d:\windows\system32\nvvsvc.exe
d:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
d:\windows\system32\PnkBstrA.exe
d:\windows\system32\PnkBstrB.exe
d:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
d:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
d:\program files\Windows Media Player\wmpnetwk.exe
d:\windows\system32\taskhost.exe
d:\windows\system32\taskhost.exe
d:\windows\system32\conhost.exe
d:\program files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
d:\program files\Common Files\Steam\SteamService.exe
d:\windows\system32\sppsvc.exe
d:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
.
**************************************************************************
.
Celkový čas: 2011-03-27 20:13:26 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-03-27 18:13
.
Před spuštěním: Volných bajtů: 439 587 201 024
Po spuštění: Volných bajtů: 439 031 173 120
.
- - End Of File - - 3601B6FC09CCD250E9BC4B11899651BE
ComboFix 11-03-26.02 - Naruto 27.03.2011 19:03:41.1.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1033.18.2046.1027 [GMT 2:00]
Spuštěný z: d:\users\Naruto\Downloads\ComboFix.exe
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
D:\install.exe
d:\program files\ESET\MiNODLogin
d:\program files\ESET\MiNODLogin\MiNODLogin.exe
d:\program files\ESET\MiNODLogin\MiNODLogin.jar
d:\program files\ESET\MiNODLogin\MiNODLoginLib.dll
d:\program files\ESET\MiNODLogin\MiNODLoginUninst.exe
d:\program files\ESET\MiNODLogin\servidores.xml
d:\programdata\Microsoft\Network\Downloader\qmgr0.dat
d:\programdata\Microsoft\Network\Downloader\qmgr1.dat
d:\users\Naruto\AppData\Roaming\Narutolog.dat
d:\users\Naruto\AppData\Roaming\Windows Update
.
----- BITS: Možné infikované stránky -----
.
hxxp://download.xbox.com:80
d:\windows\system32\userinit.exe . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-27 do 2011-03-27 )))))))))))))))))))))))))))))))
.
.
2011-03-27 17:38 . 2011-03-27 18:09 -------- d-----w- d:\users\Naruto\AppData\Local\temp
2011-03-27 17:38 . 2011-03-27 17:38 -------- d-----w- d:\users\Default\AppData\Local\temp
2011-03-27 16:13 . 2011-03-27 16:13 -------- d-----w- d:\program files\Atari
2011-03-27 08:50 . 2011-03-27 08:50 28752 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\MpKsl12c40b39.sys
2011-03-26 19:14 . 2011-03-15 04:05 6792528 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\mpengine.dll
2011-03-26 16:54 . 2011-03-26 16:54 -------- d-----w- d:\program files\Bing Bar Installer
2011-03-26 13:27 . 2011-03-26 13:38 -------- d-----w- d:\program files\Dragon Age 2
2011-03-26 11:10 . 2011-03-27 10:05 -------- d-----w- d:\users\Naruto\AppData\Roaming\Hamachi
2011-03-26 11:10 . 2011-03-26 11:10 25280 ----a-w- d:\windows\system32\drivers\hamachi.sys
2011-03-25 19:59 . 2011-03-25 20:00 -------- d-----w- d:\users\Naruto\AppData\Roaming\.minecraft
2011-03-25 18:49 . 2010-11-30 09:43 439632 ------w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2011-03-25 18:49 . 2010-11-30 09:43 439632 ------w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C9235C2A-4E76-43C7-A05B-179F4D4D6A61}\gapaengine.dll
2011-03-24 16:52 . 2011-03-24 16:52 107888 ----a-w- d:\windows\system32\CmdLineExt.dll
2011-03-24 16:08 . 2011-03-24 16:55 -------- d-----w- d:\users\Naruto\AppData\Local\Rockstar Games
2011-03-24 14:42 . 2011-03-24 14:42 -------- d-----w- d:\windows\E10DB5DAE57640EAA7FC1CB2A7B283A6.TMP
2011-03-23 15:00 . 2011-03-23 15:00 -------- d-----w- d:\program files\ARO 2011
2011-03-23 14:35 . 2011-03-23 14:35 138056 ----a-w- d:\windows\system32\drivers\PnkBstrK.sys
2011-03-22 18:13 . 2011-03-22 18:13 -------- d-----w- d:\program files\Common Files\ParetoLogic
2011-03-22 18:12 . 2011-03-22 18:13 -------- d-----w- d:\programdata\ParetoLogic
2011-03-22 18:12 . 2011-03-22 18:12 -------- d-----w- d:\program files\ParetoLogic
2011-03-22 18:00 . 2011-03-23 15:38 -------- d-----w- d:\users\hry
2011-03-22 16:46 . 2011-03-22 16:46 86016 ----a-w- d:\windows\system32\OpenAL32.dll
2011-03-22 16:46 . 2011-03-22 16:46 413696 ----a-w- d:\windows\system32\wrap_oal.dll
2011-03-22 16:46 . 2011-03-22 16:46 -------- d-----w- d:\program files\OpenAL
2011-03-21 20:03 . 2011-03-21 20:03 -------- d-----w- d:\users\Naruto\AppData\Roaming\IObit
2011-03-21 19:54 . 2011-03-21 19:54 -------- d-----w- d:\program files\Common Files\Adobe AIR
2011-03-21 19:52 . 2011-03-21 19:54 -------- d-----w- d:\users\Naruto\AppData\Local\Adobe
2011-03-21 19:48 . 2011-03-21 19:48 -------- d-----w- d:\program files\Common Files\Adobe
2011-03-21 19:47 . 2011-03-21 19:48 -------- d-----w- d:\windows\system32\Adobe
2011-03-21 18:10 . 2011-03-21 18:17 -------- d-----w- d:\users\Naruto\AppData\Local\Ubisoft Game Launcher
2011-03-21 18:10 . 2011-03-22 16:32 -------- d-----w- d:\programdata\Ubisoft
2011-03-21 17:53 . 2011-03-23 14:34 189248 ----a-w- d:\windows\system32\PnkBstrB.exe
2011-03-21 17:53 . 2011-03-23 14:34 75136 ----a-w- d:\windows\system32\PnkBstrA.exe
2011-03-21 17:53 . 2011-03-21 17:53 -------- d-----w- d:\users\Naruto\AppData\Roaming\PunkBuster
2011-03-19 21:14 . 2011-03-19 21:14 -------- d-----w- d:\program files\Common Files\xing shared
2011-03-19 21:13 . 2011-03-19 21:14 -------- d-----w- d:\program files\Real
2011-03-17 14:03 . 2011-03-17 14:03 -------- d-----w- d:\users\Naruto\Caches
2011-03-16 15:14 . 2011-03-16 15:14 -------- d-----w- d:\users\Naruto\AppData\Roaming\ChromePlus
2011-03-16 14:42 . 2011-03-16 14:42 -------- d-----w- d:\program files\CCleaner
2011-03-15 19:59 . 2011-03-15 04:05 6792528 ----a-w- d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-15 19:58 . 2011-02-05 06:20 94208 ----a-w- d:\program files\Internet Explorer\cs\iediag.resources.dll
2011-03-15 19:50 . 2011-03-15 19:50 -------- d-----w- D:\NVIDIA
2011-03-15 17:01 . 2011-03-15 17:01 48648 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-03-15 14:55 . 2011-03-15 15:41 -------- d-----w- d:\program files\StarCraft II
2011-03-15 14:08 . 2011-03-15 14:08 -------- d-----w- d:\program files\Universal Interactive
2011-03-14 17:29 . 2011-03-14 17:29 -------- d-----w- d:\program files\Microsoft Security Client
2011-03-14 16:59 . 2011-03-14 16:59 -------- d-----w- d:\users\Naruto\AppData\Local\Nero
2011-03-14 16:50 . 2011-03-14 16:50 -------- d-----w- d:\users\Naruto\AppData\Roaming\Nero
2011-03-14 16:36 . 2011-03-14 16:44 -------- d-----w- d:\programdata\Nero
2011-03-14 16:35 . 2011-03-14 16:36 -------- d-----w- d:\program files\Common Files\Nero
2011-03-14 16:35 . 2011-03-14 16:44 -------- d-----w- d:\program files\Nero
2011-03-14 14:19 . 2011-03-16 13:05 -------- d-----w- d:\program files\Common Files\Blizzard Entertainment
2011-03-14 14:19 . 2011-03-15 15:09 -------- d-----w- d:\programdata\Blizzard Entertainment
2011-03-13 19:59 . 2011-03-13 19:59 -------- d-----w- d:\program files\Microsoft Silverlight
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\cs-CZ
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\cs
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\XPSViewer
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\drivers\cs-CZ
2011-03-13 19:37 . 2011-03-13 19:37 -------- d-----w- d:\windows\system32\drivers\UMDF\cs-CZ
2011-03-13 19:37 . 2011-03-15 19:58 -------- d-----w- d:\windows\system32\wbem\cs-CZ
2011-03-13 19:29 . 2009-07-14 01:43 3584 ----a-w- d:\windows\system32\Spool\prtprocs\w32x86\cs-CZ\LXKPTPRC.DLL.mui
2011-03-13 19:06 . 2011-03-16 15:06 -------- d-----w- d:\program files\BearShare Applications
2011-03-13 19:04 . 2011-03-13 19:04 -------- d-----w- d:\users\Naruto\AppData\Local\PackageAware
2011-03-13 03:12 . 2011-03-13 03:14 -------- d-----w- D:\a crack
2011-03-13 02:55 . 2011-03-13 02:59 -------- d-----w- d:\program files\Microsoft Games for Windows - LIVE
2011-03-13 02:55 . 2011-03-13 02:55 -------- d-----w- d:\windows\system32\xlive
2011-03-13 01:36 . 2008-07-12 16:18 467984 ----a-w- d:\windows\system32\d3dx10_39.dll
2011-03-13 01:36 . 2008-07-12 16:18 1493528 ----a-w- d:\windows\system32\D3DCompiler_39.dll
2011-03-13 01:36 . 2008-07-12 16:18 3851784 ----a-w- d:\windows\system32\D3DX9_39.dll
2011-03-13 01:31 . 2011-03-23 14:15 -------- d-----w- d:\program files\Ubisoft
2011-03-13 01:31 . 2011-03-13 01:31 -------- d-----w- d:\users\Naruto\AppData\Roaming\InstallShield
2011-03-12 22:37 . 2011-03-12 22:37 -------- d-----w- d:\program files\EA
2011-03-11 16:12 . 2011-02-11 06:54 5943120 ----a-w- d:\programdata\Microsoft\Windows Defender\Definition Updates\{8D514ABA-BF6E-4FF3-A636-4AA0DA613862}\mpengine.dll
2011-03-10 02:26 . 2011-03-24 19:17 -------- d-----w- d:\users\Naruto\AppData\Local\ElevatedDiagnostics
2011-03-10 02:10 . 2011-03-10 02:10 -------- d-----w- d:\windows\system32\SPReview
2011-03-10 02:09 . 2011-03-10 02:10 -------- d-----w- d:\windows\system32\EventProviders
2011-03-10 02:04 . 2010-11-05 01:58 1130824 ----a-w- d:\windows\system32\dfshim.dll
2011-03-10 02:02 . 2010-11-20 12:19 3207680 ----a-w- d:\windows\system32\mf.dll
2011-03-10 02:01 . 2010-11-20 12:21 270848 ----a-w- d:\windows\system32\tsmf.dll
2011-03-10 02:00 . 2010-11-20 12:18 136192 ----a-w- d:\windows\system32\cryptsvc.dll
2011-03-10 01:59 . 2010-11-20 12:21 346624 ----a-w- d:\windows\system32\untfs.dll
2011-03-10 01:58 . 2010-11-20 12:21 410624 ----a-w- d:\windows\system32\systemcpl.dll
2011-03-10 01:57 . 2010-11-20 12:16 75776 ----a-w- d:\windows\system32\psisrndr.ax
2011-03-10 01:56 . 2010-11-20 08:47 10240 ----a-w- d:\windows\system32\drivers\acpipmi.sys
2011-03-10 01:53 . 2010-11-20 12:21 780288 ----a-w- d:\windows\system32\wbem\wbemcore.dll
2011-03-10 01:53 . 2010-11-20 12:21 363008 ----a-w- d:\windows\system32\wbemcomn.dll
2011-03-10 01:53 . 2010-11-20 12:21 351232 ----a-w- d:\windows\system32\wmicmiplugin.dll
2011-03-10 01:53 . 2010-11-20 12:19 606208 ----a-w- d:\windows\system32\wbem\fastprox.dll
2011-03-10 01:52 . 2010-11-20 12:21 697344 ----a-w- d:\windows\system32\SmiEngine.dll
2011-03-10 01:51 . 2010-11-20 12:21 189952 ----a-w- d:\windows\system32\wdscore.dll
2011-03-10 01:51 . 2010-11-20 12:17 209920 ----a-w- d:\windows\system32\PkgMgr.exe
2011-03-10 01:48 . 2010-11-20 12:18 323072 ----a-w- d:\windows\system32\drvstore.dll
2011-03-10 01:48 . 2010-11-20 12:18 257024 ----a-w- d:\windows\system32\dpx.dll
2011-03-10 00:49 . 2011-03-10 00:48 737280 ----a-w- d:\windows\iun6002.exe
2011-03-10 00:49 . 2011-03-10 00:49 -------- d-----w- d:\program files\Codec Pack - All In 1
2011-03-10 00:49 . 2011-03-10 00:49 -------- d-----w- d:\windows\system32\languages
2011-03-10 00:39 . 2011-01-17 05:47 161792 ----a-w- d:\windows\system32\d3d10_1.dll
2011-03-09 16:33 . 2011-02-19 06:30 1076736 ----a-w- d:\windows\system32\DWrite.dll
2011-03-09 16:33 . 2011-02-19 06:30 805376 ----a-w- d:\windows\system32\FntCache.dll
2011-03-09 16:33 . 2011-02-19 06:30 739840 ----a-w- d:\windows\system32\d2d1.dll
2011-03-09 16:33 . 2010-12-23 05:54 642048 ----a-w- d:\windows\system32\CPFilters.dll
2011-03-09 16:32 . 2010-12-23 05:54 534528 ----a-w- d:\windows\system32\EncDec.dll
2011-03-09 16:32 . 2010-12-23 05:54 850944 ----a-w- d:\windows\system32\sbe.dll
2011-03-09 16:32 . 2010-12-23 05:50 199680 ----a-w- d:\windows\system32\mpg2splt.ax
2011-03-07 01:12 . 2011-03-07 01:14 -------- d-----w- D:\Fraps
2011-03-06 22:18 . 2011-03-06 22:18 -------- d-----w- d:\users\Naruto\AppData\Local\SKIDROW
2011-03-06 04:41 . 2011-03-24 14:41 -------- d-----w- d:\program files\Common Files\Wise Installation Wizard
2011-03-06 04:13 . 2011-03-26 13:38 -------- d-----w- d:\program files\Common Files\BioWare
2011-03-04 00:54 . 2011-03-04 00:54 -------- d-sh--w- d:\programdata\DSS
2011-03-04 00:44 . 2011-03-04 00:44 -------- d-----w- d:\users\Naruto\AppData\Local\FalloutNV
2011-03-03 23:43 . 2011-03-03 23:43 -------- d-----w- d:\program files\Bethesda Softworks
2011-03-03 03:58 . 2011-03-03 03:58 -------- d-----w- d:\program files\Electronic Arts
2011-03-02 22:11 . 2011-03-02 22:11 484160 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-02-28 05:38 . 2011-03-27 18:09 -------- d-----w- d:\program files\Steam
2011-02-28 05:37 . 2011-02-28 05:37 -------- d-----w- d:\program files\Vigil Games
2011-02-28 04:18 . 2011-02-28 05:30 -------- d-----w- d:\users\Naruto\dumps
2011-02-28 01:00 . 2011-02-28 01:00 -------- d-----w- d:\program files\Common Files\Java
2011-02-28 00:59 . 2011-02-28 00:59 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-02-28 00:59 . 2011-02-28 00:59 -------- d-----w- d:\program files\Java
2011-02-28 00:58 . 2011-02-28 00:58 -------- d-----w- d:\programdata\McAfee
2011-02-28 00:54 . 2011-03-10 00:32 -------- d-----w- d:\program files\ESET
2011-02-26 18:57 . 2011-02-26 21:32 -------- d-----w- d:\users\Naruto\AppData\Local\Darksiders
2011-02-26 18:36 . 2011-03-24 13:12 -------- d-----w- d:\program files\Common Files\Steam
2011-02-26 18:29 . 2011-03-18 19:36 -------- d-----w- d:\users\Naruto\AppData\Roaming\vlc
2011-02-26 18:28 . 2011-02-26 18:28 -------- d-----w- d:\program files\VideoLAN
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-26 17:07 . 2011-02-18 01:03 48648 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-03-26 17:07 . 2011-02-18 01:02 484160 ----a-w- d:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-03-19 21:13 . 2007-06-15 17:21 499712 ----a-w- d:\windows\system32\msvcp71.dll
2011-03-19 21:13 . 2003-02-21 12:42 348160 ----a-w- d:\windows\system32\msvcr71.dll
2011-03-13 20:20 . 2009-08-18 19:30 564632 ----a-w- d:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-03-13 20:20 . 2009-08-18 19:24 18328 ----a-w- d:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-10 02:22 . 2009-07-14 02:05 152576 ----a-w- d:\windows\system32\msclmd.dll
2011-02-19 01:50 . 2011-02-19 01:50 218688 ----a-w- d:\windows\system32\drivers\dtsoftbus01.sys
2011-02-18 00:58 . 2011-02-18 00:58 86528 ----a-w- d:\windows\system32\iesysprep.dll
2011-02-18 00:58 . 2011-02-18 00:58 76800 ----a-w- d:\windows\system32\SetIEInstalledDate.exe
2011-02-18 00:58 . 2011-02-18 00:58 74752 ----a-w- d:\windows\system32\RegisterIEPKEYs.exe
2011-02-18 00:58 . 2011-02-18 00:58 48640 ----a-w- d:\windows\system32\mshtmler.dll
2011-02-18 00:58 . 2011-02-18 00:58 161280 ----a-w- d:\windows\system32\msls31.dll
2011-02-18 00:58 . 2011-02-18 00:58 1125376 ----a-w- d:\windows\system32\wininet.dll
2011-02-18 00:58 . 2011-02-18 00:58 110592 ----a-w- d:\windows\system32\IEAdvpack.dll
2011-02-18 00:58 . 2011-02-18 00:58 74752 ----a-w- d:\windows\system32\iesetup.dll
2011-02-18 00:58 . 2011-02-18 00:58 63488 ----a-w- d:\windows\system32\tdc.ocx
2011-02-18 00:58 . 2011-02-18 00:58 420864 ----a-w- d:\windows\system32\vbscript.dll
2011-02-18 00:58 . 2011-02-18 00:58 367104 ----a-w- d:\windows\system32\html.iec
2011-02-18 00:58 . 2011-02-18 00:58 23552 ----a-w- d:\windows\system32\licmgr10.dll
2011-02-18 00:58 . 2011-02-18 00:58 203776 ----a-w- d:\windows\system32\webcheck.dll
2011-02-18 00:58 . 2011-02-18 00:58 152064 ----a-w- d:\windows\system32\wextract.exe
2011-02-18 00:58 . 2011-02-18 00:58 150528 ----a-w- d:\windows\system32\iexpress.exe
2011-02-18 00:58 . 2011-02-18 00:58 1426432 ----a-w- d:\windows\system32\inetcpl.cpl
2011-02-18 00:58 . 2011-02-18 00:58 2382336 ----a-w- d:\windows\system32\mshtml.tlb
2011-02-18 00:58 . 2011-02-18 00:58 35840 ----a-w- d:\windows\system32\imgutil.dll
2011-02-18 00:58 . 2011-02-18 00:58 1791488 ----a-w- d:\windows\system32\jscript9.dll
2011-02-18 00:58 . 2011-02-18 00:58 142848 ----a-w- d:\windows\system32\ieUnatt.exe
2011-02-18 00:58 . 2011-02-18 00:58 11776 ----a-w- d:\windows\system32\mshta.exe
2011-02-18 00:58 . 2011-02-18 00:58 101888 ----a-w- d:\windows\system32\admparse.dll
2011-02-17 21:46 . 2011-02-17 21:46 835440 ----a-r- d:\windows\system32\pbsvc.exe
2011-02-03 05:54 . 2011-02-18 00:33 219008 ----a-w- d:\windows\system32\drivers\dxgmms1.sys
2011-01-08 03:27 . 2011-03-15 19:51 10920 ----a-w- d:\windows\system32\drivers\nvBridge.kmd
2011-01-08 03:27 . 2010-07-10 13:37 1965672 ----a-w- d:\windows\system32\nvapi.dll
2011-01-08 03:27 . 2010-07-10 13:37 10078312 ----a-w- d:\windows\system32\nvd3dum.dll
2011-01-08 03:27 . 2009-07-13 22:09 5653096 ----a-w- d:\windows\system32\nvwgf2um.dll
2011-01-07 20:06 . 2011-01-07 20:06 580200 ----a-w- d:\windows\system32\easyUpdatusAPIU.dll
2011-01-07 20:06 . 2011-01-07 20:06 3597416 ----a-w- d:\windows\system32\nvcpl.dll
2011-01-07 20:06 . 2011-01-07 20:06 2620520 ----a-w- d:\windows\system32\nvsvc.dll
2011-01-07 20:06 . 2011-01-07 20:06 608872 ----a-w- d:\windows\system32\nvvsvc.exe
2011-01-07 20:06 . 2011-01-07 20:06 111208 ----a-w- d:\windows\system32\nvmctray.dll
2011-01-07 07:46 . 2011-02-24 03:47 870912 ----a-w- d:\windows\system32\XpsPrint.dll
2011-01-07 07:46 . 2011-02-24 03:47 288256 ----a-w- d:\windows\system32\XpsGdiConverter.dll
2011-01-07 07:45 . 2011-02-18 00:45 34304 ----a-w- d:\windows\system32\atmlib.dll
2011-01-07 05:43 . 2011-02-18 00:45 294400 ----a-w- d:\windows\system32\atmfd.dll
2011-01-05 03:51 . 2011-02-18 00:45 2330624 ----a-w- d:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2011-02-08 17:22 721840 ----a-w- d:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]
2011-01-18 13:05 87480 ----a-w- d:\progra~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}"= "d:\progra~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll" [2011-01-18 87480]
.
[HKEY_CLASSES_ROOT\clsid\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="d:\program files\Skype\Phone\Skype.exe" [2011-01-27 15026056]
"uTorrent"="d:\program files\uTorrent\uTorrent.exe" [2011-02-18 396152]
"DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"Steam"="d:\program files\Steam\Steam.exe" [2011-02-28 1242448]
"RGSC"="d:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"reset"="regedit" [X]
"RtHDVCpl"="d:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-30 9914984]
"DivXUpdate"="d:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-01-10 1230704]
"SunJavaUpdateSched"="d:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"egui"="d:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-13 2219184]
"NBAgent"="d:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
"MSC"="d:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408]
"TkBellExe"="d:\program files\Real\RealPlayer\Update\realsched.exe" [2011-03-19 273544]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-01-30 35736]
"Adobe ARM"="d:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-15 932288]
.
d:\users\Naruto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Syst‚m - z stupce
target.lnk - [N/A]
.
d:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Aktualizovat ESET licenci.lnk - d:\program files\ESET\MiNODLogin\MiNODLogin.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=d:\progra~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll d:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;d:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;d:\windows\system32\DRIVERS\3xHybrid.sys [2006-11-22 1121536]
R3 cpuz134;cpuz134;d:\users\hry\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [x]
R3 MpNWMon;Microsoft Malware Protection Network Driver;d:\windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NisDrv;Microsoft Network Inspection System;d:\windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 NisSrv;Microsoft Network Inspection;d:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;d:\windows\system32\DRIVERS\RTL8187B.sys [2009-07-13 347136]
R3 TsUsbFlt;TsUsbFlt; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;d:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-19 218688]
S1 ehdrv;ehdrv;d:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S1 MpKsl12c40b39;MpKsl12c40b39;d:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0367D004-EFC1-4979-95ED-05251F487BCD}\MpKsl12c40b39.sys [2011-03-27 28752]
S2 eamonm;eamonm;d:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;d:\program files\ESET\ESET Smart Security\ekrn.exe [2011-01-13 810144]
S2 epfwwfp;epfwwfp;d:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
S2 NAUpdate;Nero Update;d:\program files\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;d:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
S2 TeamViewer6;TeamViewer 6;d:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-03-01 2296696]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;d:\windows\system32\drivers\nvhda32v.sys [2010-11-11 122984]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;d:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-27 d:\windows\Tasks\ParetoLogic Registration3.job
- d:\program files\Common Files\ParetoLogic\UUS3\UUS3.dll [2009-10-12 05:01]
.
2011-03-23 d:\windows\Tasks\ParetoLogic Update Version3.job
- d:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2009-10-12 05:01]
.
2011-03-23 d:\windows\Tasks\PC Health Advisor Defrag.job
- d:\program files\ParetoLogic\PCHA\PCHA.exe [2010-09-30 21:40]
.
2011-03-23 d:\windows\Tasks\PC Health Advisor.job
- d:\program files\ParetoLogic\PCHA\PCHA.exe [2010-09-30 21:40]
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Office Excel - d:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
HKCU-Run-PMCRemote - (no file)
AddRemove-Just Cause 2_is1 - e:\new folder\Just Cause 2\unins000.exe
AddRemove-MiNODLogin - d:\program files\ESET\MiNODLogin\MiNODLoginUninst.exe
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - d:\program files\DivX\DivXCodecUninstall.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - d:\program files\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-757483599-661166468-1204113662-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:66,27,e5,bd,a1,76,db,ad,39,f4,ff,a3,15,bc,e3,6c,90,43,9e,3f,71,50,3e,
61,1f,e2,08,76,ba,17,cb,41,a7,e6,d2,0f,ca,7f,aa,e2,da,19,0b,9c,b3,25,05,dc,\
"??"=hex:f2,c8,d2,3e,ce,54,0f,27,70,93,24,b6,9c,cb,8d,85
.
[HKEY_USERS\S-1-5-21-757483599-661166468-1204113662-1001\Software\SecuROM\License information*]
"datasecu"=hex:4c,65,98,47,d0,69,f1,e3,c7,d6,0d,e5,85,85,fe,83,fe,b2,ea,92,f1,
89,f8,62,96,2e,1b,5c,a3,e7,e6,3c,4e,25,fd,ad,8e,c3,01,2e,8c,3e,32,6c,dc,cf,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
d:\windows\system32\nvvsvc.exe
d:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
d:\program files\NVIDIA Corporation\Display\NvXDSync.exe
d:\windows\system32\nvvsvc.exe
d:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
d:\windows\system32\PnkBstrA.exe
d:\windows\system32\PnkBstrB.exe
d:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
d:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
d:\program files\Windows Media Player\wmpnetwk.exe
d:\windows\system32\taskhost.exe
d:\windows\system32\taskhost.exe
d:\windows\system32\conhost.exe
d:\program files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
d:\program files\Common Files\Steam\SteamService.exe
d:\windows\system32\sppsvc.exe
d:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
.
**************************************************************************
.
Celkový čas: 2011-03-27 20:13:26 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-03-27 18:13
.
Před spuštěním: Volných bajtů: 439 587 201 024
Po spuštění: Volných bajtů: 439 031 173 120
.
- - End Of File - - 3601B6FC09CCD250E9BC4B11899651BE
