ComboFix 10-06-09.01 - Michal 09.06.2010 20:17:25.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1716 [GMT 2:00]
Spuštěný z: c:\documents and settings\Michal\Plocha\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\vbzlib1.dll
D:\install.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-05-09 do 2010-06-09 )))))))))))))))))))))))))))))))
.
2010-06-09 13:37 . 2010-06-09 13:37 -------- d-----w- C:\rsit
2010-06-09 13:37 . 2010-06-09 13:37 -------- d-----w- c:\program files\trend micro
2010-06-09 13:14 . 2010-06-09 13:14 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-06-09 12:38 . 2010-06-09 12:38 -------- d-----w- c:\program files\Common Files\Xara
2010-06-09 12:38 . 2010-06-09 12:38 -------- d-----w- c:\program files\Xara
2010-06-09 12:25 . 2010-06-09 12:35 -------- d-----w- c:\program files\Scorpions WinCheater
2010-06-08 06:34 . 2010-06-08 06:34 -------- d-----w- c:\program files\Microsoft.NET
2010-06-06 18:48 . 2010-06-06 18:48 -------- d-----w- c:\program files\temp
2010-06-05 18:08 . 2010-06-06 10:06 682280 ----a-w- c:\windows\system32\pbsvc.exe
2010-06-04 22:25 . 2010-06-04 22:25 495104 ----a-w- c:\windows\system32\sqlite3.dll
2010-06-04 22:21 . 2010-06-05 11:30 -------- d-----w- c:\program files\Rainmeter
2010-06-04 12:59 . 2010-06-04 13:02 -------- d-----w- C:\Notes
2010-06-03 19:19 . 2010-06-09 18:07 -------- d-----w- c:\program files\Common Files\Akamai
2010-06-03 14:11 . 2010-06-04 23:58 -------- d-----w- C:\MoTemp
2010-06-01 14:10 . 2010-06-01 14:10 -------- d-----w- c:\program files\Common Files\eSellerate
2010-06-01 14:06 . 2010-06-01 14:08 -------- d-----w- c:\program files\NewBlue
2010-06-01 14:06 . 2010-06-01 14:06 -------- d-----w- c:\program files\Panopticum Lens Pro 3.5 For Vegas
2010-05-31 13:56 . 2010-05-31 13:56 -------- d--h--w- c:\windows\PIF
2010-05-30 19:59 . 2010-06-03 12:09 -------- d-----w- c:\program files\Xfire
2010-05-28 12:23 . 2010-05-28 12:23 -------- d-----w- c:\documents and settings\Michal\Sony Vegas Pro 9
2010-05-28 00:09 . 2010-05-28 00:09 41872 ----a-w- c:\windows\system32\xfcodec.dll
2010-05-27 18:52 . 2010-05-27 18:52 -------- d-----w- c:\program files\Sony
2010-05-27 18:17 . 2010-05-27 18:17 -------- d-----w- c:\program files\Plugins
2010-05-26 20:48 . 2010-05-26 20:48 -------- d-----w- c:\program files\Empire Interactive
2010-05-26 17:36 . 2010-05-26 17:36 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2010-05-26 17:34 . 2010-05-26 17:34 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-05-25 19:44 . 2010-05-25 19:44 -------- d-----w- c:\program files\CCP
2010-05-24 12:46 . 2010-05-24 12:46 -------- d-----w- c:\program files\AGEIA Technologies
2010-05-24 12:46 . 2010-05-24 12:46 -------- d-----w- c:\windows\system32\AGEIA
2010-05-24 12:29 . 2010-05-24 12:46 -------- d-----w- c:\program files\Common Files\BioWare
2010-05-23 19:33 . 2009-10-16 09:19 872448 ----a-w- c:\windows\system32\rapture3d_oal.dll
2010-05-23 19:33 . 2009-07-13 17:04 839680 ----a-w- c:\windows\system32\mkl_vml_p4.dll
2010-05-23 19:33 . 2009-07-13 17:04 532480 ----a-w- c:\windows\system32\mkl_vml_p3.dll
2010-05-23 19:33 . 2009-07-13 17:04 512000 ----a-w- c:\windows\system32\mkl_vml_def.dll
2010-05-23 19:33 . 2009-07-13 17:04 3485696 ----a-w- c:\windows\system32\mkl_p4.dll
2010-05-23 19:33 . 2009-07-13 17:04 2793472 ----a-w- c:\windows\system32\mkl_p3.dll
2010-05-23 19:33 . 2009-07-13 17:04 2441216 ----a-w- c:\windows\system32\mkl_def.dll
2010-05-23 19:33 . 2009-07-13 17:04 2174976 ----a-w- c:\windows\system32\mkl_lapack32.dll
2010-05-23 19:33 . 2009-07-13 17:04 2125824 ----a-w- c:\windows\system32\mkl_lapack64.dll
2010-05-23 19:33 . 2009-07-13 17:04 184320 ----a-w- c:\windows\system32\libguide40.dll
2010-05-23 19:33 . 2010-05-23 19:33 -------- d-----w- c:\program files\BRS
2010-05-23 19:31 . 2010-05-23 19:34 -------- d-----w- c:\windows\SxsCaPendDel
2010-05-23 19:28 . 2010-05-23 19:28 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-05-23 19:28 . 2010-05-23 19:28 -------- d-----w- c:\windows\system32\xlive
2010-05-23 19:27 . 2010-05-23 19:27 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2010-05-23 19:27 . 2010-05-23 19:27 -------- d-----w- c:\program files\OpenAL
2010-05-23 19:27 . 2010-05-23 19:27 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2010-05-23 18:20 . 2010-05-23 18:20 2434856 ----a-w- c:\windows\system32\pbsvc_bc2.exe
2010-05-23 18:15 . 2010-05-23 18:15 -------- d-----w- c:\program files\Electronic Arts
2010-05-23 15:44 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2010-05-23 15:44 . 2010-05-28 21:52 -------- d-----w- c:\windows\Logs
2010-05-23 15:16 . 2010-05-23 15:16 0 ----a-w- c:\windows\nsreg.dat
2010-05-23 15:10 . 2010-05-23 15:10 48 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-05-23 15:08 . 2010-05-23 15:08 -------- d-----w- c:\program files\Common Files\Skype
2010-05-23 15:08 . 2010-05-23 15:08 -------- d-----r- c:\program files\Skype
2010-05-23 14:52 . 2010-05-23 14:52 -------- d-s---w- c:\documents and settings\Tom\UserData
2010-05-23 13:28 . 2010-05-23 13:28 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-05-23 13:28 . 2010-05-23 13:28 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-05-23 13:09 . 2010-05-23 13:09 -------- d-s---w- c:\documents and settings\Pepa\UserData
2010-05-23 12:27 . 2010-06-09 17:45 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-05-23 12:27 . 2010-06-09 17:45 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-05-23 12:26 . 2010-05-23 18:20 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-05-23 11:02 . 2010-06-05 18:44 -------- d-----w- c:\program files\Activision
2010-05-23 11:00 . 2010-05-23 11:00 -------- d-sh--w- c:\windows\ftpcache
2010-05-23 10:55 . 2010-06-09 17:38 -------- d-----w- c:\program files\ICQ7.0
2010-05-23 10:53 . 2010-05-23 13:20 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-05-23 10:40 . 2009-04-05 01:01 3734536 ----a-w- c:\windows\system32\d3dx9_36.dll
2010-05-23 10:40 . 2010-05-23 10:44 -------- d-----w- c:\program files\SoundSpectrum
2010-05-23 10:27 . 2010-05-23 10:27 -------- d-----w- c:\program files\Windows Media Connect 2
2010-05-23 10:26 . 2010-05-23 12:26 -------- d-----w- c:\windows\system32\LogFiles
2010-05-23 10:26 . 2010-05-23 10:27 -------- d-----w- c:\windows\system32\drivers\UMDF
2010-05-23 09:44 . 2010-05-29 00:00 -------- d-----w- C:\Fraps
2010-05-23 09:42 . 2010-06-09 18:01 -------- d-----w- c:\program files\HLSW
2010-05-23 09:26 . 2010-05-23 09:26 -------- d-s---w- c:\documents and settings\Michal\UserData
2010-05-23 09:17 . 2010-05-23 09:17 -------- d-----w- c:\program files\uTorrent
2010-05-23 09:08 . 2010-05-23 13:02 -------- d-----w- c:\program files\ICQ6Toolbar
2010-05-23 09:01 . 2010-05-23 09:02 -------- d-----w- c:\program files\AlienGUIse
2010-05-23 09:01 . 2010-05-23 09:01 -------- d-----w- c:\program files\Common Files\Stardock
2010-05-23 09:01 . 2003-02-26 20:27 36864 ----a-w- c:\windows\system32\wbsys.dll
2010-05-23 09:00 . 2010-06-03 20:29 -------- d-----w- c:\program files\RocketDock
2010-05-23 08:59 . 2010-05-23 08:59 -------- d-----w- c:\program files\WinPcap
2010-05-23 08:59 . 2010-05-23 08:59 -------- d-----w- c:\program files\Ask.com
2010-05-23 08:58 . 2010-05-23 08:58 -------- d-----w- c:\program files\DsNET Corp
2010-05-21 18:05 . 2008-04-07 03:38 22872 ----a-r- c:\windows\system32\AdobePDFUI.dll
2010-05-21 18:05 . 2008-04-07 03:38 45392 ----a-r- c:\windows\system32\AdobePDF.dll
2010-05-21 17:58 . 2010-05-21 17:58 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-05-21 17:55 . 2010-05-21 17:55 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-05-21 17:51 . 2010-06-04 23:44 -------- d-----w- c:\program files\Common Files\Adobe
2010-05-21 17:49 . 2010-05-21 17:49 -------- d-----w- c:\program files\MSBuild
2010-05-21 17:49 . 2010-05-23 19:32 -------- d-----w- c:\windows\system32\XPSViewer
2010-05-21 17:49 . 2010-05-21 17:49 -------- d-----w- c:\program files\Reference Assemblies
2010-05-21 17:48 . 2007-03-22 18:24 28160 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2010-05-21 17:48 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-05-21 17:37 . 2008-04-14 06:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2010-05-21 15:57 . 2010-05-21 15:57 -------- d--h--w- c:\windows\system32\GroupPolicy
2010-05-21 15:46 . 2010-05-21 15:46 -------- d-----w- c:\program files\InterVideo
2010-05-21 15:45 . 2010-05-21 15:45 737280 ----a-w- c:\windows\iun6002.exe
2010-05-21 15:45 . 2010-06-08 13:52 -------- d-----w- c:\program files\Codec Pack - All In 1
2010-05-21 15:44 . 2010-05-21 15:44 -------- d-----w- c:\program files\Zoner
2010-05-21 15:42 . 2004-03-03 19:30 5504 ------w- c:\windows\system32\drivers\imagedrv.sys
2010-05-21 15:42 . 2004-03-03 19:30 125184 ------w- c:\windows\system32\drivers\imagesrv.sys
2010-05-21 15:42 . 2004-07-20 15:24 476320 ------w- c:\windows\system32\ImagXpr7.dll
2010-05-21 15:42 . 2004-07-20 15:24 471040 ------w- c:\windows\system32\ImagXRA7.dll
2010-05-21 15:42 . 2004-07-20 15:24 262144 ------w- c:\windows\system32\ImagXR7.dll
2010-05-21 15:42 . 2004-07-20 15:24 1568768 ------w- c:\windows\system32\ImagX7.dll
2010-05-21 15:42 . 2004-07-09 07:43 364544 ------w- c:\windows\system32\TwnLib4.dll
2010-05-21 15:42 . 2001-06-26 06:15 38912 ------w- c:\windows\system32\picn20.dll
2010-05-21 15:42 . 2000-06-26 09:45 106496 ----a-w- c:\windows\system32\TwnLib20.dll
2010-05-21 15:42 . 2010-05-21 15:42 -------- d-----w- c:\program files\Common Files\Ahead
2010-05-21 15:42 . 2001-07-09 09:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe
2010-05-21 15:42 . 2010-05-21 15:42 -------- d-----w- c:\program files\Ahead
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-09 12:38 . 2010-05-20 16:06 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-08 06:37 . 2001-10-25 14:00 97556 ----a-w- c:\windows\system32\perfc005.dat
2010-06-08 06:37 . 2001-10-25 14:00 488078 ----a-w- c:\windows\system32\perfh005.dat
2010-05-24 12:46 . 2010-05-20 16:13 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-05-23 11:01 . 2010-05-20 16:06 -------- d-----w- c:\program files\Common Files\InstallShield
2010-05-21 17:40 . 2010-05-20 15:39 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-05-21 17:40 . 2010-05-20 15:39 2740 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-05-21 16:54 . 2010-05-20 15:39 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-03-18 14:47 . 2010-03-18 14:47 17760 ----a-w- c:\windows\system32\aspnet_counters.dll
2010-03-18 11:16 . 2010-03-18 11:16 771424 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2010-03-18 11:16 . 2010-03-18 11:16 70472 ----a-w- c:\windows\system32\dxva2.dll
2010-03-18 11:16 . 2010-03-18 11:16 486216 ----a-w- c:\windows\system32\evr.dll
2010-03-18 08:09 . 2010-03-18 08:09 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-03-18 08:09 . 2010-03-18 08:09 49488 ----a-w- c:\windows\system32\netfxperf.dll
2010-03-18 08:09 . 2010-03-18 08:09 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-03-18 08:09 . 2010-03-18 08:09 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2003-04-27 11:56 . 2003-04-27 11:56 351232 ----a-r- c:\program files\salamand.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 14:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-05-23 322352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-19 16844800]
"nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2009-07-08 1657376]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-14 13877248]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-07-14 86016]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-11 640376]
"Ocs_SM"="c:\documents and settings\Michal\Data aplikací\OCS\SM\SearchAnonymizer.exe" [2010-05-27 106496]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\Michal\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Alienware Dock.lnk - c:\program files\AlienGUIse\AlienwareDock\ObjectDock.exe [2010-5-23 2074360]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-28 3493264]
c:\documents and settings\Michal\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Alienware Dock.lnk - c:\program files\AlienGUIse\AlienwareDock\ObjectDock.exe [2010-5-23 2074360]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-28 3493264]
c:\documents and settings\Michal\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Alienware Dock.lnk - c:\program files\AlienGUIse\AlienwareDock\ObjectDock.exe [2010-5-23 2074360]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-28 3493264]
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2009-11-1 119296]
c:\documents and settings\Michal\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Alienware Dock.lnk - c:\program files\AlienGUIse\AlienwareDock\ObjectDock.exe [2010-5-23 2074360]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-28 3493264]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2001-12-20 21:34 24576 ----a-w- c:\program files\AlienGUIse\fastload.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\wbsys.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Common Files\\Adobe\\Adobe Version Cue CS4\\Server\\bin\\VersionCueCS4.exe"=
"c:\\Program Files\\ICQ7.0\\ICQ.exe"=
"c:\\Program Files\\ICQ7.0\\aolload.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"d:\\program files\\steam\\Steam.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"d:\\program files\\steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"d:\\program files\\steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"c:\\Program Files\\Electronic Arts\\Battlefield Bad Company 2\\BFBC2Updater.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\program files\\Mass Effect 2\\Binaries\\MassEffect2.exe"=
"d:\\program files\\Empire Interactive\\FlatOut Ultimate Carnage\\Fouc.exe"=
"d:\\program files\\Codemasters\\DiRT2\\dirt2_game.exe"=
"d:\\program files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"d:\\program files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\program files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"d:\\program files\\activition\\CoDWaW.exe"=
"d:\\program files\\activition\\CoDWaWmp.exe"=
"c:\\Program Files\\CCP\\EVE\\bin\\ExeFile.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"3703:TCP"= 3703:TCP:Adobe Version Cue CS4 Server
"3704:TCP"= 3704:TCP:Adobe Version Cue CS4 Server
"51000:TCP"= 51000:TCP:Adobe Version Cue CS4 Server
"51001:TCP"= 51001:TCP:Adobe Version Cue CS4 Server
"1054:TCP"= 1054:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20.5.2010 18:46 164048]
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [17.8.2004 15:49 14336]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.5.2010 18:46 19024]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [23.5.2010 11:08 246520]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [16.11.2009 18:33 50704]
R2 SearchAnonymizer;SearchAnonymizer;c:\documents and settings\Michal\Data aplikací\OCS\SM\SearchAnonymizerHelper.exe [27.5.2010 21:52 40960]
R3 NVHDA;Service for NVIDIA HDMI Audio Driver;c:\windows\system32\drivers\nvhda32.sys [10.11.2007 3:20 29728]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23.5.2010 12:53 691696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [15.8.2008 5:46 284016]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Obsah adresáře 'Naplánované úlohy'
2010-06-09 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-02-04 14:50]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://
www.daemon-search.com/startpage
uInternet Connection Wizard,ShellNext = hxxp://atube-catcher.dsnetwb.com/links.php?id=install_check&ver=2&subver=0&rev=352&s=D&pi=220
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: {{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
FF - ProfilePath -
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
**************************************************************************
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory:
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Program Files/Common Files/Akamai/rswin_3697.dll"
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Program Files/Common Files/Akamai/rswin_3697.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1202660629-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID]
@Denied: (Full) (LocalSystem)
[HKEY_USERS\S-1-5-21-1202660629-1844823847-725345543-1004\Software\SecuROM\License information*]
"datasecu"=hex:c4,4b,2c,49,c1,84,4a,f9,a3,d7,1c,b2,01,c5,10,c4,91,2f,49,0d,09,
fb,74,27,a4,33,5a,91,94,d4,80,3b,c6,05,ce,08,c9,3a,d0,79,ed,6c,cf,ac,02,b9,\
"rkeysecu"=hex:97,d9,8f,69,97,cb,21,be,bc,33,ae,09,45,9c,a3,d5
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(592)
c:\program files\AlienGUIse\fastload.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Celkový čas: 2010-06-09 20:20:05
ComboFix-quarantined-files.txt 2010-06-09 18:20
Před spuštěním: Volných bajtů: 53 124 239 360
Po spuštění: Volných bajtů: 54 305 607 680
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - 223A0E48AB84296D6D557E9573E9CE7D
Restartujte počítač a nabootujte do nouzového režimu (po restartu mačkejte F8 - nouzový režim s prací v síti)
