PC bylo zavirované, shazovalo domácí wifi, prosím o kontrolu
Napsal: 02 kvě 2011 16:28
Pročistil jsem to avastem, malwarebytes a spybotem, které smazaly hromadu věcí.. Tady jsou logy rsit a combofix.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Kříčka at 2011-05-02 17:18:17
Microsoft Windows 7 Home Premium
System drive C: has 18 GB (12%) free of 150 GB
Total RAM: 4095 MB (67% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\SDMsgUpdate (TE).job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}]
Octh Class - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll [2011-03-22 241464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-06-19 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-06-29 341600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
Softonic-Eng7 Toolbar - C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
UrlHelper Class - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll [2011-02-08 721288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{707db484-2428-402d-afb5-d85b387544c7}]
Mario Forever Toolbar - C:\Program Files (x86)\Mario_Forever\tbMari.dll [2009-06-23 2211352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\tbMyAs.dll [2009-12-31 2349080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-07-06 814648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Softonic Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-06-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files (x86)\Seznam.cz\core.3.dll [2011-01-19 1175152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFEF0-5B30-21D4-945D-000000000000}]
C:\PROGRA~2\STARDO~1\SDIEInt.dll [2004-11-29 135168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - Softonic-Eng7 Toolbar - C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]
{707db484-2428-402d-afb5-d85b387544c7} - Mario Forever Toolbar - C:\Program Files (x86)\Mario_Forever\tbMari.dll [2009-06-23 2211352]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\tbMyAs.dll [2009-12-31 2349080]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Softonic Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
{28387537-e3f9-4ed7-860c-11e69af4a8a0}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll [2011-03-22 687808]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"TkBellExe"=C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe [2010-06-29 202256]
"Google Desktop Search"=C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SMART Board Service"=C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2010-11-19 5419376]
"SMART SNMP Agent"=C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe [2010-11-19 1664368]
"DATAMNGR"=C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\DATAMN~1.EXE [2011-02-08 1115568]
"LogMeIn Hamachi Ui"=C:\Zanar MT2\hamachi-2-ui.exe [2011-03-28 1910152]
"Nero MediaHome 4"=C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-09-24 4859176]
"NBKeyScan"=C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2011-01-26 15026056]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2011-01-18 1242448]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-02-21 396152]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\postak.exe [2011-01-19 489584]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Nástroje aplikace Notebook.lnk - C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardTools.exe
Orbit.lnk - C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
C:\Users\Kříčka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
HP SimpleSave Monitor.lnk - C:\Users\Kříčka\AppData\Roaming\HP SimpleSave Application\StartHelper.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll C:\PROGRA~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWow64\webcheck.dll [2009-07-14 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Kříčka\Downloads\IMAGE53892731.JPG-www.facebook.exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Users\Kříčka\Downloads\IMAGE53892731.JPG-www.facebook(2).exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Combat Arms EU\CombatArms.exe"="C:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Combat Arms EU\Engine.exe"="C:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine.exe"
"C:\Program Files (x86)\Orbitdownloader\orbitdm.exe"="C:\Program Files (x86)\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit"
"C:\Program Files (x86)\Orbitdownloader\orbitnet.exe"="C:\Program Files (x86)\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-05-02 17:18:17 ----D---- C:\rsit
2011-05-02 16:55:45 ----SHD---- C:\$RECYCLE.BIN
2011-05-02 16:20:09 ----A---- C:\ComboFix.txt
2011-05-02 16:12:04 ----A---- C:\Windows\zip.exe
2011-05-02 16:12:04 ----A---- C:\Windows\SWSC.exe
2011-05-02 16:12:04 ----A---- C:\Windows\SWREG.exe
2011-05-02 16:12:04 ----A---- C:\Windows\sed.exe
2011-05-02 16:12:04 ----A---- C:\Windows\PEV.exe
2011-05-02 16:12:04 ----A---- C:\Windows\NIRCMD.exe
2011-05-02 16:12:04 ----A---- C:\Windows\MBR.exe
2011-05-02 16:12:04 ----A---- C:\Windows\grep.exe
2011-05-02 16:11:35 ----A---- C:\Windows\SWXCACLS.exe
2011-05-02 16:08:25 ----D---- C:\Windows\ERDNT
2011-05-02 16:07:49 ----D---- C:\Qoobox
2011-05-02 16:04:31 ----D---- C:\Program Files (x86)\Trend Micro
2011-05-02 11:26:55 ----D---- C:\Users\Kříčka\AppData\Roaming\Malwarebytes
2011-05-02 11:26:47 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-05-02 11:26:46 ----D---- C:\ProgramData\Malwarebytes
2011-05-02 11:26:43 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-29 14:09:12 ----D---- C:\Users\Kříčka\AppData\Roaming\URSoft
2011-04-29 14:09:10 ----D---- C:\Program Files (x86)\Your Uninstaller 2008
2011-04-22 14:27:31 ----D---- C:\Prison Break
2011-04-22 14:25:23 ----D---- C:\Prison
2011-04-22 08:45:42 ----A---- C:\Windows\RTCW.INI
2011-04-22 08:41:16 ----D---- C:\Program Files (x86)\Return to Castle Wolfenstein
2011-04-22 08:37:53 ----D---- C:\Program Files (x86)\MagicISO
2011-04-22 08:05:22 ----ASH---- C:\pagefile.sys
2011-04-21 10:16:03 ----D---- C:\FIFA 11 CZ
2011-04-21 10:07:10 ----D---- C:\Return to Castle Wolfenstein
2011-04-14 13:33:24 ----A---- C:\Windows\SysWOW64\MsiExec.exe.log
2011-04-13 19:29:13 ----D---- C:\Program Files (x86)\Seznam.cz
2011-04-13 16:38:16 ----D---- C:\Users\Kříčka\AppData\Roaming\FreeMoviesToDVD
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\viscomdvdimg.dll
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\VB6STKIT.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\VB6FR.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\MSCMCFR.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\inetfr.DLL
2011-04-13 16:37:23 ----D---- C:\Program Files (x86)\Videos To DVD
2011-04-13 16:37:23 ----A---- C:\Windows\SysWOW64\CMDLGFR.DLL
2011-04-13 16:35:15 ----D---- C:\my dvd
2011-04-13 16:33:53 ----A---- C:\Windows\Easy Video to DVD.INI
2011-04-13 16:33:50 ----D---- C:\Program Files (x86)\Easy MPEG AVI DIVX WMV RM to DVD
2011-04-13 16:30:30 ----A---- C:\Windows\NeroDigital.ini
2011-04-13 16:23:56 ----D---- C:\OutputFolder
2011-04-13 16:13:38 ----D---- C:\Users\Kříčka\AppData\Roaming\AviDvdBurner
2011-04-13 16:13:07 ----D---- C:\Program Files (x86)\AviDvdBurner
2011-04-13 16:08:10 ----D---- C:\Program Files (x86)\AVI to DVD Maker
2011-04-13 14:38:07 ----A---- C:\Windows\SysWOW64\ssubtmr6.dll
2011-04-13 14:33:39 ----A---- C:\Windows\Easy DVD Creator.INI
2011-04-13 14:33:32 ----D---- C:\Program Files (x86)\Easy DVD Creator
2011-04-13 13:04:53 ----D---- C:\Program Files (x86)\Xvid
2011-04-13 13:04:53 ----A---- C:\Windows\SysWOW64\xvidvfw.dll
2011-04-13 13:04:53 ----A---- C:\Windows\SysWOW64\xvidcore.dll
2011-04-13 13:04:00 ----D---- C:\Program Files (x86)\AviSynth 2.5
2011-04-13 10:49:43 ----A---- C:\Windows\SysWOW64\XpsGdiConverter.dll
2011-04-13 10:49:41 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-04-13 10:49:41 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-04-13 10:49:33 ----A---- C:\Windows\SysWOW64\mfc42u.dll
2011-04-13 10:49:33 ----A---- C:\Windows\SysWOW64\mfc42.dll
2011-04-13 10:49:19 ----A---- C:\Windows\SysWOW64\atmlib.dll
2011-04-13 10:49:19 ----A---- C:\Windows\SysWOW64\atmfd.dll
2011-04-13 10:49:16 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-04-13 10:49:14 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-04-13 10:49:12 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\mstime.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-04-13 10:49:09 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-04-13 10:49:09 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-04-13 10:46:40 ----A---- C:\Windows\SysWOW64\dnscacheugc.exe
2011-04-13 10:46:40 ----A---- C:\Windows\SysWOW64\dnsapi.dll
2011-04-13 10:46:37 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-04-11 21:00:45 ----A---- C:\Windows\SysWOW64\d2d1.dll
2011-04-11 21:00:44 ----A---- C:\Windows\SysWOW64\DWrite.dll
2011-04-11 16:23:10 ----D---- C:\Program Files (x86)\PSP Grader
2011-04-06 14:13:24 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 months======
2011-05-02 17:18:18 ----D---- C:\Windows\Temp
2011-05-02 17:18:17 ----D---- C:\Windows\Prefetch
2011-05-02 17:16:26 ----D---- C:\Windows\Tasks
2011-05-02 17:15:10 ----D---- C:\Users\Kříčka\AppData\Roaming\Orbit
2011-05-02 17:15:02 ----D---- C:\Users\Kříčka\AppData\Roaming\uTorrent
2011-05-02 17:14:45 ----D---- C:\Program Files (x86)\Steam
2011-05-02 17:00:12 ----D---- C:\Windows\System32
2011-05-02 17:00:12 ----D---- C:\Windows\inf
2011-05-02 16:18:14 ----D---- C:\Windows
2011-05-02 16:18:14 ----A---- C:\Windows\system.ini
2011-05-02 16:17:50 ----D---- C:\ProgramData
2011-05-02 16:15:55 ----D---- C:\Windows\SysWOW64\drivers
2011-05-02 16:15:55 ----D---- C:\Windows\SysWOW64
2011-05-02 16:15:55 ----D---- C:\Windows\AppPatch
2011-05-02 16:15:52 ----D---- C:\Program Files (x86)\Common Files
2011-05-02 16:14:24 ----D---- C:\Users\Kříčka\AppData\Roaming\Skype
2011-05-02 16:04:32 ----SHD---- C:\Windows\Installer
2011-05-02 16:04:31 ----RD---- C:\Program Files (x86)
2011-05-02 16:04:25 ----SHD---- C:\System Volume Information
2011-04-29 14:29:34 ----D---- C:\Program Files (x86)\Ashampoo
2011-04-29 14:28:40 ----AD---- C:\ProgramData\TEMP
2011-04-29 14:13:20 ----D---- C:\ProgramData\Norton
2011-04-29 14:09:12 ----D---- C:\Windows\Profiles
2011-04-24 12:14:01 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2011-04-23 22:01:32 ----D---- C:\Users\Kříčka\AppData\Roaming\Prison Break
2011-04-22 14:27:13 ----D---- C:\downloads
2011-04-22 08:05:18 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-04-21 08:03:53 ----D---- C:\Users\Kříčka\AppData\Roaming\skypePM
2011-04-15 15:56:22 ----RSD---- C:\Windows\assembly
2011-04-15 15:56:22 ----D---- C:\Windows\Microsoft.NET
2011-04-14 16:28:36 ----A---- C:\Windows\Irremote.ini
2011-04-14 13:35:40 ----D---- C:\Users\Kříčka\AppData\Roaming\Nero
2011-04-14 13:32:26 ----D---- C:\Program Files (x86)\Common Files\Nero
2011-04-14 13:31:48 ----D---- C:\ProgramData\Nero
2011-04-14 13:31:48 ----D---- C:\Program Files (x86)\Nero
2011-04-14 13:31:46 ----D---- C:\Windows\Cursors
2011-04-14 07:24:59 ----D---- C:\Windows\winsxs
2011-04-14 07:22:43 ----D---- C:\Windows\SysWOW64\migration
2011-04-14 07:22:43 ----D---- C:\Program Files (x86)\Internet Explorer
2011-04-14 06:35:13 ----D---- C:\ProgramData\Microsoft Help
2011-04-13 16:13:25 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2011-04-13 15:48:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-04-13 15:48:19 ----D---- C:\Users\Kříčka\AppData\Roaming\Vso
2011-04-13 15:48:13 ----D---- C:\Program Files (x86)\DVDFab 5
2011-04-13 15:47:50 ----D---- C:\Program Files (x86)\World of Warcraft
2011-04-13 15:29:25 ----RD---- C:\Users
2011-04-13 13:56:33 ----D---- C:\Users\Kříčka\AppData\Roaming\GooglePlusVideos
2011-04-13 12:51:01 ----D---- C:\Users\Kříčka\AppData\Roaming\Hamachi
2011-04-13 06:35:14 ----D---- C:\Users\Kříčka\AppData\Roaming\dvdcss
2011-04-12 20:04:06 ----D---- C:\ProgramData\DVD Shrink
2011-04-12 16:32:18 ----D---- C:\Zanar MT2
2011-04-06 12:58:46 ----D---- C:\Windows\SysWOW64\cs-CZ
2011-04-06 12:55:45 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-04-06 12:55:13 ----D---- C:\Windows\SysWOW64\en-US
2011-04-05 13:31:03 ----D---- C:\Windows\debug
2011-04-05 13:24:50 ----D---- C:\Program Files (x86)\Windows Mail
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 aswRdr;aswRdr; C:\Windows\SysWOW64\drivers\aswRdr.sys []
R1 aswSP;aswSP; C:\Windows\SysWOW64\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\SysWOW64\drivers\aswTdi.sys []
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys []
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys []
R2 aswFsBlk;aswFsBlk; C:\Windows\SysWOW64\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys []
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys []
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 azvusb;Virtual USB Hub; C:\Windows\system32\DRIVERS\azvusb.sys []
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 SMARTMouseFilterx64;HID-compliant mouse; C:\Windows\system32\DRIVERS\SMARTMouseFilterx64.sys []
R3 SMARTVHidMiniVistaAmd64;SMART HID Device; C:\Windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys []
R3 SMARTVTabletPCx64;SMART Virtual TabletPC; C:\Windows\system32\DRIVERS\SMARTVTabletPCx64.sys []
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys []
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 a48rg218;a48rg218; C:\Windows\SysWOW64\drivers\a48rg218.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 Ltn_stk7070P_64;PCTV based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7070P_64.sys []
S3 mod7700;DiBcom DIB7700 based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys []
S3 MODRC;PCTV Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys []
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 BackupService;BackupService; C:\Users\Kříčka\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Zanar MT2\hamachi-2.exe [2011-03-28 2111368]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-09-24 259368]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S2 ActivityMon2;ActivityMon; G:\ActivityMon\svchost.exe /servicestart []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 136176]
S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-05 194104]
S2 icas;iTALC Client; G:\italc\ica.exe -service []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\aspnet_state.exe [2009-10-07 44360]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2007-09-12 87288]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe -NetMsmqActivator []
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe []
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe []
-----------------EOF-----------------
combofix xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ComboFix 11-05-01.04 - Kříčka 02.05.2011 16:13:31.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4095.2489 [GMT 2:00]
Spuštěný z: c:\users\Kříčka\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-04-02 do 2011-05-02 )))))))))))))))))))))))))))))))
.
.
2011-05-02 14:18 . 2011-05-02 14:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-02 14:04 . 2011-05-02 14:04 -------- d-----w- c:\program files (x86)\Trend Micro
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\users\Kříčka\AppData\Roaming\Malwarebytes
2011-05-02 09:26 . 2010-12-20 16:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\programdata\Malwarebytes
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-05-02 09:26 . 2010-12-20 16:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-29 12:09 . 2011-04-29 12:09 -------- d-----w- c:\users\Kříčka\AppData\Roaming\URSoft
2011-04-29 12:09 . 2011-04-29 12:13 -------- d-----w- c:\program files (x86)\Your Uninstaller 2008
2011-04-26 10:29 . 2011-04-26 10:29 159080 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-04-26 09:49 . 2011-04-11 08:21 8802128 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C345C8DC-6642-4BEB-A1E2-34F81C8EF6B3}\mpengine.dll
2011-04-22 12:27 . 2011-04-22 12:27 -------- d-----w- C:\Prison Break
2011-04-22 12:25 . 2011-04-22 12:26 -------- d-----w- C:\Prison
2011-04-22 06:43 . 2001-06-19 15:53 266293 ----a-w- c:\windows\SysWow64\temp.001
2011-04-22 06:41 . 2011-04-22 06:47 -------- d-----w- c:\program files (x86)\Return to Castle Wolfenstein
2011-04-22 06:39 . 2001-06-19 15:53 266293 ----a-w- c:\windows\SysWow64\temp.000
2011-04-22 06:37 . 2011-04-22 06:37 -------- d-----w- c:\program files (x86)\MagicISO
2011-04-21 08:16 . 2011-04-21 08:16 -------- d-----w- C:\FIFA 11 CZ
2011-04-21 08:07 . 2011-04-22 06:39 -------- d-----w- C:\Return to Castle Wolfenstein
2011-04-20 11:50 . 2011-04-20 11:50 -------- d-----w- c:\users\Kříčka\AppData\Local\Puzzle
2011-04-13 17:29 . 2011-04-13 17:29 -------- d-----w- c:\program files (x86)\Seznam.cz
2011-04-13 14:38 . 2011-04-13 17:47 -------- d-----w- c:\users\Kříčka\AppData\Roaming\FreeMoviesToDVD
2011-04-13 14:37 . 2009-01-23 18:21 327680 ----a-w- c:\windows\SysWow64\dvdauthor.ocx
2011-04-13 14:37 . 2009-01-23 18:20 233472 ----a-w- c:\windows\SysWow64\viscomdvdimg.dll
2011-04-13 14:37 . 2009-01-23 18:08 15360 ----a-w- c:\windows\SysWow64\inetfr.DLL
2011-04-13 14:37 . 2009-01-23 18:08 152848 ----a-w- c:\windows\SysWow64\COMDLG32.OCX
2011-04-13 14:37 . 2009-01-23 18:08 141312 ----a-w- c:\windows\SysWow64\MSCMCFR.DLL
2011-04-13 14:37 . 2009-01-23 18:08 119568 ----a-w- c:\windows\SysWow64\VB6FR.DLL
2011-04-13 14:37 . 2009-01-23 18:08 115920 ----a-w- c:\windows\SysWow64\msinet.OCX
2011-04-13 14:37 . 2009-01-23 18:08 101888 ----a-w- c:\windows\SysWow64\VB6STKIT.DLL
2011-04-13 14:37 . 2011-04-13 14:37 -------- d-----w- c:\program files (x86)\Videos To DVD
2011-04-13 14:37 . 2009-01-23 18:08 32768 ----a-w- c:\windows\SysWow64\CMDLGFR.DLL
2011-04-13 14:35 . 2011-04-13 14:35 -------- d-----w- C:\my dvd
2011-04-13 14:33 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\Easy MPEG AVI DIVX WMV RM to DVD
2011-04-13 14:23 . 2011-04-13 14:23 -------- d-----w- C:\OutputFolder
2011-04-13 14:13 . 2011-04-13 14:42 -------- d-----w- c:\users\Kříčka\AppData\Roaming\AviDvdBurner
2011-04-13 14:13 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\AviDvdBurner
2011-04-13 14:08 . 2011-04-13 14:43 -------- d-----w- c:\program files (x86)\AVI to DVD Maker
2011-04-13 13:29 . 2011-04-14 14:28 -------- d-----w- c:\users\Kříčka\AppData\Local\Nero
2011-04-13 13:29 . 2011-04-13 13:29 -------- d-----w- c:\users\NeroMediaHomeUser.4
2011-04-13 12:38 . 2007-08-31 16:36 36864 ----a-w- c:\windows\SysWow64\trayicon_handler.ocx
2011-04-13 12:38 . 2003-01-26 11:41 40960 ----a-w- c:\windows\SysWow64\ssubtmr6.dll
2011-04-13 12:33 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\Easy DVD Creator
2011-04-13 11:04 . 2011-04-13 11:04 -------- d-----w- c:\program files (x86)\Xvid
2011-04-13 11:04 . 2009-06-07 14:25 77824 ----a-w- c:\windows\SysWow64\xvid.ax
2011-04-13 11:04 . 2009-06-07 14:24 180224 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2011-04-13 11:04 . 2009-06-07 14:16 819200 ----a-w- c:\windows\SysWow64\xvidcore.dll
2011-04-13 11:04 . 2009-08-11 19:22 580096 ----a-w- c:\windows\system32\ac3filter64.acm
2011-04-13 11:04 . 2009-08-11 19:18 497664 ----a-w- c:\windows\SysWow64\ac3filter.acm
2011-04-13 11:04 . 2011-04-13 13:47 -------- d-----w- c:\program files (x86)\AviSynth 2.5
2011-04-13 08:46 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-11 19:00 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-04-11 19:00 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-04-11 19:00 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-04-11 19:00 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-04-11 19:00 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-04-11 14:23 . 2011-04-11 14:23 -------- d-----w- c:\program files (x86)\PSP Grader
2011-04-06 12:13 . 2011-04-06 12:15 -------- d-----w- c:\windows\rescache
2011-04-06 10:55 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-04-06 10:55 . 2011-03-18 17:55 781272 ----a-w- c:\program files (x86)\Mozilla Firefox\mozsqlite3.dll
2011-04-06 10:55 . 2011-03-18 17:55 728024 ----a-w- c:\program files (x86)\Mozilla Firefox\libGLESv2.dll
2011-04-06 10:55 . 2011-03-18 17:55 1893336 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_42.dll
2011-04-06 10:55 . 2011-03-18 17:55 1874904 ----a-w- c:\program files (x86)\Mozilla Firefox\mozjs.dll
2011-04-06 10:55 . 2011-03-18 17:55 15832 ----a-w- c:\program files (x86)\Mozilla Firefox\mozalloc.dll
2011-04-06 10:55 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\libEGL.dll
2011-04-06 10:55 . 2011-03-18 17:55 1975768 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_42.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-24 05:41 . 2011-04-24 05:37 25024673 ----a-w- C:\PBP.ZIP
2011-03-29 17:25 . 2010-12-12 16:06 356352 ----a-w- c:\windows\SysWow64\eSellerateEngine.DLL
2011-03-29 15:32 . 2010-07-14 08:56 421888 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe
2011-02-10 13:31 . 2011-02-10 13:31 33344 ----a-w- c:\windows\system32\drivers\hamachi.sys
2011-02-02 16:11 . 2010-06-23 11:37 270720 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-12-09 11:51 3911776 ----a-w- c:\program files (x86)\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-03-17 13:45 2355224 ----a-w- c:\program files (x86)\Softonic-Eng7\tbSoft.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
2011-02-08 15:47 721288 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{707db484-2428-402d-afb5-d85b387544c7}]
2009-06-23 06:53 2211352 ----a-w- c:\program files (x86)\Mario_Forever\tbMari.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
2009-12-31 09:53 2349080 ----a-w- c:\program files (x86)\MyAshampoo\tbMyAs.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
2010-12-09 11:51 3911776 ----a-w- c:\program files (x86)\uTorrentBar\tbuTor.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files (x86)\Softonic-Eng7\tbSoft.dll" [2010-03-17 2355224]
"{707db484-2428-402d-afb5-d85b387544c7}"= "c:\program files (x86)\Mario_Forever\tbMari.dll" [2009-06-23 2211352]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files (x86)\MyAshampoo\tbMyAs.dll" [2009-12-31 2349080]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-12-09 3911776]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CLASSES_ROOT\clsid\{707db484-2428-402d-afb5-d85b387544c7}]
.
[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2011-01-18 1242448]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-02-21 396152]
"Seznam Postak"="c:\program files (x86)\Seznam.cz\postak.exe" [2011-01-19 489584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"TkBellExe"="c:\program files (x86)\Common Files\Real\Update_OB\realsched.exe" [2010-06-29 202256]
"Google Desktop Search"="c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" [2010-09-14 30192]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2010-06-03 1144104]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SMART Board Service"="c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe" [2010-11-19 5419376]
"SMART SNMP Agent"="c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe" [2010-11-19 1664368]
"LogMeIn Hamachi Ui"="c:\zanar mt2\hamachi-2-ui.exe" [2011-03-28 1910152]
"Nero MediaHome 4"="c:\program files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" [2009-09-24 4859176]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
.
c:\users\Kýˇźka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
HP SimpleSave Monitor.lnk - c:\users\Kýˇźka\AppData\Roaming\HP SimpleSave Application\StartHelper.exe [2010-9-11 480824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
N stroje aplikace Notebook.lnk - c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardTools.exe [2010-11-19 13310832]
Orbit.lnk - c:\program files (x86)\Orbitdownloader\orbitdm.exe [2011-3-29 1838904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll c:\progra~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
R2 ActivityMon2;ActivityMon;g:\activitymon\svchost.exe [x]
R2 BackupService;BackupService;c:\users\Kříčka\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 136176]
R2 icas;iTALC Client;g:\italc\ica.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
R3 Ltn_stk7070P_64;PCTV based TV tuner device;c:\windows\system32\DRIVERS\Ltn_stk7070P_64.sys [x]
R3 MODRC;PCTV Infrared Receiver;c:\windows\system32\DRIVERS\modrc.sys [x]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;c:\windows\system32\DRIVERS\Rtnic64.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WPFFontCache_v0400;WPFFontCache_v0400;c:\windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 aswSP;aswSP; [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\zanar mt2\hamachi-2.exe [2011-03-28 2111368]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 azvusb;Virtual USB Hub;c:\windows\system32\DRIVERS\azvusb.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 SMARTMouseFilterx64;HID-compliant mouse;c:\windows\system32\DRIVERS\SMARTMouseFilterx64.sys [x]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device;c:\windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [x]
S3 SMARTVTabletPCx64;SMART Virtual TabletPC;c:\windows\system32\DRIVERS\SMARTVTabletPCx64.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-05-02 c:\windows\Tasks\Google Software Updater.job
- c:\program files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-05 08:27]
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 13:30]
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 13:30]
.
2011-05-02 c:\windows\Tasks\SDMsgUpdate (TE).job
- c:\progra~2\SMARTD~1\Messages\SDNotify.exe [2010-07-22 17:29]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
2011-02-08 15:47 1057160 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: &Download by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/204
IE: Do&wnload selected by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/202
IE: Download with Star Downloader - c:\users\Kříčka\Downloads\sdie.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Enqueue in Star Downloader - c:\progra~2\STARDO~1\sdieenq.htm
IE: Leech with Star Downloader - c:\progra~2\STARDO~1\leechie.htm
IE: Stáhnout pomocí Download &Express - c:\program files (x86)\Download Express\Add_Url.htm
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
Name-Space Handler: ftp\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: http\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: https\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
FF - ProfilePath - c:\users\Kříčka\AppData\Roaming\Mozilla\Firefox\Profiles\6dvg7nh9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2475029&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ACPro
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.imesh.com/web?src=ffb&systemid=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe
Wow6432Node-HKLM-Run-StartCCC - c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
Wow6432Node-HKLM-Run-Adobe ARM - c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Toolbar-10 - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{707DB484-2428-402D-AFB5-D85B387544C7} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - (no file)
WebBrowser-{4C350B19-6CA1-4569-B14C-296D8D65300C} - (no file)
AddRemove-3D Merry XMas Screensaver_is1 - c:\program files (x86)\3D Merry XMas Screensaver\unins000.exe
AddRemove-AC3Filter_is1 - c:\program files (x86)\AC3Filter\unins000.exe
AddRemove-AutocompletePro3_is1 - c:\program files (x86)\AutocompletePro\unins000.exe
AddRemove-BattlEye - g:\bohemia interactive\ArmA 2 Operation ArrowheadExpansion\BattlEye\UnInstallBE.exe
AddRemove-EA Download Manager - c:\program files (x86)\Electronic Arts\EADM\EADMUninstall.exe
AddRemove-EMDB_is1 - c:\program files (x86)\EMDB\unins000.exe
AddRemove-GAMEFORGE Nostale(CZ)_is1 - c:\nostale(cz)\unins000.exe
AddRemove-GTA Liberty City Stories PC Edition beta 3.1.1 - c:\users\Kříčka\Desktop\Uninstall.exe
AddRemove-HospitalTycoon - c:\users\Kříčka\Desktop\hospital\Hospital Tycoon\uninstall.exe
AddRemove-IconArt - c:\progra~2\ConWare\IconArt\UNWISE.EXE
AddRemove-Imperium Romanum Demo - c:\install\Imperium Romanum Demo\uninst.exe
AddRemove-InstallShield_{DCF0739A-23F1-4E7A-A538-AC4580B28F55} - c:\progra~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe
AddRemove-iTALC - g:\italc\uninstall.exe
AddRemove-LifeGlobe Goldfish Aquarium 2.0_is1 - c:\program files (x86)\Prolific Publishing
AddRemove-McDonald's Dragons - c:\program files (x86)\McDonaldsDragons\uninstall.exe
AddRemove-Metal Slug - Commando 2 - g:\backup files\3\Uninstal.exe
AddRemove-Metin2_is1 - g:\metin2\unins000.exe
AddRemove-Naruto Games - g:\backup files\3\Naruto Games\Uninstal.exe
AddRemove-Prince of Persia Písky času - c:\users\Kříčka\Desktop\Prince of Persia\Prince of Persia The Sands of Time\uninstall.exe
AddRemove-RealPlayer 12.0 - c:\program files (x86)\Common Files\Real\Update_OB\r1puninst.exe
AddRemove-SiteVacuum - c:\program files (x86)\EasySearch\uninst.exe
AddRemove-SmartDraw VP - g:\backup~1\3\SMARTD~1\UNWISE.EXE
AddRemove-Sniper Ghost Warrior_is1 - g:\sniper ghost\Sniper Ghost Warrior\unins000.exe
AddRemove-StepMania - g:\backup files\3\step mania\StepMania\uninstall.exe
AddRemove-Super Mario 3 : Mario Forever - g:\backup files\3\Uninstal.exe
AddRemove-Tarzan - g:\backup~1\3\Tarzan\UNWISE.EXE
AddRemove-Zoo Tycoon 2 - g:\program files (x86)\Microsoft Games\Zoo Tycoon 2\UNINSTAL.EXE
AddRemove-{1D049523-F355-4848-AB92-0CB5AC9409AF}_is1 - c:\gamigo\SnowBoundOnline\unins000.exe
AddRemove-{2933831A-7F63-433A-82EC-4A7882FCFA8B}_is1 - g:\popeláři\unins000.exe
AddRemove-{438BC259-E54C-4392-008E-2808B9C251CA} - g:\backup files\3\EAUninstall.exe
AddRemove-{909F8EBC-EC7F-48FF-0085-475D818F0F31} - g:\need for speed underground 2\EAUninstall.exe
AddRemove-{Anticky Rim}_is1 - c:\program files (x86)\Anticky Rim\unins000.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - c:\program files (x86)\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL
AddRemove-QIP 2010 - g:\qip 2010\unins001.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-05-02 16:20:09
ComboFix-quarantined-files.txt 2011-05-02 14:20
.
Před spuštěním: Volných bajtů: 18 385 203 200
Po spuštění: Volných bajtů: 18 801 549 312
.
- - End Of File - - 9795C39E9C7F8798E135B230545491FC
Logfile of random's system information tool 1.08 (written by random/random)
Run by Kříčka at 2011-05-02 17:18:17
Microsoft Windows 7 Home Premium
System drive C: has 18 GB (12%) free of 150 GB
Total RAM: 4095 MB (67% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\SDMsgUpdate (TE).job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}]
Octh Class - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll [2011-03-22 241464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-06-19 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-06-29 341600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
Softonic-Eng7 Toolbar - C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
UrlHelper Class - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll [2011-02-08 721288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{707db484-2428-402d-afb5-d85b387544c7}]
Mario Forever Toolbar - C:\Program Files (x86)\Mario_Forever\tbMari.dll [2009-06-23 2211352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\tbMyAs.dll [2009-12-31 2349080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-07-06 814648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Softonic Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-06-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files (x86)\Seznam.cz\core.3.dll [2011-01-19 1175152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFEF0-5B30-21D4-945D-000000000000}]
C:\PROGRA~2\STARDO~1\SDIEInt.dll [2004-11-29 135168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - Softonic-Eng7 Toolbar - C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]
{707db484-2428-402d-afb5-d85b387544c7} - Mario Forever Toolbar - C:\Program Files (x86)\Mario_Forever\tbMari.dll [2009-06-23 2211352]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\tbMyAs.dll [2009-12-31 2349080]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Softonic Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
{28387537-e3f9-4ed7-860c-11e69af4a8a0}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll [2011-03-22 687808]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"TkBellExe"=C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe [2010-06-29 202256]
"Google Desktop Search"=C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SMART Board Service"=C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2010-11-19 5419376]
"SMART SNMP Agent"=C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe [2010-11-19 1664368]
"DATAMNGR"=C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\DATAMN~1.EXE [2011-02-08 1115568]
"LogMeIn Hamachi Ui"=C:\Zanar MT2\hamachi-2-ui.exe [2011-03-28 1910152]
"Nero MediaHome 4"=C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-09-24 4859176]
"NBKeyScan"=C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2011-01-26 15026056]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2011-01-18 1242448]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-02-21 396152]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\postak.exe [2011-01-19 489584]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Nástroje aplikace Notebook.lnk - C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardTools.exe
Orbit.lnk - C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
C:\Users\Kříčka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
HP SimpleSave Monitor.lnk - C:\Users\Kříčka\AppData\Roaming\HP SimpleSave Application\StartHelper.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll C:\PROGRA~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWow64\webcheck.dll [2009-07-14 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Kříčka\Downloads\IMAGE53892731.JPG-www.facebook.exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Users\Kříčka\Downloads\IMAGE53892731.JPG-www.facebook(2).exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Combat Arms EU\CombatArms.exe"="C:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Combat Arms EU\Engine.exe"="C:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine.exe"
"C:\Program Files (x86)\Orbitdownloader\orbitdm.exe"="C:\Program Files (x86)\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit"
"C:\Program Files (x86)\Orbitdownloader\orbitnet.exe"="C:\Program Files (x86)\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-05-02 17:18:17 ----D---- C:\rsit
2011-05-02 16:55:45 ----SHD---- C:\$RECYCLE.BIN
2011-05-02 16:20:09 ----A---- C:\ComboFix.txt
2011-05-02 16:12:04 ----A---- C:\Windows\zip.exe
2011-05-02 16:12:04 ----A---- C:\Windows\SWSC.exe
2011-05-02 16:12:04 ----A---- C:\Windows\SWREG.exe
2011-05-02 16:12:04 ----A---- C:\Windows\sed.exe
2011-05-02 16:12:04 ----A---- C:\Windows\PEV.exe
2011-05-02 16:12:04 ----A---- C:\Windows\NIRCMD.exe
2011-05-02 16:12:04 ----A---- C:\Windows\MBR.exe
2011-05-02 16:12:04 ----A---- C:\Windows\grep.exe
2011-05-02 16:11:35 ----A---- C:\Windows\SWXCACLS.exe
2011-05-02 16:08:25 ----D---- C:\Windows\ERDNT
2011-05-02 16:07:49 ----D---- C:\Qoobox
2011-05-02 16:04:31 ----D---- C:\Program Files (x86)\Trend Micro
2011-05-02 11:26:55 ----D---- C:\Users\Kříčka\AppData\Roaming\Malwarebytes
2011-05-02 11:26:47 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-05-02 11:26:46 ----D---- C:\ProgramData\Malwarebytes
2011-05-02 11:26:43 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-29 14:09:12 ----D---- C:\Users\Kříčka\AppData\Roaming\URSoft
2011-04-29 14:09:10 ----D---- C:\Program Files (x86)\Your Uninstaller 2008
2011-04-22 14:27:31 ----D---- C:\Prison Break
2011-04-22 14:25:23 ----D---- C:\Prison
2011-04-22 08:45:42 ----A---- C:\Windows\RTCW.INI
2011-04-22 08:41:16 ----D---- C:\Program Files (x86)\Return to Castle Wolfenstein
2011-04-22 08:37:53 ----D---- C:\Program Files (x86)\MagicISO
2011-04-22 08:05:22 ----ASH---- C:\pagefile.sys
2011-04-21 10:16:03 ----D---- C:\FIFA 11 CZ
2011-04-21 10:07:10 ----D---- C:\Return to Castle Wolfenstein
2011-04-14 13:33:24 ----A---- C:\Windows\SysWOW64\MsiExec.exe.log
2011-04-13 19:29:13 ----D---- C:\Program Files (x86)\Seznam.cz
2011-04-13 16:38:16 ----D---- C:\Users\Kříčka\AppData\Roaming\FreeMoviesToDVD
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\viscomdvdimg.dll
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\VB6STKIT.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\VB6FR.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\MSCMCFR.DLL
2011-04-13 16:37:24 ----A---- C:\Windows\SysWOW64\inetfr.DLL
2011-04-13 16:37:23 ----D---- C:\Program Files (x86)\Videos To DVD
2011-04-13 16:37:23 ----A---- C:\Windows\SysWOW64\CMDLGFR.DLL
2011-04-13 16:35:15 ----D---- C:\my dvd
2011-04-13 16:33:53 ----A---- C:\Windows\Easy Video to DVD.INI
2011-04-13 16:33:50 ----D---- C:\Program Files (x86)\Easy MPEG AVI DIVX WMV RM to DVD
2011-04-13 16:30:30 ----A---- C:\Windows\NeroDigital.ini
2011-04-13 16:23:56 ----D---- C:\OutputFolder
2011-04-13 16:13:38 ----D---- C:\Users\Kříčka\AppData\Roaming\AviDvdBurner
2011-04-13 16:13:07 ----D---- C:\Program Files (x86)\AviDvdBurner
2011-04-13 16:08:10 ----D---- C:\Program Files (x86)\AVI to DVD Maker
2011-04-13 14:38:07 ----A---- C:\Windows\SysWOW64\ssubtmr6.dll
2011-04-13 14:33:39 ----A---- C:\Windows\Easy DVD Creator.INI
2011-04-13 14:33:32 ----D---- C:\Program Files (x86)\Easy DVD Creator
2011-04-13 13:04:53 ----D---- C:\Program Files (x86)\Xvid
2011-04-13 13:04:53 ----A---- C:\Windows\SysWOW64\xvidvfw.dll
2011-04-13 13:04:53 ----A---- C:\Windows\SysWOW64\xvidcore.dll
2011-04-13 13:04:00 ----D---- C:\Program Files (x86)\AviSynth 2.5
2011-04-13 10:49:43 ----A---- C:\Windows\SysWOW64\XpsGdiConverter.dll
2011-04-13 10:49:41 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-04-13 10:49:41 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-04-13 10:49:33 ----A---- C:\Windows\SysWOW64\mfc42u.dll
2011-04-13 10:49:33 ----A---- C:\Windows\SysWOW64\mfc42.dll
2011-04-13 10:49:19 ----A---- C:\Windows\SysWOW64\atmlib.dll
2011-04-13 10:49:19 ----A---- C:\Windows\SysWOW64\atmfd.dll
2011-04-13 10:49:16 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-04-13 10:49:14 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-04-13 10:49:12 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\mstime.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-04-13 10:49:11 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-04-13 10:49:10 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-04-13 10:49:09 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-04-13 10:49:09 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-04-13 10:46:40 ----A---- C:\Windows\SysWOW64\dnscacheugc.exe
2011-04-13 10:46:40 ----A---- C:\Windows\SysWOW64\dnsapi.dll
2011-04-13 10:46:37 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-04-11 21:00:45 ----A---- C:\Windows\SysWOW64\d2d1.dll
2011-04-11 21:00:44 ----A---- C:\Windows\SysWOW64\DWrite.dll
2011-04-11 16:23:10 ----D---- C:\Program Files (x86)\PSP Grader
2011-04-06 14:13:24 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 months======
2011-05-02 17:18:18 ----D---- C:\Windows\Temp
2011-05-02 17:18:17 ----D---- C:\Windows\Prefetch
2011-05-02 17:16:26 ----D---- C:\Windows\Tasks
2011-05-02 17:15:10 ----D---- C:\Users\Kříčka\AppData\Roaming\Orbit
2011-05-02 17:15:02 ----D---- C:\Users\Kříčka\AppData\Roaming\uTorrent
2011-05-02 17:14:45 ----D---- C:\Program Files (x86)\Steam
2011-05-02 17:00:12 ----D---- C:\Windows\System32
2011-05-02 17:00:12 ----D---- C:\Windows\inf
2011-05-02 16:18:14 ----D---- C:\Windows
2011-05-02 16:18:14 ----A---- C:\Windows\system.ini
2011-05-02 16:17:50 ----D---- C:\ProgramData
2011-05-02 16:15:55 ----D---- C:\Windows\SysWOW64\drivers
2011-05-02 16:15:55 ----D---- C:\Windows\SysWOW64
2011-05-02 16:15:55 ----D---- C:\Windows\AppPatch
2011-05-02 16:15:52 ----D---- C:\Program Files (x86)\Common Files
2011-05-02 16:14:24 ----D---- C:\Users\Kříčka\AppData\Roaming\Skype
2011-05-02 16:04:32 ----SHD---- C:\Windows\Installer
2011-05-02 16:04:31 ----RD---- C:\Program Files (x86)
2011-05-02 16:04:25 ----SHD---- C:\System Volume Information
2011-04-29 14:29:34 ----D---- C:\Program Files (x86)\Ashampoo
2011-04-29 14:28:40 ----AD---- C:\ProgramData\TEMP
2011-04-29 14:13:20 ----D---- C:\ProgramData\Norton
2011-04-29 14:09:12 ----D---- C:\Windows\Profiles
2011-04-24 12:14:01 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2011-04-23 22:01:32 ----D---- C:\Users\Kříčka\AppData\Roaming\Prison Break
2011-04-22 14:27:13 ----D---- C:\downloads
2011-04-22 08:05:18 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-04-21 08:03:53 ----D---- C:\Users\Kříčka\AppData\Roaming\skypePM
2011-04-15 15:56:22 ----RSD---- C:\Windows\assembly
2011-04-15 15:56:22 ----D---- C:\Windows\Microsoft.NET
2011-04-14 16:28:36 ----A---- C:\Windows\Irremote.ini
2011-04-14 13:35:40 ----D---- C:\Users\Kříčka\AppData\Roaming\Nero
2011-04-14 13:32:26 ----D---- C:\Program Files (x86)\Common Files\Nero
2011-04-14 13:31:48 ----D---- C:\ProgramData\Nero
2011-04-14 13:31:48 ----D---- C:\Program Files (x86)\Nero
2011-04-14 13:31:46 ----D---- C:\Windows\Cursors
2011-04-14 07:24:59 ----D---- C:\Windows\winsxs
2011-04-14 07:22:43 ----D---- C:\Windows\SysWOW64\migration
2011-04-14 07:22:43 ----D---- C:\Program Files (x86)\Internet Explorer
2011-04-14 06:35:13 ----D---- C:\ProgramData\Microsoft Help
2011-04-13 16:13:25 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2011-04-13 15:48:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-04-13 15:48:19 ----D---- C:\Users\Kříčka\AppData\Roaming\Vso
2011-04-13 15:48:13 ----D---- C:\Program Files (x86)\DVDFab 5
2011-04-13 15:47:50 ----D---- C:\Program Files (x86)\World of Warcraft
2011-04-13 15:29:25 ----RD---- C:\Users
2011-04-13 13:56:33 ----D---- C:\Users\Kříčka\AppData\Roaming\GooglePlusVideos
2011-04-13 12:51:01 ----D---- C:\Users\Kříčka\AppData\Roaming\Hamachi
2011-04-13 06:35:14 ----D---- C:\Users\Kříčka\AppData\Roaming\dvdcss
2011-04-12 20:04:06 ----D---- C:\ProgramData\DVD Shrink
2011-04-12 16:32:18 ----D---- C:\Zanar MT2
2011-04-06 12:58:46 ----D---- C:\Windows\SysWOW64\cs-CZ
2011-04-06 12:55:45 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-04-06 12:55:13 ----D---- C:\Windows\SysWOW64\en-US
2011-04-05 13:31:03 ----D---- C:\Windows\debug
2011-04-05 13:24:50 ----D---- C:\Program Files (x86)\Windows Mail
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 aswRdr;aswRdr; C:\Windows\SysWOW64\drivers\aswRdr.sys []
R1 aswSP;aswSP; C:\Windows\SysWOW64\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\SysWOW64\drivers\aswTdi.sys []
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys []
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys []
R2 aswFsBlk;aswFsBlk; C:\Windows\SysWOW64\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys []
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys []
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 azvusb;Virtual USB Hub; C:\Windows\system32\DRIVERS\azvusb.sys []
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 SMARTMouseFilterx64;HID-compliant mouse; C:\Windows\system32\DRIVERS\SMARTMouseFilterx64.sys []
R3 SMARTVHidMiniVistaAmd64;SMART HID Device; C:\Windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys []
R3 SMARTVTabletPCx64;SMART Virtual TabletPC; C:\Windows\system32\DRIVERS\SMARTVTabletPCx64.sys []
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys []
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 a48rg218;a48rg218; C:\Windows\SysWOW64\drivers\a48rg218.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 Ltn_stk7070P_64;PCTV based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7070P_64.sys []
S3 mod7700;DiBcom DIB7700 based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys []
S3 MODRC;PCTV Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys []
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 BackupService;BackupService; C:\Users\Kříčka\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Zanar MT2\hamachi-2.exe [2011-03-28 2111368]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-09-24 259368]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S2 ActivityMon2;ActivityMon; G:\ActivityMon\svchost.exe /servicestart []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 136176]
S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-05 194104]
S2 icas;iTALC Client; G:\italc\ica.exe -service []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\aspnet_state.exe [2009-10-07 44360]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2007-09-12 87288]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe -NetMsmqActivator []
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe []
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.21006\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.21006\SMSvcHost.exe []
-----------------EOF-----------------
combofix xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ComboFix 11-05-01.04 - Kříčka 02.05.2011 16:13:31.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4095.2489 [GMT 2:00]
Spuštěný z: c:\users\Kříčka\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-04-02 do 2011-05-02 )))))))))))))))))))))))))))))))
.
.
2011-05-02 14:18 . 2011-05-02 14:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-02 14:04 . 2011-05-02 14:04 -------- d-----w- c:\program files (x86)\Trend Micro
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\users\Kříčka\AppData\Roaming\Malwarebytes
2011-05-02 09:26 . 2010-12-20 16:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\programdata\Malwarebytes
2011-05-02 09:26 . 2011-05-02 09:26 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-05-02 09:26 . 2010-12-20 16:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-29 12:09 . 2011-04-29 12:09 -------- d-----w- c:\users\Kříčka\AppData\Roaming\URSoft
2011-04-29 12:09 . 2011-04-29 12:13 -------- d-----w- c:\program files (x86)\Your Uninstaller 2008
2011-04-26 10:29 . 2011-04-26 10:29 159080 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-04-26 09:49 . 2011-04-11 08:21 8802128 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C345C8DC-6642-4BEB-A1E2-34F81C8EF6B3}\mpengine.dll
2011-04-22 12:27 . 2011-04-22 12:27 -------- d-----w- C:\Prison Break
2011-04-22 12:25 . 2011-04-22 12:26 -------- d-----w- C:\Prison
2011-04-22 06:43 . 2001-06-19 15:53 266293 ----a-w- c:\windows\SysWow64\temp.001
2011-04-22 06:41 . 2011-04-22 06:47 -------- d-----w- c:\program files (x86)\Return to Castle Wolfenstein
2011-04-22 06:39 . 2001-06-19 15:53 266293 ----a-w- c:\windows\SysWow64\temp.000
2011-04-22 06:37 . 2011-04-22 06:37 -------- d-----w- c:\program files (x86)\MagicISO
2011-04-21 08:16 . 2011-04-21 08:16 -------- d-----w- C:\FIFA 11 CZ
2011-04-21 08:07 . 2011-04-22 06:39 -------- d-----w- C:\Return to Castle Wolfenstein
2011-04-20 11:50 . 2011-04-20 11:50 -------- d-----w- c:\users\Kříčka\AppData\Local\Puzzle
2011-04-13 17:29 . 2011-04-13 17:29 -------- d-----w- c:\program files (x86)\Seznam.cz
2011-04-13 14:38 . 2011-04-13 17:47 -------- d-----w- c:\users\Kříčka\AppData\Roaming\FreeMoviesToDVD
2011-04-13 14:37 . 2009-01-23 18:21 327680 ----a-w- c:\windows\SysWow64\dvdauthor.ocx
2011-04-13 14:37 . 2009-01-23 18:20 233472 ----a-w- c:\windows\SysWow64\viscomdvdimg.dll
2011-04-13 14:37 . 2009-01-23 18:08 15360 ----a-w- c:\windows\SysWow64\inetfr.DLL
2011-04-13 14:37 . 2009-01-23 18:08 152848 ----a-w- c:\windows\SysWow64\COMDLG32.OCX
2011-04-13 14:37 . 2009-01-23 18:08 141312 ----a-w- c:\windows\SysWow64\MSCMCFR.DLL
2011-04-13 14:37 . 2009-01-23 18:08 119568 ----a-w- c:\windows\SysWow64\VB6FR.DLL
2011-04-13 14:37 . 2009-01-23 18:08 115920 ----a-w- c:\windows\SysWow64\msinet.OCX
2011-04-13 14:37 . 2009-01-23 18:08 101888 ----a-w- c:\windows\SysWow64\VB6STKIT.DLL
2011-04-13 14:37 . 2011-04-13 14:37 -------- d-----w- c:\program files (x86)\Videos To DVD
2011-04-13 14:37 . 2009-01-23 18:08 32768 ----a-w- c:\windows\SysWow64\CMDLGFR.DLL
2011-04-13 14:35 . 2011-04-13 14:35 -------- d-----w- C:\my dvd
2011-04-13 14:33 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\Easy MPEG AVI DIVX WMV RM to DVD
2011-04-13 14:23 . 2011-04-13 14:23 -------- d-----w- C:\OutputFolder
2011-04-13 14:13 . 2011-04-13 14:42 -------- d-----w- c:\users\Kříčka\AppData\Roaming\AviDvdBurner
2011-04-13 14:13 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\AviDvdBurner
2011-04-13 14:08 . 2011-04-13 14:43 -------- d-----w- c:\program files (x86)\AVI to DVD Maker
2011-04-13 13:29 . 2011-04-14 14:28 -------- d-----w- c:\users\Kříčka\AppData\Local\Nero
2011-04-13 13:29 . 2011-04-13 13:29 -------- d-----w- c:\users\NeroMediaHomeUser.4
2011-04-13 12:38 . 2007-08-31 16:36 36864 ----a-w- c:\windows\SysWow64\trayicon_handler.ocx
2011-04-13 12:38 . 2003-01-26 11:41 40960 ----a-w- c:\windows\SysWow64\ssubtmr6.dll
2011-04-13 12:33 . 2011-04-13 14:42 -------- d-----w- c:\program files (x86)\Easy DVD Creator
2011-04-13 11:04 . 2011-04-13 11:04 -------- d-----w- c:\program files (x86)\Xvid
2011-04-13 11:04 . 2009-06-07 14:25 77824 ----a-w- c:\windows\SysWow64\xvid.ax
2011-04-13 11:04 . 2009-06-07 14:24 180224 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2011-04-13 11:04 . 2009-06-07 14:16 819200 ----a-w- c:\windows\SysWow64\xvidcore.dll
2011-04-13 11:04 . 2009-08-11 19:22 580096 ----a-w- c:\windows\system32\ac3filter64.acm
2011-04-13 11:04 . 2009-08-11 19:18 497664 ----a-w- c:\windows\SysWow64\ac3filter.acm
2011-04-13 11:04 . 2011-04-13 13:47 -------- d-----w- c:\program files (x86)\AviSynth 2.5
2011-04-13 08:46 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-11 19:00 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-04-11 19:00 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-04-11 19:00 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-04-11 19:00 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-04-11 19:00 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-04-11 14:23 . 2011-04-11 14:23 -------- d-----w- c:\program files (x86)\PSP Grader
2011-04-06 12:13 . 2011-04-06 12:15 -------- d-----w- c:\windows\rescache
2011-04-06 10:55 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-04-06 10:55 . 2011-03-18 17:55 781272 ----a-w- c:\program files (x86)\Mozilla Firefox\mozsqlite3.dll
2011-04-06 10:55 . 2011-03-18 17:55 728024 ----a-w- c:\program files (x86)\Mozilla Firefox\libGLESv2.dll
2011-04-06 10:55 . 2011-03-18 17:55 1893336 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_42.dll
2011-04-06 10:55 . 2011-03-18 17:55 1874904 ----a-w- c:\program files (x86)\Mozilla Firefox\mozjs.dll
2011-04-06 10:55 . 2011-03-18 17:55 15832 ----a-w- c:\program files (x86)\Mozilla Firefox\mozalloc.dll
2011-04-06 10:55 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\libEGL.dll
2011-04-06 10:55 . 2011-03-18 17:55 1975768 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_42.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-02 14:04 . 2011-05-02 14:04 388096 ----a-r- c:\users\Kříčka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-24 05:41 . 2011-04-24 05:37 25024673 ----a-w- C:\PBP.ZIP
2011-03-29 17:25 . 2010-12-12 16:06 356352 ----a-w- c:\windows\SysWow64\eSellerateEngine.DLL
2011-03-29 15:32 . 2010-07-14 08:56 421888 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe
2011-02-10 13:31 . 2011-02-10 13:31 33344 ----a-w- c:\windows\system32\drivers\hamachi.sys
2011-02-02 16:11 . 2010-06-23 11:37 270720 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-12-09 11:51 3911776 ----a-w- c:\program files (x86)\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-03-17 13:45 2355224 ----a-w- c:\program files (x86)\Softonic-Eng7\tbSoft.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
2011-02-08 15:47 721288 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{707db484-2428-402d-afb5-d85b387544c7}]
2009-06-23 06:53 2211352 ----a-w- c:\program files (x86)\Mario_Forever\tbMari.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
2009-12-31 09:53 2349080 ----a-w- c:\program files (x86)\MyAshampoo\tbMyAs.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
2010-12-09 11:51 3911776 ----a-w- c:\program files (x86)\uTorrentBar\tbuTor.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files (x86)\Softonic-Eng7\tbSoft.dll" [2010-03-17 2355224]
"{707db484-2428-402d-afb5-d85b387544c7}"= "c:\program files (x86)\Mario_Forever\tbMari.dll" [2009-06-23 2211352]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files (x86)\MyAshampoo\tbMyAs.dll" [2009-12-31 2349080]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-12-09 3911776]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CLASSES_ROOT\clsid\{707db484-2428-402d-afb5-d85b387544c7}]
.
[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2011-01-18 1242448]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-02-21 396152]
"Seznam Postak"="c:\program files (x86)\Seznam.cz\postak.exe" [2011-01-19 489584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"TkBellExe"="c:\program files (x86)\Common Files\Real\Update_OB\realsched.exe" [2010-06-29 202256]
"Google Desktop Search"="c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" [2010-09-14 30192]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2010-06-03 1144104]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SMART Board Service"="c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe" [2010-11-19 5419376]
"SMART SNMP Agent"="c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe" [2010-11-19 1664368]
"LogMeIn Hamachi Ui"="c:\zanar mt2\hamachi-2-ui.exe" [2011-03-28 1910152]
"Nero MediaHome 4"="c:\program files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" [2009-09-24 4859176]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
.
c:\users\Kýˇźka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
HP SimpleSave Monitor.lnk - c:\users\Kýˇźka\AppData\Roaming\HP SimpleSave Application\StartHelper.exe [2010-9-11 480824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
N stroje aplikace Notebook.lnk - c:\program files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardTools.exe [2010-11-19 13310832]
Orbit.lnk - c:\program files (x86)\Orbitdownloader\orbitdm.exe [2011-3-29 1838904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll c:\progra~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
R2 ActivityMon2;ActivityMon;g:\activitymon\svchost.exe [x]
R2 BackupService;BackupService;c:\users\Kříčka\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 136176]
R2 icas;iTALC Client;g:\italc\ica.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-14 30192]
R3 Ltn_stk7070P_64;PCTV based TV tuner device;c:\windows\system32\DRIVERS\Ltn_stk7070P_64.sys [x]
R3 MODRC;PCTV Infrared Receiver;c:\windows\system32\DRIVERS\modrc.sys [x]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;c:\windows\system32\DRIVERS\Rtnic64.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WPFFontCache_v0400;WPFFontCache_v0400;c:\windows\Microsoft.NET\Framework64\v4.0.21006\WPF\WPFFontCache_v0400.exe [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 aswSP;aswSP; [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\zanar mt2\hamachi-2.exe [2011-03-28 2111368]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 azvusb;Virtual USB Hub;c:\windows\system32\DRIVERS\azvusb.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 SMARTMouseFilterx64;HID-compliant mouse;c:\windows\system32\DRIVERS\SMARTMouseFilterx64.sys [x]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device;c:\windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [x]
S3 SMARTVTabletPCx64;SMART Virtual TabletPC;c:\windows\system32\DRIVERS\SMARTVTabletPCx64.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-05-02 c:\windows\Tasks\Google Software Updater.job
- c:\program files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-05 08:27]
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 13:30]
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-29 13:30]
.
2011-05-02 c:\windows\Tasks\SDMsgUpdate (TE).job
- c:\progra~2\SMARTD~1\Messages\SDNotify.exe [2010-07-22 17:29]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
2011-02-08 15:47 1057160 ----a-w- c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: &Download by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/204
IE: Do&wnload selected by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/202
IE: Download with Star Downloader - c:\users\Kříčka\Downloads\sdie.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Enqueue in Star Downloader - c:\progra~2\STARDO~1\sdieenq.htm
IE: Leech with Star Downloader - c:\progra~2\STARDO~1\leechie.htm
IE: Stáhnout pomocí Download &Express - c:\program files (x86)\Download Express\Add_Url.htm
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
Name-Space Handler: ftp\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: http\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: https\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
FF - ProfilePath - c:\users\Kříčka\AppData\Roaming\Mozilla\Firefox\Profiles\6dvg7nh9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2475029&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ACPro
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.imesh.com/web?src=ffb&systemid=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe
Wow6432Node-HKLM-Run-StartCCC - c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
Wow6432Node-HKLM-Run-Adobe ARM - c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Toolbar-10 - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{707DB484-2428-402D-AFB5-D85B387544C7} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - (no file)
WebBrowser-{4C350B19-6CA1-4569-B14C-296D8D65300C} - (no file)
AddRemove-3D Merry XMas Screensaver_is1 - c:\program files (x86)\3D Merry XMas Screensaver\unins000.exe
AddRemove-AC3Filter_is1 - c:\program files (x86)\AC3Filter\unins000.exe
AddRemove-AutocompletePro3_is1 - c:\program files (x86)\AutocompletePro\unins000.exe
AddRemove-BattlEye - g:\bohemia interactive\ArmA 2 Operation ArrowheadExpansion\BattlEye\UnInstallBE.exe
AddRemove-EA Download Manager - c:\program files (x86)\Electronic Arts\EADM\EADMUninstall.exe
AddRemove-EMDB_is1 - c:\program files (x86)\EMDB\unins000.exe
AddRemove-GAMEFORGE Nostale(CZ)_is1 - c:\nostale(cz)\unins000.exe
AddRemove-GTA Liberty City Stories PC Edition beta 3.1.1 - c:\users\Kříčka\Desktop\Uninstall.exe
AddRemove-HospitalTycoon - c:\users\Kříčka\Desktop\hospital\Hospital Tycoon\uninstall.exe
AddRemove-IconArt - c:\progra~2\ConWare\IconArt\UNWISE.EXE
AddRemove-Imperium Romanum Demo - c:\install\Imperium Romanum Demo\uninst.exe
AddRemove-InstallShield_{DCF0739A-23F1-4E7A-A538-AC4580B28F55} - c:\progra~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe
AddRemove-iTALC - g:\italc\uninstall.exe
AddRemove-LifeGlobe Goldfish Aquarium 2.0_is1 - c:\program files (x86)\Prolific Publishing
AddRemove-McDonald's Dragons - c:\program files (x86)\McDonaldsDragons\uninstall.exe
AddRemove-Metal Slug - Commando 2 - g:\backup files\3\Uninstal.exe
AddRemove-Metin2_is1 - g:\metin2\unins000.exe
AddRemove-Naruto Games - g:\backup files\3\Naruto Games\Uninstal.exe
AddRemove-Prince of Persia Písky času - c:\users\Kříčka\Desktop\Prince of Persia\Prince of Persia The Sands of Time\uninstall.exe
AddRemove-RealPlayer 12.0 - c:\program files (x86)\Common Files\Real\Update_OB\r1puninst.exe
AddRemove-SiteVacuum - c:\program files (x86)\EasySearch\uninst.exe
AddRemove-SmartDraw VP - g:\backup~1\3\SMARTD~1\UNWISE.EXE
AddRemove-Sniper Ghost Warrior_is1 - g:\sniper ghost\Sniper Ghost Warrior\unins000.exe
AddRemove-StepMania - g:\backup files\3\step mania\StepMania\uninstall.exe
AddRemove-Super Mario 3 : Mario Forever - g:\backup files\3\Uninstal.exe
AddRemove-Tarzan - g:\backup~1\3\Tarzan\UNWISE.EXE
AddRemove-Zoo Tycoon 2 - g:\program files (x86)\Microsoft Games\Zoo Tycoon 2\UNINSTAL.EXE
AddRemove-{1D049523-F355-4848-AB92-0CB5AC9409AF}_is1 - c:\gamigo\SnowBoundOnline\unins000.exe
AddRemove-{2933831A-7F63-433A-82EC-4A7882FCFA8B}_is1 - g:\popeláři\unins000.exe
AddRemove-{438BC259-E54C-4392-008E-2808B9C251CA} - g:\backup files\3\EAUninstall.exe
AddRemove-{909F8EBC-EC7F-48FF-0085-475D818F0F31} - g:\need for speed underground 2\EAUninstall.exe
AddRemove-{Anticky Rim}_is1 - c:\program files (x86)\Anticky Rim\unins000.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - c:\program files (x86)\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL
AddRemove-QIP 2010 - g:\qip 2010\unins001.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-05-02 16:20:09
ComboFix-quarantined-files.txt 2011-05-02 14:20
.
Před spuštěním: Volných bajtů: 18 385 203 200
Po spuštění: Volných bajtů: 18 801 549 312
.
- - End Of File - - 9795C39E9C7F8798E135B230545491FC
jinak to vypadá v pořádku