takle to vypada jenze se mi jaksi sekla klávesnice
ComboFix 12-02-06.02 - User 06.02.2012 23:07:17.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2814.1762 [GMT 1:00]
Spuštěný z: c:\users\User\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\User\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\icon.png
c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\install.rdf
c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}\preview.png
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhCore.js
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIContextItem.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIConversionListener.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIConvertMgr.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhICore.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIDOMHook.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIDownloadListener.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIDownloadMgr.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIMediaListMgr.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIMP3Tunes.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIProbe.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIProbeMouseListener.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIProcessor.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIScapMgr.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhISmartNamer.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhISocialShare.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIUtilService.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhIYTInfo.xpt
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhSmartNamer.js
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components\dhYoutubeLinksContextItem.js
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\defaults\preferences\prefs-dwhelper.js
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\chrome.manifest
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\chrome\dwhelper.jar
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\install.rdf
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\csref.cfg
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\addtoblacklist-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\convconf-handler.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\conversion-manager.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\copyurl-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\domhook-service.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\download-manager.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\download-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\downloadconvert-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\dump-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\dwhelper-util-service.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\flashgot-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\license-handler.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\medialink-probe.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\medialist-manager.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\mp3tunes-manager.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\mp3tuneslocker-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\mp3tunesmobile-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\network-probe.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\quickdownload-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\safemode-handler.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\scap-manager.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\scap-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\scap.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\secrethelper-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\socialshare-processor.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\util-service.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\youtube-probe.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\modules\youtubeinfo-service.jsm
c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local\wm.png
c:\windows\system32\drivers\etc\hosts.ics
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-06 do 2012-02-06 )))))))))))))))))))))))))))))))
.
.
2012-02-06 22:13 . 2012-02-06 22:13 -------- d-----w- c:\users\User\AppData\Local\temp
2012-02-06 22:13 . 2012-02-06 22:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-06 19:38 . 2012-02-06 19:38 -------- d-----w- c:\users\User\AppData\Roaming\Yandex
2012-02-06 18:58 . 2012-02-06 18:58 -------- d-----w- c:\program files\trend micro
2012-02-06 18:58 . 2012-02-06 18:58 -------- d-----w- C:\rsit
2012-02-03 12:56 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B6117019-43C3-42A9-99C1-AEA87351477D}\mpengine.dll
2012-01-24 22:01 . 2012-01-24 22:01 -------- d-sh--w- c:\programdata\DSS
2012-01-24 17:57 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\system32\mkl_blueripple.dll
2012-01-23 20:08 . 2012-01-23 20:08 -------- d-----w- c:\programdata\Ubisoft
2012-01-23 19:52 . 2012-01-23 20:07 -------- d-----w- c:\program files\Ubisoft
2012-01-20 19:19 . 2012-01-20 19:19 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-01-20 19:19 . 2012-01-20 19:19 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-01-16 17:39 . 2012-02-02 21:52 -------- d-----w- c:\programdata\Codemasters
2012-01-16 17:36 . 2009-07-13 18:04 839680 ----a-w- c:\windows\system32\mkl_vml_p4.dll
2012-01-16 17:36 . 2009-07-13 18:04 532480 ----a-w- c:\windows\system32\mkl_vml_p3.dll
2012-01-16 17:36 . 2009-07-13 18:04 512000 ----a-w- c:\windows\system32\mkl_vml_def.dll
2012-01-16 17:36 . 2009-07-13 18:04 3485696 ----a-w- c:\windows\system32\mkl_p4.dll
2012-01-16 17:36 . 2009-07-13 18:04 2793472 ----a-w- c:\windows\system32\mkl_p3.dll
2012-01-16 17:36 . 2009-07-13 18:04 2174976 ----a-w- c:\windows\system32\mkl_lapack32.dll
2012-01-16 17:36 . 2009-07-13 18:04 2125824 ----a-w- c:\windows\system32\mkl_lapack64.dll
2012-01-16 17:36 . 2011-03-19 14:16 1417216 ----a-w- c:\windows\system32\rapture3d_oal.dll
2012-01-16 17:36 . 2009-07-13 18:04 2441216 ----a-w- c:\windows\system32\mkl_def.dll
2012-01-16 17:36 . 2009-07-13 18:04 184320 ----a-w- c:\windows\system32\libguide40.dll
2012-01-16 17:36 . 2012-02-03 12:51 -------- d-----w- c:\program files\BRS
2012-01-16 17:35 . 2012-01-16 17:35 -------- d-----w- c:\program files\OpenAL
2012-01-16 17:17 . 2012-02-03 21:54 -------- d-----w- c:\program files\Codemasters
2012-01-13 15:48 . 2012-01-13 15:48 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-01-13 15:48 . 2012-01-13 15:48 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-13 15:48 . 2012-01-13 15:48 369352 ----a-w- c:\windows\system32\drivers\cng.sys
2012-01-13 15:48 . 2012-01-13 15:48 314880 ----a-w- c:\windows\system32\webio.dll
2012-01-13 15:48 . 2012-01-13 15:48 22528 ----a-w- c:\windows\system32\lsass.exe
2012-01-13 15:48 . 2012-01-13 15:48 224768 ----a-w- c:\windows\system32\schannel.dll
2012-01-13 15:48 . 2012-01-13 15:48 22016 ----a-w- c:\windows\system32\secur32.dll
2012-01-13 15:48 . 2012-01-13 15:48 15872 ----a-w- c:\windows\system32\sspisrv.dll
2012-01-13 15:48 . 2012-01-13 15:48 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-01-13 15:48 . 2012-01-13 15:48 1038848 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-13 15:48 . 2012-01-13 15:48 100352 ----a-w- c:\windows\system32\sspicli.dll
2012-01-13 15:47 . 2012-01-13 15:47 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-01-13 15:47 . 2012-01-13 15:47 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-01-13 15:47 . 2012-01-13 15:47 67072 ----a-w- c:\windows\system32\packager.dll
2012-01-11 19:51 . 2012-02-03 12:51 -------- d-----w- c:\program files\Common Files\Java
2012-01-11 19:50 . 2012-01-11 19:50 476904 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2012-01-11 19:50 . 2012-01-11 19:50 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-01-11 19:50 . 2012-02-03 12:51 -------- d-----w- c:\program files\Java
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 23:21 . 2010-12-17 17:13 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-23 20:08 . 2011-03-15 19:34 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-01-23 20:08 . 2011-03-15 19:34 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-01-13 15:48 . 2012-01-13 15:48 224768 ----a-w- c:\windows\system32\schannel.dll
2012-01-13 05:53 . 2011-08-18 16:04 48648 ----a-w- c:\programdata\Microsoft\ehome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-01-13 05:53 . 2011-08-18 16:04 484176 ----a-w- c:\programdata\Microsoft\ehome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-01-03 11:02 . 2011-07-04 12:37 48648 ----a-w- c:\programdata\Microsoft\ehome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-01-03 11:02 . 2011-07-04 12:37 484176 ----a-w- c:\programdata\Microsoft\ehome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-12-26 15:18 . 2011-03-15 19:34 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-12-26 15:18 . 2011-03-15 19:34 138056 ----a-w- c:\users\User\AppData\Roaming\PnkBstrK.sys
2011-12-26 15:17 . 2011-03-15 19:34 189248 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-12-12 18:35 . 2011-12-12 18:35 239168 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-11-24 04:25 . 2011-12-14 18:40 2342912 ----a-w- c:\windows\system32\win32k.sys
2011-11-16 20:21 . 2011-11-16 20:20 2337 ----a-w- c:\users\User\AppData\Local\promo.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-06 102400]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-05-13 9210400]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-03-19 2029640]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-11 800032]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe [2010-12-11 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 azvusb;Virtual USB Hub;c:\windows\system32\DRIVERS\azvusb.sys [2009-08-24 44544]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-04-13 109960]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
R4 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\IObit\Advanced SystemCare 4\ASCService.exe [2011-08-09 328536]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 15672]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-03-19 107256]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-06 172032]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-03-19 731840]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 93312]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-04-06 5430272]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-06 157184]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-12 239168]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2009-08-18 119408]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver;c:\windows\system32\DRIVERS\JME.sys [2010-02-25 98928]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
.
------- Doplňkový sken -------
.
uStart Page = seznam.cz
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 86.61.156.225 84.16.96.2
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\06k21nso.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://
www.seznam.cz/
FF - Ext: Skype Click to Call: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - c:\program files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - user.js: accessibility.typeaheadfind.flashBar - 0
FF - user.js: app.update.lastUpdateTime.addon-background-update-timer - 1322256022
FF - user.js: app.update.lastUpdateTime.background-update-timer - 1322256328
FF - user.js: app.update.lastUpdateTime.blocklist-background-update-timer - 1322256532
FF - user.js: app.update.lastUpdateTime.microsummary-generator-update-timer - 1321715930
FF - user.js: app.update.lastUpdateTime.places-maintenance-timer - 1322255976
FF - user.js: app.update.lastUpdateTime.search-engine-update-timer - 1322256158
FF - user.js: browser.download.dir - c:\\Users\\User\\Desktop
FF - user.js: browser.download.folderList - 0
FF - user.js: browser.download.lastDir - c:\\Users\\User\\Desktop
FF - user.js: browser.download.useDownloadDir - false
FF - user.js: browser.history_expire_days.mirror - 180
FF - user.js: browser.link.open_newwindow - 2
FF - user.js: browser.migration.version - 1
FF - user.js: browser.offline - true
FF - user.js: browser.places.importBookmarksHTML - false
FF - user.js: browser.places.smartBookmarksVersion - 2
FF - user.js: browser.preferences.advanced.selectedTabIndex - 3
FF - user.js: browser.rights.3.shown - true
FF - user.js: browser.search.defaultenginename - iMesh Web Search
FF - user.js: browser.search.order.1 - iMesh Web Search
FF - user.js: browser.search.selectedEngine - Google
FF - user.js: browser.startup.homepage - hxxp://
www.seznam.cz/
FF - user.js: browser.startup.homepage_override.mstone - rv:1.9.2.13
FF - user.js: distribution.euballot.bookmarksProcessed - true
FF - user.js: dwhelper.conv-conf.auto.bc1e2619f37bea59f347c7c0c775df02 - true
FF - user.js: dwhelper.convert-free - true
FF - user.js: dwhelper.first-time - false
FF - user.js: dwhelper.last-media-host-blacklist - pop6.com|redlightcenter.com|dtiserv.com|mp3tunes.com|netflix.com
FF - user.js: dwhelper.last-shared-blacklist - 1321734537949
FF - user.js: dwhelper.last-version - 4.9.5
FF - user.js: dwhelper.mediaweight - 1024
FF - user.js: dwhelper.menu-expiration - 60
FF - user.js: dwhelper.passwords-migrated - true
FF - user.js: dwhelper.safe-mode - false
FF - user.js: dwhelper.smartnamer.last-shared - 1322249071
FF - user.js: dwhelper.social-share -
FF - user.js: dwhelper.social-share.service.buzz.enabled - false
FF - user.js: dwhelper.social-share.service.delicious.enabled - false
FF - user.js: dwhelper.social-share.service.digg.enabled - false
FF - user.js: dwhelper.social-share.service.facebook.enabled - true
FF - user.js: dwhelper.social-share.service.furl.enabled - false
FF - user.js: dwhelper.social-share.service.google.enabled - true
FF - user.js: dwhelper.social-share.service.google_buzz.enabled - false
FF - user.js: dwhelper.social-share.service.linkedin.enabled - false
FF - user.js: dwhelper.social-share.service.myspace.enabled - false
FF - user.js: dwhelper.social-share.service.pingthis.enabled - false
FF - user.js: dwhelper.social-share.service.slashdot.enabled - false
FF - user.js: dwhelper.social-share.service.stumbleupon.enabled - false
FF - user.js: dwhelper.social-share.service.technorati.enabled - false
FF - user.js: dwhelper.social-share.service.twitter.enabled - false
FF - user.js: dwhelper.social-share.service.yahoo.enabled - false
FF - user.js: dwhelper.storagedirectory - c:\\Users\\User\\dwhelper
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar.babTrack - affID=100762
FF - user.js: extensions.BabylonToolbar.bbDpng - 26
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.id - 724f56ca00000000000072f06d944939
FF - user.js: extensions.BabylonToolbar.instlDay - 15303
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.keyWordUrl - hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=724f56ca00000000000072f06d944939&tlver=1.4.35.10&affID=100762
FF - user.js: extensions.BabylonToolbar.lastDP - 26
FF - user.js: extensions.BabylonToolbar.lastVrsnTs - 1.4.35.1023:37
FF - user.js: extensions.BabylonToolbar.mntrFFxVrsn - 3.6
FF - user.js: extensions.BabylonToolbar.newTab - true
FF - user.js: extensions.BabylonToolbar.newTabUrl - hxxp://search.babylon.com/?babsrc=NT_bb
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.propectorlck - 60823296
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.ptch_0717 - true
FF - user.js: extensions.BabylonToolbar.smplGrp - none
FF - user.js: extensions.BabylonToolbar.srcExt - ss
FF - user.js: extensions.BabylonToolbar.srchPrvdr - Search the web (Babylon)
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.vrsn - 1.4.35.10
FF - user.js: extensions.BabylonToolbar.vrsnTs - 1.4.35.1023:37
FF - user.js: extensions.enabledItems - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.5,{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442,
ffxtlbr@babylon.com:1.1.9,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - user.js: extensions.lastAppVersion - 3.6.13
FF - user.js: extensions.skype_toolbar.version - 5.6.0.8442
FF - user.js: extensions.update.notifyUser - false
FF - user.js: icqtoolbar.allowSendURL - false
FF - user.js: icqtoolbar.engineVerified - false
FF - user.js: icqtoolbar.hiddenElements - itb_options
FF - user.js: icqtoolbar.history - facebook
FF - user.js: icqtoolbar.installTime - 1293233358
FF - user.js: icqtoolbar.newtab_state - 1
FF - user.js: icqtoolbar.numberOfSearches - 0
FF - user.js: icqtoolbar.previousFFVersion - 3.6.13
FF - user.js: icqtoolbar.skip_default_search - no
FF - user.js: icqtoolbar.suggestions - false
FF - user.js: icqtoolbar.uninstStatSent - true
FF - user.js: icqtoolbar.uniqueID - 129321979112932198931293233358706
FF - user.js: icqtoolbar.usageStatstTimestamp - 1293233360
FF - user.js: icqtoolbar.xmlEnableSuggestions - false
FF - user.js: icqtoolbar.xmlLanguage - cs
FF - user.js: idle.lastDailyNotification - 1322155226
FF - user.js: intl.charsetmenu.browser.cache - UTF-8, ISO-8859-1, windows-1252, windows-1251, windows-1250
FF - user.js: network.cookie.prefsMigrated - true
FF - user.js: places.last_vacuum - 1319273838
FF - user.js: plugin.disable_full_page_plugin_for_types - application/pdf,application/vnd.adobe.xdp+xml,application/vnd.adobe.xfdf,application/vnd.fdf
FF - user.js: pref.advanced.images.disable_button.view_image - false
FF - user.js: pref.advanced.javascript.disable_button.advanced - false
FF - user.js: pref.browser.homepage.disable_button.current_page - false
FF - user.js: pref.downloads.disable_button.edit_actions - false
FF - user.js: pref.privacy.disable_button.view_passwords - false
FF - user.js: pref.privacy.disable_button.view_passwords_exceptions - false
FF - user.js: print.print_printer - Odeslat do aplikace OneNote 2007
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_bgcolor - false
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_bgimages - false
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_command -
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_downloadfonts - false
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_edge_bottom - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_edge_left - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_edge_right - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_edge_top - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_evenpages - true
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_footercenter -
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_footerleft - &PT
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_footerright - &D
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_headercenter -
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_headerleft - &T
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_headerright - &U
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_in_color - true
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_margin_bottom - 0.5
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_margin_left - 0.5
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_margin_right - 0.5
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_margin_top - 0.5
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_oddpages - true
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_orientation - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_pagedelay - 500
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_paper_data - 9
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_paper_height - 11,00
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_paper_size_type - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_paper_size_unit - 1
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_paper_width - 8,50
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_reversed - false
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_scaling - 1,00
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_shrink_to_fit - true
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_to_file - false
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_to_filename -
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_unwriteable_margin_bottom - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_unwriteable_margin_left - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_unwriteable_margin_right - 0
FF - user.js: print.printer_Odeslat_do_aplikace_OneNote_2007.print_unwriteable_margin_top - 0
FF - user.js: privacy.sanitize.migrateFx3Prefs - true
FF - user.js: privacy.sanitize.timeSpan - 0
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: urlclassifier.keyupdatetime.hxxps://sb-ssl.google.com/safebrowsing/newkey - 1324841012
FF - user.js: xpinstall.whitelist.add -
FF - user.js: xpinstall.whitelist.add.36 -
FF - user.js: browser.blink_allowed - True
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU --------------------
.
[HKEY_USERS\S-1-5-21-704598679-1275456770-3634456987-1000\Software\SecuROM\License information*]
"datasecu"=hex:a3,57,70,3a,0f,68,64,35,76,f9,a2,73,b9,a2,f2,cc,e1,db,f3,df,f5,
5c,1f,42,5f,2c,54,92,64,52,74,84,ec,13,96,af,aa,76,b4,2c,f0,f3,00,84,8a,ae,\
"rkeysecu"=hex:0f,1d,a2,f6,80,be,22,8e,b5,6e,6b,ea,39,56,90,23
.
Celkový čas: 2012-02-06 23:15:26
ComboFix-quarantined-files.txt 2012-02-06 22:15
ComboFix2.txt 2012-02-06 20:42
.
Před spuštěním: Volných bajtů: 238 553 268 224
Po spuštění: Volných bajtů: 238 491 082 752
.
- - End Of File - - 41BD37BA9A13C91148D076F5AF17520A
)