Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu logu.

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#16 Příspěvek od suleyman »

Zdravim,

opat sa mi nieco deje s PC.
Symantec antivirus vyhlasuje nespocetne mnozstvo infikovanych suborov, ktore priebezne scanuje a "vraj" aj maze. Subory neustale pribudaju.
Ide o subory z umiestnenia C:Windows/system32/drivers/

co s tym?

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosim o kontrolu logu.

#17 Příspěvek od JaRon »

prescanuj a vycisti PC s AVPTool - ak by problem pretrval, vloz log CF
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#18 Příspěvek od suleyman »

Kde najdem AVPTool?

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosim o kontrolu logu.

#19 Příspěvek od JaRon »

FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#20 Příspěvek od suleyman »

Subor neexistuje.
Ked kliknem na odkaz v linku pre stiahnutie AVPTool tak stranka na stiahnute neexistuje.
Viem to stiahnut od inakial?

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosim o kontrolu logu.

#21 Příspěvek od JaRon »

ako nahradu pouzi CureIT - uplna kontrola
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#22 Příspěvek od suleyman »

Expresna kontola CureIT trvala 2 hodiny a 10 minut - vysledok ziadny virus.
Teraz som spustil uplny scan - vysledok dam vediet.

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#23 Příspěvek od suleyman »

Uplny scan ide neskutocne pomaly.
4% bezia cca 3 hodiny.Pri tejto rychlosti to bude trvat 75 hodin - neskusime nieco ine?

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#24 Příspěvek od suleyman »

nejde to...

CureIT sa zasekol,
skusil som MBAM - tiez sa zasekol po 20minutach a 22tisic suboroch z celkovych cca 125 tisic.
robil som MBAM v nudzovom rezime a nasiel 1 infikovany subor, ktory som vymazal.

LOG z MBAM:
Malwarebytes' Anti-Malware 1.44
Database version: 3783
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 6.0.2900.5512

27. 2. 2010 0:05:13
mbam-log-2010-02-27 (00-05-05).txt

Scan type: Quick Scan
Objects scanned: 123945
Time elapsed: 7 minute(s), 32 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\jlesko\Data aplikací\avdrn.dat (Malware.Trace) -> No action taken.

---------------
po restarte do normalneho rezimu sa windows spusti ale neda sa vobec nic spustit nic nereaguje.

Urobil som preto logy z RSIT a COMBOFIX v nudzovom rezime.

log z RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2010-02-27 00:52:30
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 5 GB (28%) free of 17 GB
Total RAM: 2030 MB (88% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pre aplikáciu Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-24 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-24 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-24 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"=Alaunch []
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-05-20 98304]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-05-20 532480]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-02-11 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-02-11 118784]
"EPM-DM"=c:\acer\epm\epm-dm.exe [2004-07-14 151552]
"ePowerManagement"=C:\Acer\ePM\ePM.exe [2004-09-01 2876416]
"LManager"=C:\Program Files\Launch Manager\QtZgAcer.EXE [2004-07-30 319488]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-03-24 53408]
"vptray"=C:\PROGRA~1\SYMANT~1\VPTray.exe [2006-06-15 124656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-02-11 339968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
C:\WINDOWS\system32\NavLogon.dll [2006-06-15 43760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Programy\totalcmd\TOTALCMD.EXE"="D:\Programy\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Belkin Storage Manager\StorageManager.exe"="C:\Program Files\Belkin Storage Manager\StorageManager.exe:*:Enabled:Belkin Storage Manager"
"D:\Programy\VLC media player\VLC\vlc.exe"="D:\Programy\VLC media player\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-02-27 00:52:30 ----D---- C:\rsit
2010-02-26 23:55:55 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Malwarebytes
2010-02-26 12:44:55 ----A---- C:\WINDOWS\system32\fjhdyfhsn.bat
2010-02-24 10:36:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-02-24 10:36:48 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-02-23 21:28:59 ----D---- C:\WINDOWS\temp
2010-02-23 21:24:57 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Happy Foto
2010-02-23 21:19:56 ----ASH---- C:\Documents and Settings\Administrator\Data aplikací\desktop.ini
2010-02-23 21:19:53 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2010-02-23 21:19:53 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Macromedia
2010-02-23 21:19:53 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Identities
2010-02-23 19:07:15 ----A---- C:\Boot.bak
2010-02-23 19:06:52 ----RASHD---- C:\cmdcons
2010-02-23 18:45:16 ----D---- C:\FOUND.002
2010-02-23 18:39:54 ----A---- C:\WINDOWS\zip.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\SWSC.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\SWREG.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\sed.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\PEV.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\NIRCMD.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\MBR.exe
2010-02-23 18:39:54 ----A---- C:\WINDOWS\grep.exe
2010-02-23 18:39:42 ----D---- C:\WINDOWS\ERDNT
2010-02-23 18:37:21 ----D---- C:\Qoobox
2010-02-01 12:10:44 ----A---- C:\WINDOWS\ModemLog_LGE Virtual Modem.txt
2010-01-31 21:18:11 ----A---- C:\WINDOWS\system32\NMSDVDXU.dll
2010-01-31 20:59:48 ----D---- C:\Program Files\DIFX
2010-01-31 20:59:46 ----D---- C:\WINDOWS\system32\DRVSTORE
2010-01-31 20:57:30 ----D---- C:\Program Files\LG Electronics
2010-01-31 20:56:37 ----D---- C:\GD510
2010-01-31 20:55:48 ----A---- C:\WINDOWS\system32\msxml4a.dll
2010-01-31 20:55:48 ----A---- C:\WINDOWS\system32\lgAxconfig.ini
2010-01-31 20:55:48 ----A---- C:\WINDOWS\system32\CommonDL.dll
2010-01-31 20:55:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\LGMOBILEAX

======List of files/folders modified in the last 1 months======

2010-02-27 00:48:02 ----A---- C:\WINDOWS\ntbtlog.txt
2010-02-27 00:28:34 ----A---- C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem with SmartCP.txt
2010-02-26 23:50:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-26 16:46:12 ----A---- C:\WINDOWS\WINCMD.INI
2010-02-24 07:50:10 ----A---- C:\WINDOWS\System.ini
2010-02-23 19:07:18 ----RASH---- C:\boot.ini
2010-02-14 15:19:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-08 04:06:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 SMBHC;Microsoft SM Bus Host Controller Driver; C:\WINDOWS\system32\DRIVERS\SMBHC.sys [2001-08-17 6784]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2003-09-27 44032]
R3 DKbFltr;Dritek HotKey Keyboard Filter Driver; C:\WINDOWS\System32\Drivers\DKbFltr.sys [2002-11-20 17983]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IPN2220;INPROCOMM IPN2220 Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\i2220ntx.sys [2005-02-24 156672]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\lgbtbus.sys [2009-09-29 10496]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2004-09-30 6912]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-05-20 184768]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
S1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
S1 SAVRT;SAVRT; \??\C:\Program Files\Symantec AntiVirus\savrt.sys []
S1 SAVRTPEL;SAVRTPEL; \??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys []
S1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
S1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2006-01-24 195776]
S2 EpmPsd;Acer EPM Power Scheme Driver; \??\C:\WINDOWS\system32\drivers\epm-psd.sys []
S2 EpmShd;Acer EPM System Hardware Driver; \??\C:\WINDOWS\system32\drivers\epm-shd.sys []
S2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
S2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2003-04-10 11043]
S2 osanbm;osanbm; C:\WINDOWS\system32\drivers\osanbm.sys [2004-06-01 4054]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-05-15 745984]
S3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2003-05-23 175360]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-01-24 530861]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-10-10 30459]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-27 868042]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-10-15 149123]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2006-11-28 47907]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-01-24 67960]
S3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camcaud.sys [2004-04-30 292352]
S3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camchal.sys [2004-04-30 274688]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2004-03-11 1041536]
S3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2004-03-11 199552]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-02-11 681469]
S3 LgBttPort;LGE Bluetooth TransPort; C:\WINDOWS\system32\DRIVERS\lgbtport.sys [2009-09-29 12160]
S3 LGVMODEM;LGE Virtual Modem; C:\WINDOWS\system32\DRIVERS\lgvmodem.sys [2009-09-29 12928]
S3 NAVENG;NAVENG; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20100226.006\naveng.sys []
S3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20100226.006\navex15.sys []
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NSCIRDA;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-04-13 28672]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 SMBBATT;Microsoft Smart Battery Driver; C:\WINDOWS\system32\DRIVERS\SMBBATT.sys [2008-04-13 16000]
S3 SymEvent;SymEvent; \??\C:\Program Files\Symantec\SYMEVENT.SYS []
S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2006-01-24 24768]
S3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2004-05-26 67584]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-19 13056]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-19 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-19 24832]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 w29n51;Intel(R) PRO/Wireless 2915ABG Network Connection Driver for Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-08-20 3210496]
S3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2004-03-11 682624]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 anbmService;Notebook Manager Service; C:\Acer\eManager\anbmServ.exe [2004-08-16 1287168]
S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-05-15 376832]
S2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [2006-03-24 192160]
S2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [2006-03-24 169632]
S2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-06-15 31472]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S2 gupdate1c989ef16e5c6a0;Google Update Service (gupdate1c989ef16e5c6a0); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-08 133104]
S2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-24 152984]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
S2 SPBBCSvc;Symantec SPBBCSvc; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [2006-04-11 1160848]
S2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-06-15 1805552]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-27 266295]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-02-23 2045632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-06-15 115952]
S3 SNDSrvc;Symantec Network Drivers Service; C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [2006-01-24 214720]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------


log z COMBOFIX:
ComboFix 10-02-26.01 - Administrator . 02. 2010 0:57.4.1 - FAT32x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2030.1781 [GMT 1:00]
Spuštěný z: d:\antivirove programy\ComboFix.exe
AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-01-27 do 2010-02-27 )))))))))))))))))))))))))))))))
.

2010-02-26 23:52 . 2010-02-26 23:52 -------- d-----w- C:\rsit
2010-02-26 16:31 . 2010-02-26 16:31 -------- d-----w- c:\documents and settings\jlesko\DoctorWeb
2010-02-26 11:44 . 2010-02-26 11:44 116 ----a-w- c:\windows\system32\fjhdyfhsn.bat
2010-02-24 09:36 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-24 09:36 . 2010-02-24 09:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-24 09:36 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-23 17:45 . 2010-02-23 17:45 -------- d-----w- C:\FOUND.002
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\drivers\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\drivers\i2omgmt.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\dllcache\i2omgmt.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\drivers\Changer.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\dllcache\changer.sys
2010-01-31 20:18 . 2009-10-19 20:49 1164728 ----a-w- c:\windows\system32\NMSDVDXU.dll
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\program files\DIFX
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\windows\system32\DRVSTORE
2010-01-31 19:59 . 2009-05-12 14:53 16896 ----a-w- c:\windows\system32\drivers\FlashUsb.sys
2010-01-31 19:57 . 2010-01-31 19:57 -------- d-----w- c:\program files\LG Electronics
2010-01-31 19:56 . 2010-01-31 19:56 -------- d-----w- C:\GD510
2010-01-31 19:55 . 2006-05-04 07:33 53248 ----a-w- c:\windows\system32\CommonDL.dll
2010-01-31 19:55 . 2005-10-04 00:39 44544 ----a-w- c:\windows\system32\msxml4a.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-08 03:06 . 1979-12-31 23:00 441782 ----a-w- c:\windows\system32\perfh005.dat
2010-02-08 03:06 . 1979-12-31 23:00 84052 ----a-w- c:\windows\system32\perfc005.dat
2009-12-31 00:52 . 2009-12-31 00:52 -------- d-----w- c:\program files\Common Files\Real
.

((((((((((((((((((((((((((((( SnapShot@2010-02-23_20.27.37 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-01-20 08:24 . 2010-02-26 12:43 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2009-01-20 08:24 . 2010-02-22 23:57 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2009-01-20 08:24 . 2010-02-26 12:43 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2009-01-20 08:24 . 2010-02-22 23:57 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2010-02-26 11:44 . 2010-02-26 12:43 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2009-01-20 08:24 . 2010-02-22 23:57 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2009-01-23 18:51 . 2009-01-23 18:51 51712 c:\windows\Installer\64c44b.msi
+ 2010-02-25 03:36 . 2010-02-25 03:36 22528 c:\windows\Installer\3c5b3ff.msi
+ 2008-07-29 20:07 . 2008-07-29 20:07 23040 c:\windows\Installer\26ff60c.msp
+ 2009-10-17 23:58 . 2009-10-17 23:58 88576 c:\windows\Installer\25e6831.msi
+ 2009-10-18 00:03 . 2009-10-18 00:03 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2009-01-24 20:28 . 2009-01-24 20:28 562176 c:\windows\Installer\d657a6.msi
+ 2004-09-30 10:58 . 2004-09-30 10:58 954880 c:\windows\Installer\b8e7.msi
+ 2004-09-30 10:44 . 2004-09-30 10:44 470016 c:\windows\Installer\a43a.msi
+ 2004-09-30 10:41 . 2004-09-30 10:41 265216 c:\windows\Installer\a432.msi
+ 2009-01-21 20:49 . 2009-01-21 20:49 240640 c:\windows\Installer\8f0d0f.msi
+ 2009-01-21 20:49 . 2009-01-21 20:49 322048 c:\windows\Installer\8f0d08.msi
+ 2009-01-21 20:37 . 2009-01-21 20:37 291328 c:\windows\Installer\8326dd.msi
+ 2009-01-21 20:37 . 2009-01-21 20:37 121344 c:\windows\Installer\8326d1.msi
+ 2009-01-21 20:36 . 2009-01-21 20:36 477696 c:\windows\Installer\8326ca.msi
+ 2009-01-21 20:36 . 2009-01-21 20:36 121344 c:\windows\Installer\8326be.msi
+ 2009-01-21 20:36 . 2009-01-21 20:36 121344 c:\windows\Installer\8326b2.msi
+ 2009-01-21 20:35 . 2009-01-21 20:35 609280 c:\windows\Installer\7d8859.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 304128 c:\windows\Installer\7d8768.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 304128 c:\windows\Installer\7d8760.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 310272 c:\windows\Installer\7d8758.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 390144 c:\windows\Installer\7d8750.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 314368 c:\windows\Installer\7d8749.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 304128 c:\windows\Installer\7d8742.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 314368 c:\windows\Installer\7d873a.msi
+ 2009-01-21 20:33 . 2009-01-21 20:33 303104 c:\windows\Installer\7d8733.msi
+ 2009-01-21 20:31 . 2009-01-21 20:31 479232 c:\windows\Installer\7d870b.msi
+ 2009-01-21 20:31 . 2009-01-21 20:31 121344 c:\windows\Installer\7d86ff.msi
+ 2009-01-21 20:31 . 2009-01-21 20:31 256512 c:\windows\Installer\7d86f8.msi
+ 2009-01-24 13:07 . 2009-01-24 13:07 470528 c:\windows\Installer\7b63fb.msi
+ 2009-01-21 20:29 . 2009-01-21 20:29 344064 c:\windows\Installer\7a0150.msi
+ 2009-01-21 20:29 . 2009-01-21 20:29 338944 c:\windows\Installer\7a0149.msi
+ 2009-01-21 20:29 . 2009-01-21 20:29 557056 c:\windows\Installer\7a0142.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 325632 c:\windows\Installer\7a0137.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 316416 c:\windows\Installer\7a0130.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 467456 c:\windows\Installer\7a0129.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 488448 c:\windows\Installer\7a0121.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 537088 c:\windows\Installer\7a0119.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 121344 c:\windows\Installer\7a0101.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 489472 c:\windows\Installer\7a00fa.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 667136 c:\windows\Installer\7a00f2.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 492032 c:\windows\Installer\7a00ea.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 121344 c:\windows\Installer\7a00e2.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 183296 c:\windows\Installer\7a00d8.msi
+ 2009-01-21 20:26 . 2009-01-21 20:27 425984 c:\windows\Installer\7a00cc.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 437248 c:\windows\Installer\7a00c5.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 202240 c:\windows\Installer\7a00bd.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 795136 c:\windows\Installer\7a00b6.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 543232 c:\windows\Installer\7a00af.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 637952 c:\windows\Installer\7a00a7.msi
+ 2009-01-21 20:26 . 2009-01-21 20:26 334848 c:\windows\Installer\7a00a0.msi
+ 2009-01-22 10:50 . 2009-01-22 10:50 432640 c:\windows\Installer\60fe6b.msi
+ 2009-11-28 12:00 . 2009-11-28 12:00 429568 c:\windows\Installer\5a713.msi
+ 2010-01-31 20:19 . 2010-01-31 20:19 518656 c:\windows\Installer\2b97e5d.msi
+ 2010-01-31 20:00 . 2010-01-31 20:00 418304 c:\windows\Installer\2a858d0.msi
+ 2008-12-13 08:58 . 2008-12-13 08:58 754688 c:\windows\Installer\271e139.msp
+ 2009-10-18 00:03 . 2009-10-18 00:04 648192 c:\windows\Installer\271e110.msi
+ 2008-07-29 20:23 . 2008-07-29 20:23 250880 c:\windows\Installer\26ff615.msp
+ 2008-07-29 20:28 . 2008-07-29 20:28 278016 c:\windows\Installer\26ff613.msp
+ 2008-07-29 18:40 . 2008-07-29 18:40 291840 c:\windows\Installer\26ff611.msp
+ 2009-10-18 00:02 . 2009-10-18 00:02 137728 c:\windows\Installer\26ff60b.msi
+ 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\25e6836.msp
+ 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\25e6834.msp
+ 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\25e6833.msp
+ 2009-02-07 19:48 . 2009-02-07 19:49 483328 c:\windows\Installer\1eda7f4.msi
+ 2009-02-11 18:40 . 2009-02-11 18:40 532992 c:\windows\Installer\1484455.msi
+ 1979-12-31 23:00 . 2004-08-18 19:00 1356800 c:\windows\system32\webfldrs.msi
+ 2009-01-21 17:39 . 2004-08-18 19:00 1356800 c:\windows\ServicePackFiles\i386\webfldrs.msi
+ 2009-01-24 21:17 . 2009-01-24 21:17 4308480 c:\windows\Installer\f3780e.msi
+ 2009-02-11 17:21 . 2009-02-11 17:21 3700736 c:\windows\Installer\f2deb0.msi
+ 2009-11-20 14:00 . 2009-11-20 14:00 5521408 c:\windows\Installer\b67a0c.msp
+ 2004-09-30 10:49 . 2004-09-30 10:49 4011520 c:\windows\Installer\a44c.msi
+ 2009-01-21 20:49 . 2009-01-21 20:49 1939968 c:\windows\Installer\8f0d00.msi
+ 2009-10-22 11:28 . 2009-10-22 11:28 5521408 c:\windows\Installer\8acc6.msp
+ 2009-01-21 20:36 . 2009-01-21 20:36 1152512 c:\windows\Installer\8326ab.msi
+ 2009-01-21 20:35 . 2009-01-21 20:35 4443648 c:\windows\Installer\7d876f.msi
+ 2009-01-21 20:32 . 2009-01-21 20:32 1795584 c:\windows\Installer\7d872a.msi
+ 2009-01-21 20:30 . 2009-01-21 20:30 3443712 c:\windows\Installer\7d86f1.msi
+ 2009-01-21 20:28 . 2009-01-21 20:28 3155456 c:\windows\Installer\7a0111.msi
+ 2009-01-21 20:27 . 2009-01-21 20:27 1241600 c:\windows\Installer\7a00db.msi
+ 2009-01-20 08:49 . 2009-01-20 08:49 5806592 c:\windows\Installer\6f50c.msi
+ 2009-01-20 08:40 . 2009-01-20 08:40 6427136 c:\windows\Installer\6f502.msi
+ 2008-10-05 03:12 . 2008-10-05 03:12 4784128 c:\windows\Installer\64c453.msp
+ 2009-01-21 19:20 . 2009-01-21 19:20 2298880 c:\windows\Installer\3da8d2.msi
+ 2010-01-31 20:33 . 2010-01-31 20:33 1126912 c:\windows\Installer\2c60cab.msi
+ 2008-12-13 08:57 . 2008-12-13 08:57 8397824 c:\windows\Installer\271e120.msp
+ 2008-07-29 18:26 . 2008-07-29 18:26 1043456 c:\windows\Installer\26ff614.msp
+ 2008-07-29 19:37 . 2008-07-29 19:37 2679808 c:\windows\Installer\26ff612.msp
+ 2008-07-29 20:15 . 2008-07-29 20:15 3697664 c:\windows\Installer\26ff610.msp
+ 2008-07-29 18:34 . 2008-07-29 18:34 1448448 c:\windows\Installer\26ff60f.msp
+ 2008-07-29 19:22 . 2008-07-29 19:22 4137984 c:\windows\Installer\26ff60e.msp
+ 2008-07-29 18:18 . 2008-07-29 18:18 3376640 c:\windows\Installer\26ff60d.msp
+ 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\25e683a.msp
+ 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\25e6839.msp
+ 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\25e6838.msp
+ 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\25e6837.msp
+ 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\25e6835.msp
+ 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\25e6832.msp
+ 2010-02-04 11:42 . 2010-02-04 11:42 1262080 c:\windows\Installer\235b0c.msi
+ 2008-11-05 13:25 . 2008-11-05 13:25 5518336 c:\windows\Installer\1a0d5bf.msp
+ 2005-10-26 13:59 . 2005-10-26 13:59 2883072 c:\windows\Installer\1a0d5a7.msp
+ 2009-09-21 15:53 . 2009-09-21 15:53 5518848 c:\windows\Installer\16507a0.msp
+ 2009-01-24 21:57 . 2009-01-24 21:57 2351104 c:\windows\Installer\12842cb.msi
+ 2009-02-04 21:05 . 2009-02-04 21:05 5248512 c:\windows\Installer\11f50bf.msi
+ 2004-09-30 10:53 . 2004-09-30 10:53 5590016 c:\windows\Downloaded Installations\{68A3EB9A-955F-4203-B451-C0D2336352D9}\Acer eManager for Notebook.msi
+ 2004-09-30 10:44 . 2003-05-19 20:36 2250240 c:\windows\Cache\Adobe Reader 6\Adobe Reader 6.0.msi
+ 2009-08-10 20:08 . 2009-08-10 20:08 11315712 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp
+ 2004-09-30 10:49 . 2004-09-30 10:49 10564608 c:\windows\Installer\a443.msi
+ 2009-01-22 10:50 . 2009-01-22 10:50 19210240 c:\windows\Installer\60feb6.msp
+ 2008-12-13 09:21 . 2008-12-13 09:21 10473472 c:\windows\Installer\271e12c.msp
+ 2009-01-23 10:36 . 2009-01-23 10:36 15256576 c:\windows\Installer\1f4a1f.msp
+ 2005-09-19 09:03 . 2005-09-19 09:03 78551040 c:\windows\Installer\1a0d67e.msp
+ 2009-10-17 00:55 . 2009-10-17 00:55 15705600 c:\windows\Installer\16507bf.msp
+ 2009-08-10 13:09 . 2009-08-10 13:09 17254912 c:\windows\Installer\16507b8.msp
+ 2010-01-26 20:24 . 2010-01-26 20:24 15710720 c:\windows\Installer\158a407.msp
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-20 98304]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-20 532480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-02-11 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-02-11 118784]
"EPM-DM"="c:\acer\epm\epm-dm.exe" [2004-07-14 151552]
"ePowerManagement"="c:\acer\ePM\ePM.exe" [2004-09-01 2876416]
"LManager"="c:\program files\Launch Manager\QtZgAcer.EXE" [2004-07-30 319488]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2006-03-24 53408]
"vptray"="c:\progra~1\SYMANT~1\VPTray.exe" [2006-06-15 124656]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\jlesko\Nabˇdka Start\Programy\Po spuçtŘnˇ\
winesm32.exe [2008-4-14 29184]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Programy\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Belkin Storage Manager\\StorageManager.exe"=
"d:\\Programy\\VLC media player\\VLC\\vlc.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 SMBHC;Microsoft SM Bus Host Controller Driver;c:\windows\system32\drivers\smbhc.sys [30. 9. 2004 11:29 6784]
R3 IPN2220;INPROCOMM IPN2220 Wireless LAN Card Driver;c:\windows\system32\drivers\i2220ntx.sys [1. 1. 1980 156672]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\drivers\lgbtbus.sys [29. 9. 2009 8:11 10496]
S2 gupdate1c989ef16e5c6a0;Google Update Service (gupdate1c989ef16e5c6a0);c:\program files\Google\Update\GoogleUpdate.exe [8. 2. 2009 14:13 133104]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys [20. 1. 2009 21:22 102448]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\drivers\lgbtport.sys [29. 9. 2009 8:11 12160]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\drivers\lgvmodem.sys [29. 9. 2009 8:11 12928]
S3 SavRoam;SAVRoam;c:\program files\Symantec AntiVirus\SavRoam.exe [15. 6. 2006 1:40 115952]
S3 SMBBATT;Microsoft Smart Battery Driver;c:\windows\system32\drivers\smbbatt.sys [30. 9. 2004 11:30 16000]
.
Obsah adresáře 'Naplánované úlohy'

2010-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]

2010-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://global.acer.com
FF - ProfilePath -

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-HijackThis - f:\acerdata (d)\Programy\Antivir+HIJACKTHIS\HIJACKTHIS_newer\HijackThis.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-27 01:02
Windows 5.1.2600 Service Pack 3 FAT NTAPI

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2010-02-27 01:03:20
ComboFix-quarantined-files.txt 2010-02-27 00:03

Před spuštěním: 5 037 998 080
Po spuštění: 5 085 102 080

- - End Of File - - 35AD1BB8BCF4E62C37367C3FAE43EFF3

co dalej?

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#25 Příspěvek od suleyman »

chlapi pomozte, som bez PC.
WINDOWS sa nastartuje a to je vsetko - mozem klikat a nic absolutne ziadna reakcia.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosim o kontrolu logu.

#26 Příspěvek od JaRon »

neviem ako sa Ti to podarilo. si zasa zavireny cimsi podobnym ,,,
pouzi CFScript - radsej v nudzovom rezime:

Kód: Vybrat vše

File::
c:\windows\system32\fjhdyfhsn.bat
c:\documents and settings\jlesko\Nabˇdka Start\Programy\Po spuçtŘnˇ\winesm32.exe 

FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#27 Příspěvek od suleyman »

ono to je stale ten isty problem zo vcera - CureIT neprebehol a takto to dopadlo.

OK idem robit CFScript

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#28 Příspěvek od suleyman »

CF urobene, prikladam log:

ComboFix 10-02-27.03 - Administrator . 02. 2010 19:02:57.5.1 - FAT32x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2030.1778 [GMT 1:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Administrator\Plocha\CFScript.txt.txt
AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}

FILE ::
"c:\documents and settings\jlesko\Nabˇdka Start\Programy\Po spuçtŘnˇ\winesm32.exe"
"c:\windows\system32\fjhdyfhsn.bat"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\fjhdyfhsn.bat

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-27 do 2010-02-27 )))))))))))))))))))))))))))))))
.

2010-02-27 17:48 . 2010-02-27 17:48 -------- d-----w- C:\FOUND.003
2010-02-26 23:52 . 2010-02-26 23:52 -------- d-----w- C:\rsit
2010-02-26 16:31 . 2010-02-26 16:31 -------- d-----w- c:\documents and settings\jlesko\DoctorWeb
2010-02-24 09:36 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-24 09:36 . 2010-02-24 09:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-24 09:36 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-23 17:45 . 2010-02-23 17:45 -------- d-----w- C:\FOUND.002
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\drivers\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\drivers\i2omgmt.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\dllcache\i2omgmt.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\drivers\Changer.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\dllcache\changer.sys
2010-01-31 20:18 . 2009-10-19 20:49 1164728 ----a-w- c:\windows\system32\NMSDVDXU.dll
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\program files\DIFX
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\windows\system32\DRVSTORE
2010-01-31 19:59 . 2009-05-12 14:53 16896 ----a-w- c:\windows\system32\drivers\FlashUsb.sys
2010-01-31 19:57 . 2010-01-31 19:57 -------- d-----w- c:\program files\LG Electronics
2010-01-31 19:56 . 2010-01-31 19:56 -------- d-----w- C:\GD510
2010-01-31 19:55 . 2006-05-04 07:33 53248 ----a-w- c:\windows\system32\CommonDL.dll
2010-01-31 19:55 . 2005-10-04 00:39 44544 ----a-w- c:\windows\system32\msxml4a.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-08 03:06 . 1979-12-31 23:00 441782 ----a-w- c:\windows\system32\perfh005.dat
2010-02-08 03:06 . 1979-12-31 23:00 84052 ----a-w- c:\windows\system32\perfc005.dat
2009-12-31 00:52 . 2009-12-31 00:52 -------- d-----w- c:\program files\Common Files\Real
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-20 98304]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-20 532480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-02-11 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-02-11 118784]
"EPM-DM"="c:\acer\epm\epm-dm.exe" [2004-07-14 151552]
"ePowerManagement"="c:\acer\ePM\ePM.exe" [2004-09-01 2876416]
"LManager"="c:\program files\Launch Manager\QtZgAcer.EXE" [2004-07-30 319488]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2006-03-24 53408]
"vptray"="c:\progra~1\SYMANT~1\VPTray.exe" [2006-06-15 124656]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\jlesko\Nabˇdka Start\Programy\Po spuçtŘnˇ\
winesm32.exe [2008-4-14 29184]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Programy\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Belkin Storage Manager\\StorageManager.exe"=
"d:\\Programy\\VLC media player\\VLC\\vlc.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 SMBHC;Microsoft SM Bus Host Controller Driver;c:\windows\system32\drivers\smbhc.sys [30. 9. 2004 11:29 6784]
R3 IPN2220;INPROCOMM IPN2220 Wireless LAN Card Driver;c:\windows\system32\drivers\i2220ntx.sys [1. 1. 1980 156672]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\drivers\lgbtbus.sys [29. 9. 2009 8:11 10496]
S2 gupdate1c989ef16e5c6a0;Google Update Service (gupdate1c989ef16e5c6a0);c:\program files\Google\Update\GoogleUpdate.exe [8. 2. 2009 14:13 133104]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys [20. 1. 2009 21:22 102448]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\drivers\lgbtport.sys [29. 9. 2009 8:11 12160]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\drivers\lgvmodem.sys [29. 9. 2009 8:11 12928]
S3 SavRoam;SAVRoam;c:\program files\Symantec AntiVirus\SavRoam.exe [15. 6. 2006 1:40 115952]
S3 SMBBATT;Microsoft Smart Battery Driver;c:\windows\system32\drivers\smbbatt.sys [30. 9. 2004 11:30 16000]
.
Obsah adresáře 'Naplánované úlohy'

2010-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]

2010-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://global.acer.com
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\me5wyag6.default\
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.17\npGoogleOneClick8.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin7.dll
FF - plugin: d:\programy\VLC media player\VLC\npvlc.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-27 19:07
Windows 5.1.2600 Service Pack 3 FAT NTAPI

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2010-02-27 19:08:36
ComboFix-quarantined-files.txt 2010-02-27 18:08
ComboFix2.txt 2010-02-27 00:03

Před spuštěním: 5 052 579 840
Po spuštění: 5 018 861 568

- - End Of File - - 463FEA96F92484C27ED2EF48251D209C

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosim o kontrolu logu.

#29 Příspěvek od JaRon »

zda sa, ze bol zmazany iba jeden ,,, zopakuj:

Kód: Vybrat vše

File::
c:\documents and settings\jlesko\Nabídka Start\Programy\Po spuštění\winesm32.exe

FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

suleyman
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 28 úno 2006 00:57

Re: Prosim o kontrolu logu.

#30 Příspěvek od suleyman »

CF po druhy krat:

ComboFix 10-02-27.03 - Administrator . 02. 2010 19:54:25.6.1 - FAT32x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2030.1756 [GMT 1:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Administrator\Plocha\CFScript.txt
AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}

FILE ::
"c:\documents and settings\jlesko\Nabídka Start\Programy\Po spuštění\winesm32.exe"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\jlesko\Nabídka Start\Programy\Po spuštění\winesm32.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-27 do 2010-02-27 )))))))))))))))))))))))))))))))
.

2010-02-27 17:48 . 2010-02-27 17:48 -------- d-----w- C:\FOUND.003
2010-02-26 23:52 . 2010-02-26 23:52 -------- d-----w- C:\rsit
2010-02-26 16:31 . 2010-02-26 16:31 -------- d-----w- c:\documents and settings\jlesko\DoctorWeb
2010-02-24 09:36 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-24 09:36 . 2010-02-24 09:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-24 09:36 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-23 17:45 . 2010-02-23 17:45 -------- d-----w- C:\FOUND.002
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\drivers\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 34688 ----a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\drivers\i2omgmt.sys
2010-02-22 23:58 . 2004-08-18 19:00 8192 ----a-w- c:\windows\system32\dllcache\i2omgmt.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\drivers\Changer.sys
2010-02-22 23:58 . 2008-04-13 18:40 8192 ----a-w- c:\windows\system32\dllcache\changer.sys
2010-01-31 20:18 . 2009-10-19 20:49 1164728 ----a-w- c:\windows\system32\NMSDVDXU.dll
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\program files\DIFX
2010-01-31 19:59 . 2010-01-31 19:59 -------- d-----w- c:\windows\system32\DRVSTORE
2010-01-31 19:59 . 2009-05-12 14:53 16896 ----a-w- c:\windows\system32\drivers\FlashUsb.sys
2010-01-31 19:57 . 2010-01-31 19:57 -------- d-----w- c:\program files\LG Electronics
2010-01-31 19:56 . 2010-01-31 19:56 -------- d-----w- C:\GD510
2010-01-31 19:55 . 2006-05-04 07:33 53248 ----a-w- c:\windows\system32\CommonDL.dll
2010-01-31 19:55 . 2005-10-04 00:39 44544 ----a-w- c:\windows\system32\msxml4a.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-08 03:06 . 1979-12-31 23:00 441782 ----a-w- c:\windows\system32\perfh005.dat
2010-02-08 03:06 . 1979-12-31 23:00 84052 ----a-w- c:\windows\system32\perfc005.dat
2009-12-31 00:52 . 2009-12-31 00:52 -------- d-----w- c:\program files\Common Files\Real
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-20 98304]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-20 532480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-02-11 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-02-11 118784]
"EPM-DM"="c:\acer\epm\epm-dm.exe" [2004-07-14 151552]
"ePowerManagement"="c:\acer\ePM\ePM.exe" [2004-09-01 2876416]
"LManager"="c:\program files\Launch Manager\QtZgAcer.EXE" [2004-07-30 319488]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2006-03-24 53408]
"vptray"="c:\progra~1\SYMANT~1\VPTray.exe" [2006-06-15 124656]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Programy\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Belkin Storage Manager\\StorageManager.exe"=
"d:\\Programy\\VLC media player\\VLC\\vlc.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 SMBHC;Microsoft SM Bus Host Controller Driver;c:\windows\system32\drivers\smbhc.sys [30. 9. 2004 11:29 6784]
R3 IPN2220;INPROCOMM IPN2220 Wireless LAN Card Driver;c:\windows\system32\drivers\i2220ntx.sys [1. 1. 1980 156672]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\drivers\lgbtbus.sys [29. 9. 2009 8:11 10496]
S2 gupdate1c989ef16e5c6a0;Google Update Service (gupdate1c989ef16e5c6a0);c:\program files\Google\Update\GoogleUpdate.exe [8. 2. 2009 14:13 133104]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys [20. 1. 2009 21:22 102448]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\drivers\lgbtport.sys [29. 9. 2009 8:11 12160]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\drivers\lgvmodem.sys [29. 9. 2009 8:11 12928]
S3 SavRoam;SAVRoam;c:\program files\Symantec AntiVirus\SavRoam.exe [15. 6. 2006 1:40 115952]
S3 SMBBATT;Microsoft Smart Battery Driver;c:\windows\system32\drivers\smbbatt.sys [30. 9. 2004 11:30 16000]
.
Obsah adresáře 'Naplánované úlohy'

2010-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]

2010-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-08 13:13]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://global.acer.com
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\me5wyag6.default\
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.17\npGoogleOneClick8.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: d:\programy\QuickTime\Plugins\npqtplugin7.dll
FF - plugin: d:\programy\VLC media player\VLC\npvlc.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-27 19:57
Windows 5.1.2600 Service Pack 3 FAT NTAPI

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2010-02-27 19:58:17
ComboFix-quarantined-files.txt 2010-02-27 18:58
ComboFix2.txt 2010-02-27 18:08
ComboFix3.txt 2010-02-27 00:03

Před spuštěním: 5 027 069 952
Po spuštění: 5 014 503 424

- - End Of File - - 24AEC22A30777F4284B99C55001A316D

Odpovědět