Vyskakovanie nežiaducich stranok v novych oknach a ine...

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 14:06

Takze; nepatrim k profikom na PC, som obycajny uzivatel, ktory si vie vacsinou spravit to co potrebuje. Tentoraz ma trapi jedna vec: Od vcera sa mi z nicoho nic zacali otvorat bez priciny nove stranky v novych oknach. Nie zeby som surfoval po nejakych "pochybnych" . V tychto vyskakovacich oknach mi vacsinou vyskoci travian alebo nejake porno stranky. Niekedy sa mi to stavalo ale uplne malo, no teraz sa to deje zhruba po kazdom druhom kliknuti niekde na internete.
Dalsi problem je ten ze ma to hocikedy odpoji od internetu ... nanovo mi nabehne vytacanie a po par sekundach som opat pripojeny.
Ak nahodou niekto z Vas vie tieto moje problemy vyriesit, otvite sa prosim lebo uz som z toho zufaly. Dakujem

Reklama

Damned · Příspěvekod **Damned** » 17 črc 2009 14:08

Z mého podpisu si stáhni Hijackthis. Podle návodu udělej z něho log a ten sem vlož.

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 14:15

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:57, on 17.7.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\nvsvc32.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\System32\svchost.exe
H:\WINDOWS\system32\spoolsv.exe
H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\Explorer.EXE
H:\WINDOWS\RTHDCPL.EXE
H:\WINDOWS\system32\RUNDLL32.EXE
H:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe
H:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
H:\Program Files\Microsoft Office 2007\Office12\GrooveMonitor.exe
H:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
H:\WINDOWS\system32\ctfmon.exe
H:\Program Files\ICQ6.5\ICQ.exe
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.exe
H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbappHelper.exe
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbsvc.exe
H:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - H:\WINDOWS\system32\dvmurl.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - H:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - H:\Program Files\Media Access Startup\1.5.0.850\HPIEAddOn.dll
O2 - BHO: NP Helper Class - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - H:\Program Files\Internet Saving Optimizer\3.4.0.4340\NPIEAddOn.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - H:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - H:\PROGRA~1\MI69DF~1\Office12\GRA8E1~1.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - H:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: System Search Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - H:\Program Files\System Search Dispatcher\1.3.0.840\ssd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - H:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - H:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: GamingHarbor Toolbar - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stb0.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CnxDslTaskBar] "H:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" "Microcom\ADSL DeskPorte USB"
O4 - HKLM\..\Run: [OpwareSE2] "H:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroCheck] H:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "H:\Program Files\Microsoft Office 2007\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] H:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ICQ] "H:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [SmileyApp] H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://H:\PROGRA~1\MI69DF~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://H:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://H:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://H:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://H:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: S&end to OneNote - res://H:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MI69DF~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MI69DF~1\Office12\ONBttnIE.dll
O9 - Extra button: Linked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - H:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Linked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - H:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MI69DF~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2780467734
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E7F362D2-BCD1-4121-B8CE-3C045ED5F95C}: NameServer = 195.146.128.62 195.146.132.58
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - H:\PROGRA~1\MI69DF~1\Office12\GR99D3~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - H:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - H:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 9051 bytes

ReCall · Příspěvekod **ReCall** » 17 črc 2009 14:17

Pokud používáš Firefox tak můžeš vyzkoušet NoScript Addon. Mě to funguje spolehlivě i pod 3.5. A k druhému problému - máš asi vytáčené připojení a stím zřejmě nic nenaděláš. :smile:

Damned · Příspěvekod **Damned** » 17 črc 2009 14:31

A neposlouchej kdejakýho plácala jako je ReCall.

Není se čemu divit, ještě by ti ty okna mohly naplácat :evil:

Odinstaluj si ty šmejdy co sis tam nasadil: DoubleD (GamingHarbor Toolbar), ICQ6Toolbar, Media Access Startup, Internet Saving Optimizer a System Search Dispatcher
*****************************************************************************************************************************************
Spusť HJT, vypni prohlížeče, odpoj se od internetu a fixni (zatrhnout políčko před hodnotou, zmáčknout
"Fix checked"):

R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - H:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - H:\Program Files\Media Access Startup\1.5.0.850\HPIEAddOn.dll
O2 - BHO: NP Helper Class - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - H:\Program Files\Internet Saving Optimizer\3.4.0.4340\NPIEAddOn.dll
O2 - BHO: System Search Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - H:\Program Files\System Search Dispatcher\1.3.0.840\ssd.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - H:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: GamingHarbor Toolbar - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stb0.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NeroCheck] H:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [SmileyApp] H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.exe
*****************************************************************************************************************************************Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 14:52

Malwarebytes' Anti-Malware 1.39
Verzia databázy: 2450
Windows 5.1.2600 Service Pack 3

17.7.2009 14:50:56
mbam-log-2009-07-17 (14-50-53).txt

Typ kontroly: Rýchla
Objektov kontrolovaných: 109852
Uplynutý cas: 2 minute(s), 38 second(s)

Infikovaných procesov pamäte: 2
Infikovaných modulov pamäte: 5
Infikovaných registracných klúcov: 34
Infikovaných registracných hodnôt: 3
Infikovaných registracných údajov položiek: 0
Infikovaných priecinkov: 30
Infikovaných súborov: 151

Infikovaných procesov pamäte:
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.exe (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbappHelper.exe (Adware.DoubleD) -> No action taken.

Infikovaných modulov pamäte:
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\HookAPINT.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\ProductInfo.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\SkinCrafterDll.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbOL.dll (Adware.DoubleD) -> No action taken.

Infikovaných registracných klúcov:
HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.DoubleD) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{c28a0312-c403-417b-a425-a915bc0519cd} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{d335d84d-61d8-4b5f-9c4e-067dc8b27ed5} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{42c23154-00fa-4a93-9de9-3eb523cffff6} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{2e8e2100-98cb-4aac-9480-63a281acaff5} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{22c12739-c111-44c6-9bb7-f335c2a9be2a} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{edb1a56e-2224-4c79-a4bd-42a39c6e4608} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{27ff1ee8-8ccc-49e1-b801-f212e3744e80} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{0514c9b0-e4c6-4d6b-a3a6-b38bc280b115} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3fb17508-0bf4-4fde-845a-323a1052957c} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{803e73fe-cb73-4d49-8aff-653fd6f44171} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{3fb17508-0bf4-4fde-845a-323a1052957c} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{51b67a88-02d0-43cb-8d12-5ca3e2d4cf49} (Adware.DoubleD) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{d44cc2fb-77b8-48a5-a5dc-f961f2d258fb} (Adware.DoubleD) -> No action taken.

Infikovaných registracných hodnôt:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\smileyapp (Adware.DoubleD) -> No action taken.

Infikovaných registracných údajov položiek:
(Žiadne škodlivé položky)

Infikovaných priecinkov:
H:\Program Files\DoubleD (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290 (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\FFToolbar (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale\en-US (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\searchplugins (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins (Adware.DoubleD) -> No action taken.
H:\Program Files\Media Access Startup (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850 (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\Data (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome\content (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\components (Adware.DoubleD) -> No action taken.
H:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340 (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\Data (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components (Adware.DoubleD) -> No action taken.
H:\Program Files\System Search Dispatcher (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840 (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\Data (Adware.DoubleD) -> No action taken.

Infikovaných súborov:
H:\Program Files\Media Access Startup\1.5.0.850\HPIEAddOn.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\System Search Dispatcher\1.3.0.840\ssd.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stb0.dll (Adware.DoubleD) -> No action taken.
H:\Program Files\Internet Saving Optimizer\3.4.0.4340\NPIEAddOn.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\AIMActiveXDLL.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\AxGifAnimator.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\gdiplus.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\HookAPINT.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\mfc80.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Microsoft.VC80.CRT.manifest (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Microsoft.VC80.MFC.manifest (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\msvcr80.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\MyDll.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\OEActiveXDLL.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\ProductInfo.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Riched20Smiley.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\SkinCrafterDll.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbAol.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbapp.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbapp.exe (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbappHelper.exe (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbasst.exe (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbdl.exe (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbIE.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbMsn.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbOL.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbOLEX.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbsvc.exe (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbYahoo8.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbYahoo9.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\248d6576afce4ee94af42d7350131106.gif (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\24a70fb875fab686b6b3c217612bc07c.gif (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\2afcf6f3f2e19cc42d7f72f3b18b26ef.gif (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\50bffa6936b3e661971a58e3c8bdf4cb.gif (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\default1.dat (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\loading.dat (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\loading.gif (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Cursor.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_DailyVideo.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Game.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Glitter.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Logo.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Option.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Recipe.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Ringtone.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Screensaver.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Search.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley_TellAFriend.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Wallpaper.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Web.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\pixel.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\ProductInfo.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\profile.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\SearchEngineList.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\tbcore.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\ToolbarLayout.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\UpdateCentre.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\UpdateCentreBk.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\URLDynamic.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\URLStatic.mx (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome.manifest (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\install.rdf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\GamingHarborToolbar.jar (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale\en-US\global.dtd (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\DDAutoComplete.js (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\ISmileyCore.xpt (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\SmileyCore.dll (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\TBFFHelper.js (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\TBFFHelper.xpt (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\searchplugins\gamingharborsearchplugins.xml (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\About.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Component_ComboBox.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Cursor.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Cursor.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_DailyVideo.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Game.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Glitter.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Glitter.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Logo.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Option.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Recipe.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Ringtone.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Screensaver.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Search.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Smiley.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Smiley.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Wallpaper.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Web.mg (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDefault.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay18.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay20.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters18.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters20.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnOption.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley18.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley20.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd18.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd20.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink.png (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink18.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink20.bmp (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin1.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin2.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin3.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin4.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\TellafriendSkin.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\TellafriendSkin_s.skf (Adware.DoubleD) -> No action taken.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\ToastSkin.skf (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\HPCommon.dll (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\hppx.exe (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\MAHelper.exe (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\unins000.dat (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\unins000.exe (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\Data\config.md (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome.manifest (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\install.rdf (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> No action taken.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\adwpx.exe (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\NPCommon.dll (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\unins000.dat (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\unins000.exe (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\Data\config.md (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome.manifest (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\install.rdf (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> No action taken.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\unins000.dat (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\unins000.exe (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\Data\eacore.mx (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\Data\URLDynamic.mx (Adware.DoubleD) -> No action taken.
h:\program files\system search dispatcher\1.3.0.840\Data\URLStatic.mx (Adware.DoubleD) -> No action taken.

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 14:56

asi som to spravil blbo, lebo najprv som ti tu skopiroval tu spravu z toho programu malware ... a az potom som v HJT vymazal tie programy ... vadi to?

Damned · Příspěvekod **Damned** » 17 črc 2009 15:07

Vždy postupuj podle pořadí, jaké píšu, to pořadí má svůj důvod. Odinstaloval a fixnul si to všechno? Pokud jo:

Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Vypni rezidentní štít antiviru (pokud máš tak i antispyware).
Stáhni si ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 15:24

ked som dokoncil to vymazovanie v programe malware tak si to opytalo restart PC a preto som nestihol skopirovat ten log... mam znovu spravit to iste?

Damned · Příspěvekod **Damned** » 17 črc 2009 15:32

Log by měl být snad ve složce s MbAM. PO restartu ho najdi, abych viděl zda vše smazal a pak ten ComboFix.

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 15:38

ok nasiel som to; tu to mas a idem na to combo

Malwarebytes' Anti-Malware 1.39
Verzia databázy: 2450
Windows 5.1.2600 Service Pack 3

17.7.2009 15:17:44
mbam-log-2009-07-17 (15-17-44).txt

Typ kontroly: Rýchla
Objektov kontrolovaných: 109592
Uplynutý cas: 1 minute(s), 29 second(s)

Infikovaných procesov pamäte: 1
Infikovaných modulov pamäte: 3
Infikovaných registracných klúcov: 22
Infikovaných registracných hodnôt: 1
Infikovaných registracných údajov položiek: 0
Infikovaných priecinkov: 30
Infikovaných súborov: 148

Infikovaných procesov pamäte:
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbappHelper.exe (Adware.DoubleD) -> Unloaded process successfully.

Infikovaných modulov pamäte:
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\HookAPINT.dll (Adware.DoubleD) -> Delete on reboot.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\ProductInfo.dll (Adware.DoubleD) -> Delete on reboot.
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stbapp.dll (Adware.DoubleD) -> Delete on reboot.

Infikovaných registracných klúcov:
HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{d335d84d-61d8-4b5f-9c4e-067dc8b27ed5} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{42c23154-00fa-4a93-9de9-3eb523cffff6} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2e8e2100-98cb-4aac-9480-63a281acaff5} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{22c12739-c111-44c6-9bb7-f335c2a9be2a} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{edb1a56e-2224-4c79-a4bd-42a39c6e4608} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{27ff1ee8-8ccc-49e1-b801-f212e3744e80} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{0514c9b0-e4c6-4d6b-a3a6-b38bc280b115} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3fb17508-0bf4-4fde-845a-323a1052957c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{803e73fe-cb73-4d49-8aff-653fd6f44171} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fb17508-0bf4-4fde-845a-323a1052957c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{51b67a88-02d0-43cb-8d12-5ca3e2d4cf49} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d44cc2fb-77b8-48a5-a5dc-f961f2d258fb} (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikovaných registracných hodnôt:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikovaných registracných údajov položiek:
(Žiadne škodlivé položky)

Infikovaných priecinkov:
H:\Program Files\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290 (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\FFToolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale\en-US (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\searchplugins (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.
H:\Program Files\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850 (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\components (Adware.DoubleD) -> Quarantined and deleted successfully.
H:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340 (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components (Adware.DoubleD) -> Quarantined and deleted successfully.
H:\Program Files\System Search Dispatcher (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840 (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\Data (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikovaných súborov:
H:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.3.20290\stb0.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\AIMActiveXDLL.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\AxGifAnimator.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\gdiplus.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\HookAPINT.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\mfc80.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Microsoft.VC80.CRT.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Microsoft.VC80.MFC.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\msvcr80.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\MyDll.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\OEActiveXDLL.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\ProductInfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Riched20Smiley.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\SkinCrafterDll.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbAol.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbapp.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbapp.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbappHelper.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbasst.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbdl.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbIE.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbMsn.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbOL.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbOLEX.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbsvc.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbYahoo8.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\stbYahoo9.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\248d6576afce4ee94af42d7350131106.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\24a70fb875fab686b6b3c217612bc07c.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\2afcf6f3f2e19cc42d7f72f3b18b26ef.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\50bffa6936b3e661971a58e3c8bdf4cb.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\default1.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\loading.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Cache\loading.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Cursor.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_DailyVideo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Game.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Glitter.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Recipe.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Ringtone.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Screensaver.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Smiley_TellAFriend.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Wallpaper.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\Module_Web.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\GamingHarborToolbar.jar (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\chrome\locale\en-US\global.dtd (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\DDAutoComplete.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\ISmileyCore.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\SmileyCore.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\TBFFHelper.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\components\TBFFHelper.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\fftoolbar\searchplugins\gamingharborsearchplugins.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Cursor.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Cursor.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_DailyVideo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Game.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Glitter.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Glitter.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Recipe.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Ringtone.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Screensaver.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Smiley.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Smiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Wallpaper.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\Module_Web.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDefault.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnDisplay20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnGlitters20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnOption.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnSmiley20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnTellFd20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink.png (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Icons\TBBtnWink20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\TellafriendSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\TellafriendSkin_s.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\DoubleD\gamingharbor toolbar\4.1.3.20290\Skins\ToastSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\HPCommon.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\hppx.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\MAHelper.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\media access startup\1.5.0.850\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\adwpx.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\NPCommon.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\internet saving optimizer\3.4.0.4340\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\Data\eacore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
h:\program files\system search dispatcher\1.3.0.840\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.

mischo378 · Příspěvekod **mischo378** » 17 črc 2009 15:46

ComboFix 09-07-14.08 - Owner 17.07.2009 15:39.1.2 - NTFSx86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.2047.1551 [GMT 2:00]
Running from: h:\documents and settings\Owner\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

h:\documents and settings\MATO\Local Settings\Temporary Internet Files\_tm125.tmp
h:\documents and settings\MATO\Local Settings\Temporary Internet Files\_tm21.tmp
h:\documents and settings\MATO\Local Settings\Temporary Internet Files\_tm3.tmp
h:\documents and settings\MATO\Local Settings\Temporary Internet Files\_tm3FC.tmp
h:\documents and settings\OCO\Local Settings\Temporary Internet Files\_tm3B3.tmp
h:\documents and settings\OCO\Local Settings\Temporary Internet Files\_tm3D.tmp
h:\documents and settings\OCO\Local Settings\Temporary Internet Files\_tm791.tmp
h:\documents and settings\OCO\Local Settings\Temporary Internet Files\_tmC.tmp
h:\documents and settings\Owner\Local Settings\Temporary Internet Files\_tm1DB.tmp
h:\documents and settings\Owner\Local Settings\Temporary Internet Files\_tm29A.tmp
h:\documents and settings\Owner\Local Settings\Temporary Internet Files\_tm447.tmp
h:\documents and settings\Owner\Local Settings\Temporary Internet Files\_tmF1E.tmp
h:\documents and settings\Owner\Local Settings\Temporary Internet Files\stb06759.tmp

.
((((((((((((((((((((((((( Files Created from 2009-06-17 to 2009-07-17 )))))))))))))))))))))))))))))))
.

2009-07-17 12:43 . 2009-07-17 12:43 -------- d-----w- h:\documents and settings\Owner\Application Data\Malwarebytes
2009-07-17 12:43 . 2009-07-13 11:36 38160 ----a-w- h:\windows\system32\drivers\mbamswissarmy.sys
2009-07-17 12:43 . 2009-07-17 12:43 -------- d-----w- h:\documents and settings\All Users\Application Data\Malwarebytes
2009-07-17 12:43 . 2009-07-13 11:36 19096 ----a-w- h:\windows\system32\drivers\mbam.sys
2009-07-17 12:43 . 2009-07-17 12:43 -------- d-----w- h:\program files\Malwarebytes' Anti-Malware
2009-07-17 12:14 . 2009-07-17 12:14 -------- d-----w- h:\program files\Trend Micro
2009-07-14 14:18 . 2009-07-14 14:18 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\Media Access Startup
2009-07-14 14:18 . 2009-07-14 14:18 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\Internet Saving Optimizer
2009-07-14 14:18 . 2009-07-14 14:18 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\DoubleD
2009-07-14 13:23 . 2009-07-14 13:23 -------- d-----w- h:\program files\ESET
2009-07-14 08:05 . 2009-07-14 08:05 -------- d-----w- h:\documents and settings\MATO\Local Settings\Application Data\Media Access Startup
2009-07-14 08:05 . 2009-07-14 08:05 -------- d-----w- h:\documents and settings\MATO\Local Settings\Application Data\Internet Saving Optimizer
2009-07-14 08:05 . 2009-07-14 08:05 -------- d-----w- h:\documents and settings\MATO\Local Settings\Application Data\DoubleD
2009-07-13 21:34 . 2009-07-13 21:34 -------- d-----w- h:\documents and settings\Owner\Local Settings\Application Data\Internet Saving Optimizer
2009-07-13 21:34 . 2009-07-13 21:34 -------- d-----w- h:\documents and settings\Owner\Local Settings\Application Data\Media Access Startup
2009-07-13 21:34 . 2009-07-13 21:34 592947 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\mFileBagIDE.dll\bag\HJSetup.exe
2009-07-13 21:34 . 2009-07-13 21:34 595765 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\mFileBagIDE.dll\bag\AdwareSetup.exe
2009-07-13 21:34 . 2009-07-13 10:01 3004139 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\Setup.exe
2009-07-11 20:28 . 2009-07-11 20:28 -------- d-----w- h:\documents and settings\MATO\Application Data\PC Suite
2009-07-09 22:19 . 2009-07-09 22:19 -------- d-----w- h:\program files\Autodesk
2009-07-03 21:32 . 2009-07-03 21:32 -------- d-----w- h:\documents and settings\Owner\Application Data\Nokia Multimedia Player
2009-07-03 18:11 . 2009-07-03 18:11 -------- d-----w- h:\documents and settings\OCO\Application Data\PC Suite
2009-07-02 23:07 . 2009-07-02 23:08 -------- d-----w- h:\documents and settings\OCO\Application Data\Canon
2009-07-02 21:53 . 2009-07-02 22:04 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\ApplicationHistory
2009-07-02 21:53 . 2009-07-02 21:53 126 ----a-w- h:\documents and settings\OCO\Local Settings\Application Data\fusioncache.dat
2009-07-02 21:53 . 2009-07-02 21:53 2550 ----a-r- h:\documents and settings\OCO\Application Data\Microsoft\Installer\{F19D1A6C-E369-44C2-A4FA-0650E1433860}\_16496df1.exe
2009-07-02 21:53 . 2009-07-02 21:53 1078 ----a-r- h:\documents and settings\OCO\Application Data\Microsoft\Installer\{F19D1A6C-E369-44C2-A4FA-0650E1433860}\_bb32ea6.exe
2009-07-02 21:53 . 2009-07-02 21:53 1078 ----a-r- h:\documents and settings\OCO\Application Data\Microsoft\Installer\{F19D1A6C-E369-44C2-A4FA-0650E1433860}\_5af141bb.exe
2009-07-02 21:53 . 2009-07-02 21:53 1078 ----a-r- h:\documents and settings\OCO\Application Data\Microsoft\Installer\{F19D1A6C-E369-44C2-A4FA-0650E1433860}\_26e91eb.exe
2009-07-02 21:53 . 2009-07-02 21:53 1078 ----a-r- h:\documents and settings\OCO\Application Data\Microsoft\Installer\{F19D1A6C-E369-44C2-A4FA-0650E1433860}\_12db153c.exe
2009-07-02 13:48 . 2009-07-02 13:48 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\vdownloader
2009-06-30 20:19 . 2009-06-30 20:19 -------- d-sh--w- h:\documents and settings\MATO\IECompatCache
2009-06-29 19:47 . 2009-06-29 19:47 -------- d-----w- h:\documents and settings\MATO\Local Settings\Application Data\Adobe
2009-06-29 14:43 . 2009-06-29 14:44 -------- d-----w- h:\documents and settings\OCO\Local Settings\Application Data\Adobe
2009-06-28 20:08 . 2009-06-28 20:08 -------- d-----w- h:\documents and settings\Owner\WINDOWS
2009-06-28 18:56 . 2009-06-28 18:56 -------- d-----w- h:\documents and settings\Owner\Local Settings\Application Data\vdownloader
2009-06-28 18:56 . 2009-06-28 18:56 -------- d-----w- h:\documents and settings\Owner\Application Data\Desktopicon
2009-06-28 18:56 . 2009-06-28 18:56 -------- d-----w- h:\program files\VDOWNLOADER
2009-06-26 19:03 . 2009-06-26 19:03 -------- d-----w- h:\program files\Total Video Player
2009-06-26 18:46 . 2009-03-25 09:52 51200 ----a-w- h:\documents and settings\MATO\Application Data\Mozilla\Firefox\Profiles\xcrdgjw3.default\extensions\{930f1200-f5f1-4870-bac6-e233ec8e7023}\components\FFExternalAlert.dll
2009-06-26 18:46 . 2009-03-25 09:52 114688 ----a-w- h:\documents and settings\MATO\Application Data\Mozilla\Firefox\Profiles\xcrdgjw3.default\extensions\{930f1200-f5f1-4870-bac6-e233ec8e7023}\components\npmozax.dll
2009-06-25 11:32 . 2009-06-27 20:27 71152 ----a-w- h:\documents and settings\OCO\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-25 11:30 . 2009-06-25 11:45 -------- d-----w- H:\WHOkna
2009-06-24 18:16 . 2009-06-24 18:16 -------- d-----w- h:\documents and settings\MATO\Local Settings\Application Data\Mozilla
2009-06-24 18:12 . 2009-06-24 18:12 -------- d-----w- h:\documents and settings\OCO\Application Data\ICQ
2009-06-24 18:09 . 2009-06-24 18:09 -------- d-sh--w- h:\documents and settings\OCO\PrivacIE
2009-06-23 14:32 . 2009-06-23 14:32 -------- d-sh--w- h:\documents and settings\Default User\IETldCache
2009-06-22 19:32 . 2006-10-26 17:56 32592 ----a-w- h:\windows\system32\msonpmon.dll
2009-06-22 19:31 . 2009-06-22 19:31 -------- d-----w- h:\program files\Microsoft Works
2009-06-22 19:31 . 2009-06-22 19:31 -------- d-----w- h:\program files\MSBuild
2009-06-22 19:29 . 2009-06-22 19:29 -------- d-----w- h:\program files\Microsoft Visual Studio 8
2009-06-22 19:29 . 2009-06-22 19:31 -------- d-----w- h:\program files\Microsoft Office 2007
2009-06-22 14:51 . 2009-06-22 14:51 -------- d-sh--w- h:\documents and settings\NetworkService\IETldCache
2009-06-21 14:10 . 2009-06-21 14:10 -------- d-----w- h:\documents and settings\Owner\Application Data\Ahead
2009-06-21 14:09 . 2001-06-26 06:15 38912 ----a-r- h:\windows\system32\picn20.dll
2009-06-21 14:08 . 2001-07-06 16:24 283920 ----a-r- h:\windows\system32\ImagXpr5.dll
2009-06-21 14:08 . 2001-07-06 12:41 569344 ----a-r- h:\windows\system32\imagr5.dll
2009-06-21 14:08 . 2001-07-06 10:44 544768 ----a-r- h:\windows\system32\imagx5.dll
2009-06-21 14:08 . 2009-06-21 14:08 -------- d-----w- h:\program files\Common Files\Ahead
2009-06-21 14:08 . 2001-07-09 09:50 155648 ----a-r- h:\windows\system32\NeroCheck.exe
2009-06-21 14:08 . 2009-06-21 14:09 -------- d-----w- h:\program files\Ahead
2009-06-21 13:51 . 2001-08-17 20:36 5632 ----a-w- h:\windows\system32\ptpusb.dll
2009-06-21 13:51 . 2008-04-14 00:12 159232 ----a-w- h:\windows\system32\ptpusd.dll
2009-06-20 18:47 . 2009-06-20 21:39 -------- d-----w- h:\documents and settings\Owner\Local Settings\Application Data\Google
2009-06-20 08:11 . 2009-06-20 08:11 664 ----a-w- h:\windows\system32\d3d9caps.dat
2009-06-20 07:26 . 2009-06-20 07:27 -------- d-----w- h:\program files\Wise Registry Cleaner
2009-06-19 14:54 . 2009-06-19 14:51 15688 ----a-w- h:\windows\system32\lsdelete.exe
2009-06-19 14:53 . 2009-06-20 06:32 -------- d---a-w- h:\documents and settings\All Users\Application Data\TEMP
2009-06-19 14:49 . 2009-06-19 14:49 -------- dc-h--w- h:\documents and settings\All Users\Application Data\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-06-19 14:49 . 2009-03-12 08:17 2902048 -c--a-w- h:\documents and settings\All Users\Application Data\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}\Ad-AwareAE.exe
2009-06-19 14:49 . 2009-06-19 14:51 -------- d-----w- h:\documents and settings\All Users\Application Data\Lavasoft
2009-06-19 14:49 . 2009-06-19 14:49 -------- d-----w- h:\program files\Lavasoft
2009-06-19 12:30 . 2009-06-19 12:30 -------- d-----w- h:\program files\CCleaner
2009-06-19 12:16 . 2009-07-17 11:07 -------- d-----w- h:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-19 12:16 . 2009-06-19 12:17 -------- d-----w- h:\program files\Spybot - Search & Destroy

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-16 19:44 . 2009-05-21 17:59 -------- d-----w- h:\documents and settings\Owner\Application Data\Canon
2009-07-15 17:55 . 2009-05-25 22:13 -------- d-----w- h:\documents and settings\All Users\Application Data\Microsoft Help
2009-07-14 08:35 . 2009-05-27 18:00 66872 ----a-w- h:\windows\system32\PnkBstrA.exe
2009-07-13 21:34 . 2009-07-13 21:33 -------- dc-h--w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}
2009-07-13 10:01 . 2009-07-13 21:33 262424 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\D5797E3B\3E688669\stbYahoo9.dll
2009-07-13 10:01 . 2009-07-13 21:33 254232 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\6216A4BD\3E688669\stbYahoo8.dll
2009-07-13 10:01 . 2009-07-13 21:33 872728 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\B75FA91E\3E688669\stbsvc.exe
2009-07-13 10:01 . 2009-07-13 21:33 205080 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\mFileBagIDE.dll\bag\stbsh.dll
2009-07-13 10:01 . 2009-07-13 21:33 479512 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\mFileBagIDE.dll\bag\stbpx.exe
2009-07-13 10:01 . 2009-07-13 21:33 229656 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\628759C1\3E688669\stbOLEX.dll
2009-07-13 10:01 . 2009-07-13 21:33 205080 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\A26F7F7\3E688669\stbOL.dll
2009-07-13 10:01 . 2009-07-13 21:33 323864 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\B3AC8875\3E688669\stbMsn.dll
2009-07-13 10:01 . 2009-07-13 21:33 229656 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\C3C6C2CD\3E688669\stbIE.dll
2009-07-13 10:01 . 2009-07-13 21:33 487704 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\EB91CE86\3E688669\stbdl.exe
2009-07-13 10:01 . 2009-07-13 21:33 491800 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\BED3DEFB\3E688669\stbasst.exe
2009-07-13 10:01 . 2009-07-13 21:33 94488 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\15D3A7BB\3E688669\stbappHelper.exe
2009-07-13 09:21 . 2009-07-13 21:33 423528 -c--a-w- h:\documents and settings\All Users\Application Data\{F444439B-B473-48E8-8DE5-4CB929C79A9F}\OFFLINE\mFileBagIDE.dll\bag\SSD.exe
2009-07-11 10:02 . 2009-05-21 18:30 71152 ----a-w- h:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-07-10 15:17 . 2009-06-19 14:51 25440 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\savapibridge.dll
2009-07-10 15:17 . 2009-06-19 14:51 1630560 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Resources.dll
2009-07-10 15:17 . 2009-06-19 14:51 2353480 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
2009-07-03 14:51 . 2009-06-19 14:51 314712 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\threatwork.exe
2009-07-03 14:51 . 2009-06-19 14:51 169312 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lavamessage.dll
2009-07-03 14:51 . 2009-06-19 14:51 84832 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\ShellExt.dll
2009-07-03 08:52 . 2009-05-25 20:00 8192 ----a-w- h:\documents and settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstCCD.exe
2009-07-03 08:52 . 2009-05-25 20:00 61440 ----a-w- h:\documents and settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
2009-07-03 08:52 . 2009-05-25 20:00 10240 ----a-w- h:\documents and settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstPCS.exe
2009-06-29 14:57 . 2009-06-19 14:51 348496 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lavalicense.dll
2009-06-29 14:56 . 2009-06-19 14:51 298336 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\UpdateManager.dll
2009-06-29 14:55 . 2009-06-19 14:51 246128 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\RPAPI.dll
2009-06-29 14:55 . 2009-06-19 14:51 40288 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\PrivacyClean.dll
2009-06-29 14:55 . 2009-06-19 14:51 85352 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Drivers\32\AAWDriverTool.exe
2009-06-29 14:55 . 2009-06-19 14:51 664424 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\CEAPI.dll
2009-06-29 14:54 . 2009-06-19 14:51 563064 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe
2009-06-29 14:54 . 2009-06-19 14:51 566632 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe
2009-06-29 14:52 . 2009-06-19 14:51 629072 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWWSC.exe
2009-06-29 14:52 . 2009-06-19 14:51 520024 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWTray.exe
2009-06-29 14:51 . 2009-06-19 14:51 1029456 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWService.exe
2009-06-22 19:31 . 2009-06-02 12:12 -------- d-----w- h:\program files\Microsoft.NET
2009-06-19 14:51 . 2009-06-19 14:51 15688 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\lsdelete.exe
2009-06-19 14:51 . 2009-06-19 14:51 64160 ----a-w- h:\windows\system32\drivers\Lbd.sys
2009-06-19 14:51 . 2009-06-19 14:51 64160 ----a-w- h:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Drivers\32\lbd.sys
2009-06-19 10:50 . 2009-06-02 12:46 -------- d-----w- h:\program files\LogMeIn
2009-06-16 14:36 . 2004-08-04 12:00 81920 ----a-w- h:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2004-08-04 12:00 119808 ----a-w- h:\windows\system32\t2embed.dll
2009-06-13 20:50 . 2009-05-21 17:46 -------- d-----w- h:\documents and settings\Owner\Application Data\ICQ
2009-06-13 08:50 . 2009-05-27 18:00 138184 ----a-w- h:\windows\system32\drivers\PnkBstrK.sys
2009-06-13 08:49 . 2009-05-27 17:55 183112 ----a-w- h:\windows\system32\PnkBstrB.exe
2009-06-05 15:23 . 2009-06-05 15:23 22328 ----a-w- h:\documents and settings\Owner\Application Data\PnkBstrK.sys
2009-06-05 15:23 . 2009-06-05 15:23 22328 ----a-w- h:\documents and settings\Owner\Application Data\PnkBstrK.sys
2009-06-05 15:22 . 2009-06-05 15:22 682280 ----a-w- h:\windows\system32\pbsvc.exe
2009-06-05 15:22 . 2009-03-26 22:51 -------- d--h--w- h:\program files\InstallShield Installation Information
2009-06-05 15:18 . 2009-06-05 15:18 -------- d-----w- h:\program files\Activision
2009-06-04 15:59 . 2009-06-04 15:59 -------- d-----w- h:\program files\Microsoft Silverlight
2009-06-03 20:07 . 2009-06-02 12:10 -------- d-----w- h:\program files\Microsoft SQL Server
2009-06-03 19:09 . 2004-08-04 12:00 1291264 ----a-w- h:\windows\system32\quartz.dll
2009-06-02 12:46 . 2009-06-02 12:46 -------- d-----w- h:\documents and settings\All Users\Application Data\LogMeIn
2009-06-02 12:11 . 2009-06-02 12:11 -------- d-----w- h:\program files\MSXML 6.0
2009-06-02 12:06 . 2009-06-02 12:06 -------- d-----w- h:\program files\Winkhaus
2009-05-27 17:52 . 2009-05-27 17:52 -------- d-----w- h:\documents and settings\Owner\Application Data\Leadertech
2009-05-27 17:43 . 2009-06-02 12:48 162510 ----a-w- h:\windows\pchealth\helpctr\Config\Cache\Personal_32_1051.dat
2009-05-26 21:15 . 2009-05-26 21:12 410984 ----a-w- h:\windows\system32\deploytk.dll
2009-05-26 21:15 . 2009-05-26 21:15 -------- d-----w- h:\program files\Java
2009-05-26 21:14 . 2009-05-26 21:12 152576 ----a-w- h:\documents and settings\Owner\Application Data\Sun\Java\jre1.6.0_13\lzma.dll
2009-05-26 13:16 . 2009-05-26 13:16 -------- d-----w- h:\documents and settings\Owner\Application Data\Nero
2009-05-26 13:15 . 2009-05-26 13:15 -------- d-----w- h:\program files\Common Files\Nero
2009-05-26 13:15 . 2009-05-26 13:15 -------- d-----w- h:\documents and settings\All Users\Application Data\Nero
2009-05-26 11:43 . 2009-05-26 11:19 -------- d-----w- h:\documents and settings\All Users\Application Data\Avira
2009-05-26 11:22 . 2009-05-26 11:19 55640 ----a-w- h:\windows\system32\drivers\avgntflt.sys
2009-05-25 22:15 . 2009-05-25 22:15 -------- d-----w- h:\program files\Microsoft Sync Framework
2009-05-25 22:14 . 2009-05-25 22:14 -------- d-----w- h:\program files\Microsoft Analysis Services
2009-05-25 20:06 . 2009-05-25 20:04 -------- d-----w- h:\documents and settings\Owner\Application Data\Nokia
2009-05-25 20:04 . 2009-05-25 20:04 -------- d-----w- h:\documents and settings\All Users\Application Data\PC Suite
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\program files\Common Files\PCSuite
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\program files\Common Files\Nokia
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\program files\Nokia
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\program files\DIFX
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\documents and settings\Owner\Application Data\PC Suite
2009-05-25 20:03 . 2009-05-25 20:03 -------- d-----w- h:\program files\PC Connectivity Solution
2009-05-25 20:00 . 2009-05-25 19:59 -------- d-----w- h:\documents and settings\All Users\Application Data\Installations
2009-05-22 05:09 . 2009-05-21 18:43 -------- d-----w- h:\program files\NOS
2009-05-22 05:09 . 2009-05-21 18:43 -------- d-----w- h:\documents and settings\All Users\Application Data\NOS
2009-05-21 18:47 . 2009-05-21 18:47 -------- d-----w- h:\program files\Common Files\Adobe AIR
2009-05-21 18:47 . 2009-05-21 18:47 -------- d-----w- h:\program files\Common Files\Adobe
2009-05-21 17:49 . 2009-05-21 17:46 -------- d-----w- h:\program files\ICQ6.5
2009-05-21 17:47 . 2009-05-21 17:47 -------- d-----w- h:\program files\ICQ6Toolbar
2009-05-21 17:47 . 2009-05-21 17:47 -------- d-----w- h:\documents and settings\All Users\Application Data\ICQ
2009-05-21 17:30 . 2009-05-21 17:30 0 ----a-w- h:\windows\nsreg.dat
2009-05-21 17:21 . 2009-05-21 17:21 -------- d-----w- h:\documents and settings\All Users\Application Data\ESET
2009-05-21 15:16 . 2009-05-21 15:16 -------- d-----w- h:\documents and settings\All Users\Application Data\ScanSoft
2009-05-21 15:15 . 2009-05-21 15:15 -------- d--h--w- h:\documents and settings\All Users\Application Data\CanonBJ
2009-05-21 15:13 . 2009-05-21 15:13 -------- d-----w- h:\documents and settings\Owner\Application Data\ScanSoft
2009-05-21 15:13 . 2009-05-21 15:13 -------- d-----w- h:\documents and settings\All Users\Application Data\SSScanWizard
2009-05-21 15:13 . 2009-05-21 15:13 -------- d-----w- h:\documents and settings\All Users\Application Data\SSScanAppDataDir
2009-05-21 15:13 . 2009-05-21 15:13 -------- d-----w- h:\program files\Common Files\ScanSoft Shared
2009-05-21 15:13 . 2009-05-21 15:13 -------- d-----w- h:\program files\ScanSoft
2009-05-21 15:11 . 2009-05-21 15:11 -------- d-----w- h:\program files\ArcSoft
2009-05-21 15:11 . 2009-03-26 22:51 -------- d-----w- h:\program files\Common Files\InstallShield
2009-05-21 15:10 . 2009-05-21 15:08 -------- d-----w- h:\program files\Canon
2009-05-21 14:59 . 2009-05-21 14:59 -------- d-----w- h:\program files\Microcom
2009-06-12 15:49 . 2009-05-21 17:30 134648 ----a-w- h:\program files\mozilla firefox\components\brwsrcmp.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
2009-04-08 14:05 739688 ----a-w- h:\progra~1\MICROS~2\Office14\URLREDIR.DLL

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="h:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"ICQ"="h:\program files\ICQ6.5\ICQ.exe" [2009-03-01 172792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="h:\windows\system32\NvCpl.dll" [2009-04-30 13750272]
"NvMediaCenter"="h:\windows\system32\NvMcTray.dll" [2009-04-30 86016]
"CnxDslTaskBar"="h:\program files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" [2004-06-16 233472]
"OpwareSE2"="h:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]
"GrooveMonitor"="h:\program files\Microsoft Office 2007\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"PCSuiteTrayApplication"="h:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-06-18 271360]
"egui"="h:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-05-14 2029640]
"RTHDCPL"="RTHDCPL.EXE" - h:\windows\RTHDCPL.exe [2007-12-20 16860672]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="h:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="h:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 18:35 87352 ----a-w- h:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKLM\~\startupfolder\H:^Documents and Settings^All Users^Start Menu^Programs^Startup^OfficeSAS.lnk]
path=h:\documents and settings\All Users\Start Menu\Programs\Startup\OfficeSAS.lnk
backup=h:\windows\pss\OfficeSAS.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SQLWriter"=2 (0x2)
"SQLBrowser"=2 (0x2)
"PnkBstrA"=2 (0x2)
"MSSQL$SQLEXPRESS"=2 (0x2)
"LogMeIn"=2 (0x2)
"LMIMaint"=2 (0x2)
"ose"=3 (0x3)
"Lavasoft Ad-Aware Service"=2 (0x2)
"IDriverT"=3 (0x3)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"h:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"h:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"h:\\Program Files\\Microsoft Office 2007\\Office12\\OUTLOOK.EXE"=
"h:\\Program Files\\Microsoft Office 2007\\Office12\\GROOVE.EXE"=
"h:\\Program Files\\Microsoft Office 2007\\Office12\\ONENOTE.EXE"=
"h:\\Program Files\\ICQ6.5\\ICQ.exe"=

R0 Lbd;Lbd;h:\windows\system32\drivers\Lbd.sys [19.6.2009 16:51 64160]
R1 ehdrv;ehdrv;h:\windows\system32\drivers\ehdrv.sys [14.5.2009 15:47 107256]
R1 epfwtdir;epfwtdir;h:\windows\system32\drivers\epfwtdir.sys [14.5.2009 15:49 94360]
R2 ekrn;ESET Service;h:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [14.5.2009 15:47 731840]
R2 LMIInfo;LogMeIn Kernel Information Provider;h:\program files\LogMeIn\x86\rainfo.sys [24.7.2008 18:46 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;h:\windows\system32\drivers\LMIRfsDriver.sys [2.6.2009 14:46 47640]
R2 osppsvc;Office Software Protection Platform;h:\windows\system32\OSPPSVC.EXE [8.4.2009 15:37 4319136]
R3 CnxEtP;Conexant AccessRunner USB ADSL Adapter Filter Driver;h:\windows\system32\drivers\CnxEtP.sys [21.5.2009 16:59 131072]
R3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;h:\windows\system32\drivers\CnxEtU.sys [21.5.2009 16:59 614272]
R3 CnxTgNP;Conexant AccessRunner ADSL WAN PPPoE Adapter Driver;h:\windows\system32\drivers\CnxTgNP.sys [21.5.2009 17:06 60416]
S4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;h:\program files\Lavasoft\Ad-Aware\AAWService.exe [9.3.2009 21:06 1029456]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"h:\windows\system32\rundll32.exe" "h:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder

2009-07-13 h:\windows\Tasks\Ad-Aware Update (Weekly).job
- h:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 14:54]

2009-07-16 h:\windows\Tasks\User_Feed_Synchronization-{EE3D0329-82FC-4E41-B081-D7E1CB458182}.job
- h:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: E&xport to Microsoft Excel - h:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - h:\progra~1\MI69DF~1\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - h:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - h:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - h:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - h:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: S&end to OneNote - h:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - h:\program files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDow ... ab_nvd.cab
FF - ProfilePath - h:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\5z61w0zz.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - www.google.sk
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... id=afex&q=

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - trueh:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-17 15:41
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(760)
h:\windows\system32\LMIinit.dll
.
Completion time: 2009-07-17 15:42
ComboFix-quarantined-files.txt 2009-07-17 13:42

Pre-Run: 25 217 896 448 bytes free
Post-Run: 7 adresárov, 25 477 070 848 voľných bajtov

312 --- E O F --- 2009-07-15 17:55

Vyskakovanie nežiaducich stranok v novych oknach a ine... Vyřešeno

Vyskakovanie nežiaducich stranok v novych oknach a ine... Vyřešeno

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Re: Vyskakovanie nežiaducich stranok v novych oknach a ine...

Kdo je online