Kód: Vybrat vše
ComboFix 09-07-01.04 - PoKaRko 07.07.2009 1:23.1 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1583 [GMT 2:00]
Spuštěný z: c:\windows\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\WinPCap
c:\program files\WinPCap\daemon_mgm.exe
c:\program files\WinPCap\NetMonInstaller.exe
c:\program files\WinPCap\npf_mgm.exe
c:\program files\WinPCap\rpcapd.exe
c:\program files\WinPCap\Uninstall.exe
c:\windows\system32\28463
c:\windows\system32\28463\CUDQ.001
c:\windows\system32\drivers\npf.sys
c:\windows\system32\Packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\WanPacket.dll
c:\windows\system32\wpcap.dll
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_NPF
((((((((((((((((((((((((( Soubory vytvořené od 2009-06-06 do 2009-07-06 )))))))))))))))))))))))))))))))
.
2009-07-06 22:08 . 2009-07-06 22:08 -------- d-----w- C:\Scripteen Free Image Hosting Script V 2.3
2009-07-06 18:06 . 2009-07-06 18:06 -------- d-----w- c:\documents and settings\LocalService.NT AUTHORITY.001\Plocha
2009-07-04 21:52 . 2004-08-03 21:08 31616 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2009-07-04 21:52 . 2004-08-03 21:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-07-04 18:10 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2009-07-03 12:00 . 2005-05-03 15:43 69632 ----a-w- c:\windows\ALCMTR.EXE
2009-07-02 22:49 . 2009-07-02 22:49 -------- d-----w- c:\program files\Miranda IM1
2009-07-02 22:46 . 2009-07-04 20:34 -------- d-----w- c:\program files\Miranda IM
2009-07-02 19:21 . 2009-07-02 19:21 -------- d-----w- c:\program files\Opera
2009-07-02 17:17 . 2009-07-02 17:17 -------- d-----w- C:\32788R22FWJFW.0.tmp
2009-07-02 17:10 . 2004-08-03 21:08 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2009-07-02 10:24 . 2009-07-02 10:25 -------- d-----w- c:\program files\PhotoFiltre Studio X
2009-07-02 04:53 . 2009-03-09 19:06 15688 ----a-w- c:\windows\system32\lsdelete.exe
2009-06-30 17:39 . 2009-06-30 17:39 -------- d-----w- c:\program files\Gadwin Systems
2009-06-30 14:11 . 2009-06-30 14:11 -------- d-----w- C:\Fraps
2009-06-30 14:11 . 2009-06-30 14:11 -------- d-----w- c:\program files\Fajnovej Život 1.6
2009-06-30 14:04 . 2009-06-30 14:04 -------- d-----w- c:\program files\softendo.com
2009-06-30 06:19 . 1997-01-15 22:00 29696 ----a-w- c:\windows\system32\VB5STKIT.DLL
2009-06-30 06:19 . 2009-03-15 15:35 207872 ----a-w- c:\windows\system32\iwpsetup.exe
2009-06-29 16:07 . 2009-03-09 19:06 64160 ----a-w- c:\windows\system32\drivers\Lbd.sys
2009-06-29 16:06 . 2009-06-29 16:06 -------- d-----w- c:\program files\Lavasoft
2009-06-29 11:09 . 2009-06-29 11:09 -------- d-----w- c:\program files\AmazeCopy
2009-06-28 15:40 . 2008-03-03 16:21 568 ---ha-w- c:\windows\nod32fixtemdono.reg
2009-06-28 15:40 . 2008-03-03 12:25 5702 ---ha-w- c:\windows\nod32restoretemdono.reg
2009-06-28 15:13 . 2009-07-04 21:37 737280 ----a-w- c:\windows\iun6002.exe
2009-06-28 15:07 . 2009-06-28 15:07 0 ----a-w- c:\windows\nsreg.dat
2009-06-28 14:51 . 2009-06-04 14:39 457248 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-06-28 14:48 . 2004-08-17 13:49 4096 -c--a-w- c:\windows\system32\dllcache\ksuser.dll
2009-06-28 14:48 . 2004-08-17 13:49 4096 ----a-w- c:\windows\system32\ksuser.dll
2009-06-28 14:48 . 2004-08-03 21:08 60288 -c--a-w- c:\windows\system32\dllcache\drmk.sys
2009-06-28 14:48 . 2004-08-03 21:08 60288 ----a-w- c:\windows\system32\drivers\drmk.sys
2009-06-28 14:48 . 2006-10-08 19:51 23856 ----a-w- c:\windows\system32\spupdsvc.exe
2009-06-28 14:48 . 2005-07-13 12:47 2806272 ----a-w- c:\windows\ALCWZRD.EXE
2009-06-28 14:48 . 2005-07-13 07:37 14679552 ----a-w- c:\windows\RTHDCPL.EXE
2009-06-28 14:48 . 2005-07-06 12:45 2113536 ----a-w- c:\windows\MicCal.exe
2009-06-28 14:48 . 2005-07-13 14:26 3851264 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2009-06-28 14:48 . 2005-07-11 16:57 9699328 ----a-w- c:\windows\RTLCPL.EXE
2009-06-28 14:48 . 2005-06-21 12:09 90112 ----a-w- c:\windows\SoundMan.exe
2009-06-28 14:48 . 2005-05-18 10:38 40960 ----a-w- c:\windows\system32\ChCfg.exe
2009-06-28 14:47 . 2005-04-16 19:20 487424 ----a-w- c:\windows\RtlExUpd.dll
2009-06-28 14:23 . 2009-07-06 18:06 -------- d-sh--w- c:\documents and settings\LocalService.NT AUTHORITY.001
2009-06-28 14:23 . 2009-06-28 14:23 -------- d-----w- c:\documents and settings\LocalService.NT AUTHORITY.001\Data aplikací
2009-06-28 14:11 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2009-06-28 14:10 . 2004-08-17 15:43 58240 ----a-w- c:\windows\system32\drivers\redbook.sys
2009-06-28 14:10 . 2004-08-03 22:31 20992 ----a-w- c:\windows\system32\drivers\RTL8139.sys
2009-06-28 14:10 . 2004-08-17 13:49 75264 -c--a-w- c:\windows\system32\dllcache\usbui.dll
2009-06-28 14:10 . 2004-08-17 13:49 75264 ----a-w- c:\windows\system32\usbui.dll
2009-06-28 14:10 . 2004-08-17 15:44 5504 ----a-w- c:\windows\system32\drivers\intelide.sys
2009-06-28 14:03 . 2004-08-17 13:49 146944 ----a-w- c:\windows\system\WINSPOOL.DRV
2009-06-28 14:01 . 2009-06-29 16:07 -------- d--h--r- c:\documents and settings\All Users.WINDOWS\Data aplikací
2009-06-28 14:01 . 2009-06-28 14:03 -------- d--h--r- c:\documents and settings\Default User.WINDOWS\Data aplikací
2009-06-28 14:01 . 2009-06-28 12:18 -------- d-----w- c:\documents and settings\All Users.WINDOWS
2009-06-28 14:01 . 2009-07-06 23:22 -------- d--h--w- c:\documents and settings\Default User.WINDOWS
2009-06-28 12:25 . 2009-06-28 12:25 -------- d-----w- c:\documents and settings\NetworkService.NT AUTHORITY.001\Data aplikací
2009-06-28 12:24 . 2009-06-28 12:25 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY.001
2009-06-28 12:22 . 2004-08-17 13:49 7680 -c--a-w- c:\windows\system32\dllcache\pwsdata.dll
2009-06-28 12:21 . 2004-08-03 21:04 106496 -c--a-w- c:\windows\system32\dllcache\imekrcic.dll
2009-06-28 12:20 . 2001-11-24 17:45 45568 -c--a-w- c:\windows\system32\dllcache\browscap.dll
2009-06-28 12:18 . 2009-06-28 12:18 -------- d-sh--w- c:\documents and settings\All Users.WINDOWS\DRM
2009-06-28 12:16 . 2004-08-17 13:49 51712 -c--a-w- c:\windows\system32\dllcache\oobebaln.exe
2009-06-28 12:15 . 2001-11-24 18:10 5632 ----a-w- c:\windows\system32\write.exe
2009-06-28 12:14 . 2004-08-17 13:49 9728 -c--a-w- c:\windows\system32\dllcache\comrepl.exe
2009-06-28 11:36 . 2009-06-28 13:56 -------- d-----w- c:\windows\system32\NtmsData
2009-06-28 11:19 . 2009-06-28 11:20 -------- d-----w- c:\program files\Crawler
2009-06-28 11:19 . 2009-06-28 11:29 -------- d-----w- c:\program files\Spyware Terminator
2009-06-28 11:06 . 2009-06-28 11:06 -------- d-----w- C:\NVIDIA
2009-06-28 10:11 . 2009-07-06 23:22 -------- d-sh--w- c:\documents and settings\LocalService.NT AUTHORITY.000
2009-06-28 10:11 . 2009-06-28 10:11 -------- d-----w- c:\documents and settings\LocalService.NT AUTHORITY.000\Data aplikací
2009-06-28 10:11 . 2009-07-06 23:22 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY.000
2009-06-28 10:11 . 2009-06-28 10:11 -------- d-----w- c:\documents and settings\NetworkService.NT AUTHORITY.000\Data aplikací
2009-06-27 21:52 . 2009-07-04 21:38 -------- d-----w- c:\windows\system32\languages
2009-06-27 21:51 . 2009-06-28 15:12 -------- d-----w- c:\program files\XviD
2009-06-27 18:56 . 2009-06-27 18:56 -------- d-----w- c:\documents and settings\LocalService.NT AUTHORITY\Data aplikací
2009-06-27 18:56 . 2009-07-06 23:22 -------- d-sh--w- c:\documents and settings\LocalService.NT AUTHORITY
2009-06-27 18:54 . 2009-06-27 18:54 -------- d-----w- c:\documents and settings\NetworkService.NT AUTHORITY\Data aplikací
2009-06-27 18:54 . 2009-07-06 23:22 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY
2009-06-26 11:50 . 2009-06-26 11:50 -------- d-----w- c:\program files\Milionár 2.05 datadisk
2009-06-26 11:43 . 2009-06-26 11:44 -------- d-----w- C:\Chcete být milionářem LT
2009-06-26 09:18 . 2009-06-26 09:21 -------- d-----w- c:\program files\Google
2009-06-26 08:48 . 2009-06-26 08:48 -------- d-----w- c:\program files\Xponaut
2009-06-26 08:43 . 2009-06-28 13:56 -------- d-----w- c:\windows\system32\wbem\Repository
2009-06-20 19:56 . 2009-06-26 08:42 -------- d-----w- c:\program files\Screaming Bee
2009-06-15 18:38 . 2009-06-15 18:38 -------- d-----w- c:\program files\Blender Foundation
2009-06-12 19:30 . 2009-06-12 19:30 -------- d-----w- c:\program files\TweakNow RegCleaner
2009-06-12 19:27 . 2009-06-12 19:27 -------- d-----w- c:\program files\RegCleaner
2009-06-11 15:37 . 2009-06-11 15:40 -------- d-----w- c:\program files\ICQ6.5
2009-06-10 19:32 . 2009-06-10 19:32 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-06-10 19:30 . 2009-06-10 19:30 -------- d-----w- c:\program files\TeaTimer (Spybot - Search & Destroy)
2009-06-10 19:30 . 2009-06-10 19:30 -------- d-----w- c:\program files\Misc. Support Library (Spybot - Search & Destroy)
2009-06-10 16:33 . 2009-06-10 16:33 671744 ----a-w- c:\windows\system32\nvcuvid.dll
2009-06-10 16:33 . 2009-06-10 16:33 1720320 ----a-w- c:\windows\system32\nvcuda.dll
2009-06-10 16:33 . 2009-06-10 16:33 1580550 ----a-w- c:\windows\system32\nvdata.bin
2009-06-10 16:33 . 2009-06-10 16:33 1310720 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-06-10 06:28 . 2009-06-10 06:28 3510272 ----a-w- c:\windows\system32\nvgames.dll
2009-06-10 06:28 . 2009-06-10 06:28 5890048 ----a-w- c:\windows\system32\nvdispsr.dll
2009-06-10 06:28 . 2009-06-10 06:28 4022272 ----a-w- c:\windows\system32\nvdisps.dll
2009-06-10 06:28 . 2009-06-10 06:28 86016 ----a-w- c:\windows\system32\nvmctray.dll
2009-06-10 06:28 . 2009-06-10 06:28 168004 ----a-w- c:\windows\system32\nvsvc32.exe
2009-06-10 06:28 . 2009-06-10 06:28 13758464 ----a-w- c:\windows\system32\nvcpl.dll
2009-06-10 06:28 . 2006-10-22 10:22 147456 ----a-w- c:\windows\system32\nvcolor.exe
2009-06-10 06:28 . 2009-06-10 06:28 229376 ----a-w- c:\windows\system32\nvmccs.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-05 18:34 . 2009-07-05 18:34 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf
2009-07-05 18:34 . 2009-07-05 18:34 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-07-04 21:38 . 2009-04-09 18:31 -------- d-----w- c:\program files\Codec Pack - All In 1
2009-07-03 12:00 . 2009-03-03 19:42 -------- d-----w- c:\program files\Realtek
2009-07-02 23:21 . 2009-03-03 20:05 -------- d-----w- c:\program files\QIP
2009-07-02 07:04 . 2009-05-17 18:05 -------- d-----w- c:\program files\Vista Rainbar
2009-07-02 07:04 . 2009-04-18 08:32 -------- d-----w- c:\program files\WinHTTrack
2009-06-29 07:58 . 2009-03-20 09:40 -------- d-s---w- c:\program files\HLSW
2009-06-28 15:34 . 2001-11-24 18:02 389664 ----a-w- c:\windows\system32\perfh005.dat
2009-06-28 15:34 . 2001-11-24 18:02 68736 ----a-w- c:\windows\system32\perfc005.dat
2009-06-28 14:41 . 2009-06-28 12:18 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-06-28 14:41 . 2009-06-28 12:18 2426 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2009-06-28 14:41 . 2009-06-28 12:19 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2009-06-28 12:16 . 2009-06-28 12:16 21812 ----a-w- c:\windows\system32\emptyregdb.dat
2009-06-28 11:20 . 2009-03-03 20:00 -------- d-----w- c:\program files\Microsoft Silverlight
2009-06-28 11:04 . 2009-04-04 15:42 -------- d-----w- c:\program files\SpeedFan
2009-06-26 18:02 . 2009-04-30 13:48 -------- d-----w- c:\program files\WinFlip
2009-06-26 08:42 . 2009-03-03 19:42 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-26 08:42 . 2009-03-20 07:54 -------- d-----w- c:\program files\PowerISO
2009-06-18 18:14 . 2009-04-07 16:33 -------- d-----w- c:\program files\Cheat Engine
2009-06-17 13:43 . 2009-04-18 15:21 -------- d-----w- c:\program files\ZModeler
2009-06-13 07:32 . 2009-05-15 23:54 -------- d-----w- c:\program files\ESET
2009-06-10 20:08 . 2009-03-12 17:04 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-06-10 16:33 . 2009-06-28 14:53 457248 ----a-w- c:\windows\system32\nvudisp.exe
2009-06-10 16:33 . 2009-02-25 07:39 9998336 ----a-w- c:\windows\system32\nvoglnt.dll
2009-06-10 16:33 . 2009-02-25 07:39 815104 ----a-w- c:\windows\system32\nvapi.dll
2009-06-10 16:33 . 2009-02-25 07:39 151552 ----a-w- c:\windows\system32\nvcodins.dll
2009-06-10 16:33 . 2009-02-25 07:39 151552 ----a-w- c:\windows\system32\nvcod.dll
2009-06-10 16:33 . 2009-02-25 07:39 8087712 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-06-10 16:33 . 2009-02-25 07:39 5908608 ----a-w- c:\windows\system32\nv4_disp.dll
2009-06-09 20:06 . 2009-05-30 22:30 -------- d-----w- c:\program files\EasyPHP 3.0
2009-06-09 20:06 . 2009-05-17 16:07 -------- d-----w- c:\program files\MagicISO
2009-06-09 20:06 . 2009-05-01 16:54 -------- d-----w- c:\program files\Internet Download Manager
2009-06-06 10:23 . 2009-06-06 10:23 -------- d-----w- c:\program files\TeamViewer
2009-06-06 09:57 . 2009-03-03 20:05 -------- d-----w- c:\program files\Common Files\Adobe
2009-06-06 09:47 . 2009-06-06 09:47 -------- d-----w- c:\program files\Common Files\Vbox
2009-06-05 14:57 . 2009-06-05 14:57 -------- d-----w- c:\program files\Sony Ericsson
2009-06-04 05:10 . 2009-06-02 08:42 -------- d-----w- c:\program files\Rapidown
2009-06-01 19:55 . 2009-06-01 19:55 -------- d-----w- c:\program files\FreshDevices
2009-05-31 11:16 . 2009-03-06 14:48 -------- d-----w- c:\program files\GameSpy Arcade
2009-05-30 10:33 . 2009-05-30 10:33 -------- d-----w- c:\program files\NFSNation
2009-05-30 08:10 . 2009-03-03 20:06 -------- d-----w- c:\program files\IrfanView
2009-05-21 16:38 . 2009-05-21 16:38 -------- d-----w- c:\program files\GamePark
2009-05-19 21:02 . 2009-05-19 21:02 -------- d-----w- c:\program files\IDA Free
2009-05-17 18:05 . 2009-04-30 13:48 -------- d-----w- c:\program files\ViSplore
2009-05-17 18:05 . 2009-04-30 13:48 -------- d-----w- c:\program files\TrueTransparency
2009-05-17 16:58 . 2009-05-17 16:58 -------- d-----w- c:\program files\The KMPlayer1431
2009-05-17 16:58 . 2009-03-31 12:21 -------- d-----w- c:\program files\Translation manager
2009-05-17 16:58 . 2009-05-17 16:58 -------- d-----w- c:\program files\Common Files\SourceTec
2009-05-17 15:51 . 2009-03-03 19:46 -------- d-----w- c:\program files\Common Files\InstallShield
2009-05-17 15:15 . 2009-05-12 15:56 -------- d-----w- c:\program files\Far
2009-05-17 15:15 . 2009-05-02 13:11 -------- d-----w- c:\program files\fxwitz2
2009-05-17 14:45 . 2009-05-17 14:45 -------- d-----w- c:\program files\Yamicsoft
2009-05-13 17:44 . 2009-03-03 20:04 -------- d-----w- c:\program files\7-Zip
2009-05-09 08:35 . 2009-04-09 18:36 -------- d-----w- c:\program files\Krtecek
2009-05-08 22:59 . 2009-04-23 14:26 -------- d-----w- c:\program files\Teamspeak2_RC2
2009-05-02 20:47 . 2009-05-02 20:47 177 ----a-w- C:\DelUS.bat
2009-04-28 14:19 . 2009-04-28 14:17 3072 ----a-w- c:\documents and settings\NaRuTo\prvniprogram.exe
2009-06-29 11:51 . 2009-07-02 21:38 118784 ----a-w- c:\program files\opera\program\plugins\FDOperaPlugin.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-17 15360]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-06-30 2329224]
"QIP2005"="c:\program files\QIP\qip.exe" [2009-02-12 3276288]
"Gadwin PrintScreen"="c:\program files\Gadwin Systems\PrintScreen\PrintScreen.exe" [2008-12-09 495616]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-17 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13758464]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-06-10 86016]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2007-12-21 1443072]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" - c:\windows\system32\HdAShCut.exe [2005-01-07 61952]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1622016]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\SoundMan.exe [2005-06-21 90112]
"AlcWzrd"="ALCWZRD.EXE" - c:\windows\ALCWZRD.EXE [2005-07-13 2806272]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Down2Home.lnk - d:\program files\Down2Home\Down2Home.exe [2003-3-11 307200]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"d:\\hry\\Valve\\hl.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [29.6.2009 18:07 64160]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [21.12.2007 8:21 33800]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [21.12.2007 8:21 468224]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [9.3.2009 21:06 951632]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\regedt32.exe [24.11.2001 20:03 3584]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [25.2.2009 9:16 13352]
.
Obsah adresáře 'Naplánované úlohy'
2009-07-06 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 19:06]
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
.
------- Doplňkový sken -------
.
IE: Baixar com o Rapidown... - c:\program files\Rapidown\rapidownGet.htm
IE: Baixar tudo com o Rapidown... - c:\program files\Rapidown\rapidownGetAll.htm
IE: {{57E91B47-F40A-11D1-B792-444553540011} - c:\program files\Rapidown\rapidown.exe
IE: {{BB3DDC19-FC04-4359-9EAF-255447847F6C} - c:\program files\FreshDevices\FreshDownload\fd.exe
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-07 01:28
Windows 5.1.2600 Service Pack 2 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(3660)
c:\windows\system32\msi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2009-07-06 1:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-07-06 23:29
ComboFix2.txt 2009-06-12 19:15
Před spuštěním: 3 542 437 888
Po spuštění: 3 503 210 496
276
