ComboFix 08-10-30.13 - Lucka 2008-10-31 20:27:42.1 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.1.1029.18.1556 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Lucka\Plocha\ComboFix.exe
* Vytvořen nový Bod Obnovení
* Resident AV is active
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Lucka\Data aplikací\inst.exe
C:\Documents and Settings\Lucka\Local Settings\Temporary Internet Files\ip3picfile.temp
C:\Documents and Settings\Lucka\Local Settings\Temporary Internet Files\ip3Wmapic.temp
C:\WINDOWS\system32\bdjjlmku.ini
C:\WINDOWS\system32\cvayqbyf.ini
C:\WINDOWS\system32\irlsnelq.ini
C:\WINDOWS\system32\kjllm.bak1
C:\WINDOWS\system32\kjllm.bak2
C:\WINDOWS\system32\kjllm.ini
C:\WINDOWS\system32\kjllm.ini2
C:\WINDOWS\system32\kjllm.tmp
C:\WINDOWS\system32\koeqfaqg.ini
C:\WINDOWS\system32\ltilrldf.ini
C:\WINDOWS\system32\naawtfya.ini
C:\WINDOWS\system32\naubqlvl.ini
C:\WINDOWS\system32\pivimxnc.ini
C:\WINDOWS\system32\qakdwvrm.ini
C:\WINDOWS\system32\qqstv.bak1
C:\WINDOWS\system32\qqstv.bak2
C:\WINDOWS\system32\qqstv.ini
C:\WINDOWS\system32\qqstv.ini2
C:\WINDOWS\system32\qqstv.tmp
C:\WINDOWS\system32\qrrbbqss.ini
C:\WINDOWS\system32\tsaobjgm.ini
C:\WINDOWS\system32\ubttqvhl.ini
C:\WINDOWS\system32\uvqjghma.ini
C:\WINDOWS\system32\wxsutndl.ini
C:\WINDOWS\system32\xjffmnis.ini
C:\WINDOWS\system32\xyadd.bak1
C:\WINDOWS\system32\xyadd.bak2
C:\WINDOWS\system32\xyadd.ini
C:\WINDOWS\system32\xyadd.ini2
C:\WINDOWS\system32\xyadd.tmp
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_FREEZESCREENSAVER
-------\Service_FreezeScreenSaver
((((((((((((((((((((((((( Soubory vytvořené od 2008-09-28 do 2008-10-31 )))))))))))))))))))))))))))))))
.
2008-10-31 16:02 . 2008-10-31 16:02 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-31 16:02 . 2008-10-31 16:02 <DIR> d-------- C:\Documents and Settings\Lucka\Data aplikací\Malwarebytes
2008-10-31 16:02 . 2008-10-31 16:02 <DIR> d-------- C:\Documents and Settings\Lucka\Data aplikací\Malwarebytes
2008-10-31 16:02 . 2008-10-31 16:02 <DIR> d-------- C:\Documents and Settings\Lucka\Data aplikací\Malwarebytes
2008-10-31 16:02 . 2008-10-31 16:02 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2008-10-31 16:02 . 2008-10-22 16:10 38,496 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-31 16:02 . 2008-10-22 16:10 15,504 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-10-31 14:42 . 2008-10-31 14:42 <DIR> d-------- C:\Program Files\Trend Micro
2008-10-24 12:36 . 2008-10-15 17:38 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2008-10-20 16:11 . 2008-10-20 16:12 332 --a------ C:\WINDOWS\desctemp.dat
2008-10-19 19:17 . 2008-10-19 19:17 <DIR> d-------- C:\smolici 01
2008-10-15 14:13 . 2008-09-08 11:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys
2008-10-15 14:12 . 2008-08-14 14:26 2,191,360 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-10-15 14:12 . 2008-08-14 14:26 2,147,328 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-10-15 14:12 . 2008-08-14 14:26 2,068,224 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-10-15 14:12 . 2008-08-14 14:26 2,025,984 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-10-15 14:12 . 2008-09-15 16:27 1,846,400 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys
2008-10-08 21:35 . 2008-10-09 14:16 717 --a------ C:\WINDOWS\tcburner.ini
2008-10-01 18:33 . 2008-10-19 19:16 <DIR> d-------- C:\smolici 1
2008-09-23 20:49 . 2008-10-08 16:29 <DIR> d-------- C:\Heroes
2008-09-17 18:34 . 2008-09-17 18:34 <DIR> d-------- C:\Program Files\ParadisePoker
2008-09-01 20:41 . 2008-04-13 19:45 26,112 --a------ C:\WINDOWS\system32\drivers\usbser.sys
2008-09-01 20:41 . 2008-04-13 19:45 26,112 --a--c--- C:\WINDOWS\system32\dllcache\usbser.sys
2008-09-01 20:41 . 2008-09-01 20:41 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-09-01 20:41 . 2008-09-01 20:41 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2008-09-01 20:33 . 2008-05-07 06:39 1,419,232 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-09-01 20:33 . 2008-05-07 06:38 659,968 --a------ C:\WINDOWS\system32\nmwcdcocls.dll
2008-09-01 20:33 . 2008-05-07 06:38 20,864 --a------ C:\WINDOWS\system32\drivers\ccdcmbo.sys
2008-09-01 20:33 . 2008-05-07 06:38 17,536 --a------ C:\WINDOWS\system32\drivers\ccdcmb.sys
2008-09-01 20:33 . 2008-05-07 06:38 8,064 --a------ C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2008-09-01 20:33 . 2008-06-06 08:24 8,064 --a------ C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2008-09-01 20:32 . 2008-02-01 15:17 138,112 --a------ C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2008-09-01 20:32 . 2008-02-01 15:17 8,320 --a------ C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-26 19:47 --------- d-----w C:\Program Files\PKR
2008-10-23 19:48 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Skype
2008-10-23 19:48 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Skype
2008-10-23 19:48 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Skype
2008-10-20 14:51 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Nokia Multimedia Player
2008-10-20 14:51 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Nokia Multimedia Player
2008-10-20 14:51 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Nokia Multimedia Player
2008-10-19 18:16 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Vso
2008-10-19 18:16 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Vso
2008-10-19 18:16 --------- d-----w C:\Documents and Settings\Lucka\Data aplikací\Vso
2008-10-08 21:05 --------- d-----w C:\Program Files\Nero
2008-10-08 19:29 --------- d-----w C:\Program Files\Common Files\Ahead
2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-09-01 19:33 --------- d-----w C:\Program Files\Nokia
2008-09-01 19:33 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Installations
2008-09-01 19:31 --------- d-----w C:\Program Files\Common Files\Nokia
2008-08-30 11:05 163,712 ----a-w C:\WINDOWS\system32\drivers\vidstub.sys
2008-08-30 11:05 --------- d-----w C:\Program Files\Stardock
2008-08-30 11:05 --------- d-----w C:\Program Files\Common Files\Stardock
2008-08-29 13:50 --------- d-----w C:\Program Files\FileSubmit
2007-08-06 22:12 47,360 ----a-w C:\Documents and Settings\Lucka\Data aplikací\pcouffin.sys
2007-08-06 22:12 47,360 ----a-w C:\Documents and Settings\Lucka\Data aplikací\pcouffin.sys
2007-08-06 22:12 47,360 ----a-w C:\Documents and Settings\Lucka\Data aplikací\pcouffin.sys
2007-07-06 07:54 35,352 ----a-w C:\Documents and Settings\Lucka\Data aplikací\GDIPFONTCACHEV1.DAT
2007-07-06 07:54 35,352 ----a-w C:\Documents and Settings\Lucka\Data aplikací\GDIPFONTCACHEV1.DAT
2007-07-06 07:54 35,352 ----a-w C:\Documents and Settings\Lucka\Data aplikací\GDIPFONTCACHEV1.DAT
2006-12-29 20:11 87,608 ----a-w C:\Documents and Settings\Lucka\Data aplikací\ezpinst.exe
2006-12-29 20:11 87,608 ----a-w C:\Documents and Settings\Lucka\Data aplikací\ezpinst.exe
2006-12-29 20:11 87,608 ----a-w C:\Documents and Settings\Lucka\Data aplikací\ezpinst.exe
2006-12-17 19:16 1 ----a-w C:\Documents and Settings\Lucka\SI.bin
2006-07-17 13:32 0 ----a-w C:\Documents and Settings\Lucka\loaded.exe
2006-04-27 08:10 32 ------r C:\Documents and Settings\All Users\hash.dat
.
------- Sigcheck -------
2008-04-14 04:22 976384 13e794e5591776cbc71055a7b3cc1d5f C:\WINDOWS\explorer.exe
2007-06-13 14:11 1033728 9b32416bd5988c97b6397ce0b02caf97 C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
2007-06-13 14:23 1033728 ed7b460b142a32097b8a8f6ecc941815 C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
2004-08-17 14:49 974848 4d32d7ffc2f583fe21ef0a4f99eabb12 C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
2008-04-14 04:22 976384 13e794e5591776cbc71055a7b3cc1d5f C:\WINDOWS\ServicePackFiles\i386\explorer.exe
2001-10-25 13:00 1001472 0348a56a9e9a658ae3ad15b42026498e C:\WINDOWS\system32\_LHTrans\explorer.exe
2008-07-18 21:10 68808 136896c2cdc3f689876e0d44485153ea C:\WINDOWS\ServicePackFiles\i386\wuauclt.exe
2008-07-18 21:10 68808 136896c2cdc3f689876e0d44485153ea C:\WINDOWS\system32\wuauclt.exe
2008-07-18 21:10 53448 d316e28958873859b88d72cf47ad1ea5 C:\WINDOWS\system32\dllcache\wuauclt.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]
"Google Update"="C:\Documents and Settings\Lucka\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2008-10-02 133104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [2004-08-22 81920]
"BootSkin Startup Jobs"="C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\BootSkin.exe" [2004-04-26 270336]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
NOD32 Control Center.lnk - C:\Program Files\ESET\nod32kui.exe [2006-12-11 921600]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 12:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2007-09-23 09:10 229376 C:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=wbsys.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.imaadpcm"= :imaadp32.acm
"msacm.msadpcm"= :msadp32.acm
"msacm.msgsm610"= :msgsm32.acm
"msacm.trspch"= :tssoft32.acm
"vidc.cvid"= :iccvid.dll
"vidc.mrle"= :msrle32.dll
"vidc.msvc"= :msvidc32.dll
"msacm.l3acm"= l3codecp.acm
"VIDC.I420"= i420vfw.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^ATI CATALYST System Tray.lnk]
backup=C:\WINDOWS\pss\ATI CATALYST System Tray.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^msmsgs.exe]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Active Desktop Calendar
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--a------ 2008-04-14 04:22 15360 C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication]
--a------ 2006-06-15 12:36 229376 C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2006-06-15 21:55 282624 C:\Program Files\QuickTime\qttask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--------- 2005-12-07 21:57 30208 C:\Programy\PowerDVD\PDVDServ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C-Media Mixer]
-ra------ 2002-01-29 01:16 1228800 C:\WINDOWS\mixer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sp_rssrv"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\QIP\\qip.exe"=
"C:\\Programy\\BitComet\\BitComet.exe"=
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"C:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"C:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\Programy\\Opera\\Opera.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programy\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
"1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
"500:UDP"= 500:UDP:@xpsp2res.dll,-22017
R0 d347bus3;d347bus3;C:\WINDOWS\system32\DRIVERS\d347bus3.sys [2004-08-22 155136]
R0 d347prt3;d347prt3;C:\WINDOWS\system32\Drivers\d347prt3.sys [2004-08-22 5248]
R2 USBDLM;USBDLM;C:\Program Files\USBDLM\USBDLM.exe [2008-04-20 156672]
R3 SNP325;USB PC Camera (SNPSTD325);C:\WINDOWS\system32\DRIVERS\snp325.sys [2006-11-20 10218624]
S2 Remote Administration Service;Remote Administration Service;C:\WINDOWS\System32\rundll32.exe [2008-04-14 33280]
S3 gAGP440p;gAGP440p;C:\DOCUME~1\Lucka\LOCALS~1\Temp\gAGP440p.sys [ ]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2008-02-01 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2008-02-01 8320]
S3 PRODIGY;PRODIGY;C:\WINDOWS\system32\Drivers\PRODIGY.SYS [2006-08-29 32377]
.
Obsah adresáře 'Naplánované úlohy'
2008-10-31 C:\WINDOWS\Tasks\GoogleUpdateTaskUser.job
- C:\Documents and Settings\Lucka\Local Settings\Data aplikac []
2006-02-27 C:\WINDOWS\Tasks\XoftSpy.job
- C:\Program Files\XoftSpy\XoftSpy.exe []
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
Notify-mlljk - (no file)
MSConfigStartUp-NeroFilterCheck - C:\WINDOWS\System32\NeroCheck.exe
.
------- Doplňkový sken -------
.
R0 -: HKCU-Main,SearchMigratedDefaultURL =
hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
R0 -: HKCU-Main,Start Page =
hxxp://www.google.comR1 -: HKCU-Internet Connection Wizard,ShellNext = iexplore
O8 -: Add to AMV Converter...
O8 -: E&xportovat do aplikace Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 -: MediaManager tool grab multimedia file
O9 -: {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 -: {CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 -: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 -: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 -: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O16 -: {47CEF84E-92D8-4C4A-86D7-CB982889DCC0} -
hxxp://mp1.mplay.oberon-media.com/client/flashnet.cabC:\WINDOWS\Downloaded Program Files\flashnet.inf
C:\WINDOWS\Downloaded Program Files\FlashNet.dll
O16 -: {C942A79B-01ED-47EE-9DAA-1EFAA70DAB8E} -
hxxp://www.muiegaozsicur.com/ocx/intES_ver22b.CABC:\WINDOWS\Downloaded Program Files\int_ver22b.INF
C:\WINDOWS\System32\OBJSAFE.TLB
C:\WINDOWS\Downloaded Program Files\int_ver22b.ocx
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-10-31 20:33:50
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
PROCES: C:\WINDOWS\system32\lsass.exe
-> C:\Program Files\Eset\pr_imon.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
C:\WINDOWS\system32\ati2evxx.exe
C:\Program Files\ESET\nod32krn.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\UAService7.exe
.
**************************************************************************
.
Celkový čas: 2008-10-31 20:47:42 - počítač byl restartován
ComboFix-quarantined-files.txt 2008-10-31 19:47:03
Před spuštěním: Volných bajtů: 10 284 380 160
Po spuštění: Volných bajtů: 15,798,960,128
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn
283 --- E O F --- 2008-10-24 12:10:05
