ComboFix 10-01-02.05 - FazyCZ 03.01.2010 21:36:29.1.1 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2047.1353 [GMT 1:00]
Spuštěný z: c:\users\FazyCZ\Desktop\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
SP: ESET Smart Security 3.0 *enabled* (Updated) {E5E70D32-0101-4B98-A4D6-D1D15C3BB448}
* Rezidentní štít AV je zapnutý
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\install.exe
c:\windows\Downloaded Program Files\IDropPTB.dll
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-03 do 2010-01-03 )))))))))))))))))))))))))))))))
.
2010-01-03 20:43 . 2010-01-03 20:44 -------- d-----w- c:\users\FazyCZ\AppData\Local\temp
2010-01-03 20:43 . 2010-01-03 20:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-01-03 14:41 . 2010-01-03 14:41 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2010-01-03 14:41 . 2010-01-03 14:41 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Atari
2010-01-03 14:40 . 2010-01-03 14:40 -------- d-----w- c:\program files\Common Files\PocketSoft
2010-01-03 14:40 . 2002-02-27 17:50 197120 ----a-w- c:\windows\patchw32.dll
2010-01-03 14:35 . 2010-01-03 14:35 -------- d-----w- c:\program files\Atari
2010-01-02 20:11 . 2010-01-02 20:11 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Malwarebytes
2010-01-02 20:11 . 2009-12-30 13:55 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-02 20:11 . 2010-01-02 20:11 -------- d-----w- c:\programdata\Malwarebytes
2010-01-02 20:11 . 2009-12-30 13:54 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-02 20:11 . 2010-01-02 20:11 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-02 12:42 . 2010-01-02 12:42 -------- d-----w- C:\_OTL
2010-01-02 00:14 . 2010-01-02 00:14 -------- d-----w- c:\program files\MSXML 4.0
2009-12-31 21:01 . 2009-12-31 21:01 -------- d-----w- c:\users\FazyCZ\AppData\Local\Opera
2009-12-31 21:00 . 2010-01-01 23:28 -------- d-----w- c:\program files\Opera
2009-12-31 13:24 . 2009-12-31 13:24 10134 ----a-r- c:\users\FazyCZ\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2009-12-31 13:24 . 2009-12-31 13:24 -------- d-----w- c:\program files\Microsoft WSE
2009-12-31 13:23 . 2009-12-31 15:16 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Autodesk
2009-12-31 13:22 . 2009-12-31 13:42 -------- d-----w- c:\users\FazyCZ\AppData\Local\Autodesk
2009-12-31 13:22 . 2009-12-31 13:42 -------- d-----w- c:\programdata\Autodesk
2009-12-31 13:22 . 2009-12-31 13:23 -------- d-----w- c:\program files\DWG TrueView 2010
2009-12-31 13:19 . 2009-12-31 13:51 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2009-12-31 13:19 . 2009-12-31 13:58 -------- d-----w- c:\program files\Autodesk
2009-12-31 12:53 . 2009-12-31 12:57 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\FileZilla
2009-12-31 12:53 . 2009-12-31 12:53 -------- d-----w- c:\program files\FileZilla FTP Client
2009-12-29 18:41 . 2009-12-29 18:41 -------- d-----w- c:\users\FazyCZ\AppData\Local\Criterion Games
2009-12-29 17:21 . 2009-12-29 17:21 -------- d-----w- c:\program files\Electronic Arts
2009-12-27 12:29 . 2009-12-29 17:17 -------- d-----w- c:\users\FazyCZ\Other
2009-12-27 10:45 . 2009-12-27 10:45 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Creative
2009-12-27 10:40 . 2009-12-28 09:38 -------- d-----w- c:\programdata\Creative
2009-12-27 10:40 . 2009-12-27 10:40 -------- d--h--w- c:\programdata\{615DB4DC-B7C1-4125-9858-78EF460B76D2}
2009-12-27 10:40 . 2009-12-27 10:40 2422433 ----a-w- c:\programdata\{615DB4DC-B7C1-4125-9858-78EF460B76D2}\setup.exe
2009-12-27 10:39 . 2009-03-30 09:04 2597340 ----a-w- c:\programdata\{9BA38AC8-8A1E-463A-97ED-AE291D3E1A06}\Setup.exe
2009-12-27 10:39 . 2010-01-02 09:44 -------- d-----w- c:\program files\Creative
2009-12-27 10:39 . 2009-12-27 10:39 -------- d--h--w- c:\programdata\{9BA38AC8-8A1E-463A-97ED-AE291D3E1A06}
2009-12-26 17:18 . 2009-12-30 09:57 -------- d-----w- c:\program files\EVGA Precision
2009-12-26 08:55 . 2009-12-26 08:58 -------- d-----w- c:\users\FazyCZ\Nová složka (3)
2009-12-25 12:28 . 2009-12-27 14:30 -------- d-----w- c:\users\FazyCZ\AppData\Local\NFS Underground 2
2009-12-24 09:47 . 2008-01-07 13:29 352 ---ha-w- c:\windows\nod32fixtemdono.reg
2009-12-24 09:27 . 2009-12-24 09:27 -------- d-----w- c:\program files\ESET
2009-12-23 16:00 . 2009-11-20 18:18 4990056 ----a-w- c:\windows\system32\NVStWiz.exe
2009-12-23 11:47 . 2009-12-23 11:49 -------- d-----w- c:\users\FazyCZ\zaloha
2009-12-21 13:38 . 2009-12-21 13:38 -------- d-----w- C:\Autodesk
2009-12-20 22:16 . 2009-12-20 22:16 -------- d-----w- c:\program files\CPUID
2009-12-20 22:16 . 2009-03-27 00:16 12672 ----a-w- c:\windows\system32\drivers\cpuz132_x32.sys
2009-12-20 13:38 . 2009-12-20 13:38 -------- d-----w- c:\program files\oZone3D
2009-12-17 19:04 . 2010-01-01 23:26 -------- d-----w- C:\games
2009-12-17 18:56 . 2009-12-18 13:54 -------- d-----w- c:\program files\EA GAMES
2009-12-14 20:19 . 2009-12-30 21:18 -------- d-----w- c:\programdata\Codemasters
2009-12-14 20:10 . 2009-07-13 18:04 839680 ----a-w- c:\windows\system32\mkl_vml_p4.dll
2009-12-14 20:10 . 2009-07-13 18:04 532480 ----a-w- c:\windows\system32\mkl_vml_p3.dll
2009-12-14 20:10 . 2009-07-13 18:04 512000 ----a-w- c:\windows\system32\mkl_vml_def.dll
2009-12-14 20:10 . 2009-07-13 18:04 3485696 ----a-w- c:\windows\system32\mkl_p4.dll
2009-12-14 20:10 . 2009-07-13 18:04 2793472 ----a-w- c:\windows\system32\mkl_p3.dll
2009-12-14 20:10 . 2009-07-13 18:04 2125824 ----a-w- c:\windows\system32\mkl_lapack64.dll
2009-12-14 20:10 . 2009-10-16 10:19 872448 ----a-w- c:\windows\system32\rapture3d_oal.dll
2009-12-14 20:10 . 2009-07-13 18:04 2441216 ----a-w- c:\windows\system32\mkl_def.dll
2009-12-14 20:10 . 2009-07-13 18:04 2174976 ----a-w- c:\windows\system32\mkl_lapack32.dll
2009-12-14 20:10 . 2009-07-13 18:04 184320 ----a-w- c:\windows\system32\libguide40.dll
2009-12-14 20:10 . 2009-12-14 20:10 -------- d-----w- c:\program files\BRS
2009-12-14 20:09 . 2009-12-30 19:11 -------- d-----w- c:\program files\OpenAL
2009-12-11 14:28 . 2009-12-27 19:31 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\dvdcss
2009-12-09 20:07 . 2009-12-30 18:49 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\vlc
2009-12-09 20:06 . 2009-12-09 20:06 -------- d-----w- c:\program files\VideoLAN
2009-12-09 20:05 . 2009-12-09 20:11 -------- d-----w- C:\Root
2009-12-09 19:40 . 2009-12-09 19:40 -------- d-----w- c:\program files\Microsoft Works
2009-12-09 19:39 . 2009-12-09 19:39 -------- d-----w- c:\windows\PCHEALTH
2009-12-09 19:39 . 2009-12-09 19:39 -------- d-----w- c:\program files\Microsoft.NET
2009-12-09 19:36 . 2009-12-09 19:36 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-12-09 19:36 . 2009-12-09 19:36 -------- d-----w- c:\users\FazyCZ\AppData\Local\Microsoft Help
2009-12-09 19:36 . 2009-12-09 19:52 -------- d-----w- c:\programdata\Microsoft Help
2009-12-09 19:34 . 2009-12-09 19:34 -------- d-----r- C:\MSOCache
2009-12-09 19:11 . 2009-12-10 19:19 -------- d-----w- c:\users\FazyCZ\Elastomania
2009-12-08 18:46 . 2009-12-08 18:46 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\DAEMON Tools Pro
2009-12-07 20:55 . 2009-12-07 20:55 -------- d-----w- c:\windows\Sun
2009-12-07 20:24 . 2009-12-07 20:24 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Leadertech
2009-12-05 19:27 . 2009-10-11 03:17 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-12-05 19:27 . 2009-12-06 09:07 -------- d-----w- c:\program files\Java
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-03 20:42 . 2009-07-14 08:44 622422 ----a-w- c:\windows\system32\perfh005.dat
2010-01-03 20:42 . 2009-07-14 08:44 118604 ----a-w- c:\windows\system32\perfc005.dat
2010-01-03 20:35 . 2009-11-07 16:15 -------- d-----w- c:\programdata\NVIDIA
2010-01-03 20:30 . 2009-11-29 13:40 -------- d-----w- c:\program files\Trillian
2010-01-03 18:28 . 2009-11-07 17:05 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\AIMP
2010-01-03 14:52 . 2009-11-12 17:58 -------- d-----w- c:\program files\Mystiq.org Counter-Strike 1.6
2010-01-03 14:35 . 2009-11-07 16:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-03 12:17 . 2009-11-15 11:26 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\uTorrent
2010-01-01 23:30 . 2009-11-16 14:47 -------- d-----w- c:\program files\Sanny Builder 3
2009-12-31 15:18 . 2009-11-26 17:37 -------- d-----w- c:\programdata\FLEXnet
2009-12-31 15:02 . 2009-11-07 16:10 160368 ----a-w- c:\users\FazyCZ\AppData\Local\GDIPFONTCACHEV1.DAT
2009-12-30 18:56 . 2009-11-07 18:07 -------- d-----w- c:\program files\Codemasters
2009-12-29 21:17 . 2009-07-14 04:52 -------- d-----w- c:\program files\Microsoft Games
2009-12-29 21:17 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2009-12-29 15:42 . 2009-11-11 14:35 -------- d-----w- c:\program files\Common Files\Apple
2009-12-21 14:41 . 2009-11-14 12:21 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2009-12-21 14:40 . 2009-11-23 13:37 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2009-12-21 14:20 . 2009-12-02 16:12 -------- d-----w- c:\program files\Need for Speed - Shift
2009-12-19 17:35 . 2009-11-16 12:34 138464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-12-19 17:35 . 2009-11-16 12:19 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-12-19 17:35 . 2009-11-16 12:34 111928 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-12-19 11:34 . 2009-11-13 16:04 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-12-18 14:59 . 2009-11-13 16:04 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2009-12-17 18:50 . 2009-07-14 04:52 -------- d-----w- c:\program files\DVD Maker
2009-12-14 20:09 . 2009-11-07 17:25 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2009-12-14 20:09 . 2009-11-07 17:25 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2009-12-09 20:05 . 2009-11-16 12:46 -------- d-----w- c:\program files\Activision
2009-12-09 19:40 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2009-12-06 21:02 . 2009-11-07 18:12 -------- d-----w- c:\program files\CSS
2009-12-06 13:08 . 2009-11-25 20:37 -------- d-----w- c:\program files\Steam
2009-12-06 09:17 . 2009-11-08 09:01 -------- d-----w- c:\program files\LFS
2009-12-03 16:45 . 2009-11-29 13:41 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Trillian
2009-12-01 16:27 . 2009-12-01 16:26 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\MyPhoneExplorer
2009-12-01 16:26 . 2009-12-01 16:26 -------- d-----w- c:\program files\MyPhoneExplorer
2009-12-01 16:11 . 2009-12-01 16:11 -------- d-----w- c:\program files\Sierra
2009-11-29 14:40 . 2009-11-29 14:40 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Stardock
2009-11-29 14:39 . 2009-11-29 14:39 -------- dc-h--w- c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
2009-11-29 14:39 . 2009-11-29 14:39 -------- d-----w- c:\program files\Stardock
2009-11-28 10:26 . 2009-11-07 17:35 -------- d-----w- c:\program files\Left 4 Dead
2009-11-27 12:32 . 2009-11-26 16:28 -------- d-----w- c:\program files\Common Files\Adobe
2009-11-26 18:59 . 2009-11-07 17:20 -------- d-----w- c:\program files\Futuremark
2009-11-26 18:46 . 2009-11-07 16:15 -------- d-----w- c:\program files\NVIDIA Corporation
2009-11-26 17:42 . 2009-11-25 20:37 -------- d-----w- c:\program files\Common Files\Steam
2009-11-26 17:33 . 2009-11-26 17:33 -------- d-----w- c:\programdata\ALM
2009-11-26 17:23 . 2009-11-26 17:23 -------- d-----w- c:\program files\Adobe Media Player
2009-11-26 17:22 . 2009-11-26 17:22 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-11-26 17:19 . 2009-11-26 17:19 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-11-20 19:33 . 2009-11-20 19:33 812648 ----a-w- c:\windows\system32\nvsvc.dll
2009-11-20 19:33 . 2009-11-20 19:33 1323624 ----a-w- c:\windows\system32\nvsvcr.dll
2009-11-20 19:33 . 2009-11-20 19:33 12685928 ----a-w- c:\windows\system32\nvcpl.dll
2009-11-20 19:33 . 2009-11-20 19:33 122984 ----a-w- c:\windows\system32\nvvsvc.exe
2009-11-20 19:33 . 2009-11-20 19:33 110184 ----a-w- c:\windows\system32\nvmctray.dll
2009-11-19 20:42 . 2009-11-07 16:14 592488 ----a-w- c:\windows\system32\nvuninst.exe
2009-11-19 13:14 . 2009-11-12 18:36 -------- d-----w- c:\program files\Rockstar Games
2009-11-16 13:09 . 2009-11-16 12:20 22328 ----a-w- c:\users\FazyCZ\AppData\Roaming\PnkBstrK.sys
2009-11-16 13:09 . 2009-11-16 12:20 22328 ----a-w- c:\users\FazyCZ\AppData\Roaming\PnkBstrK.sys
2009-11-15 11:28 . 2009-11-15 11:28 -------- d-----w- c:\program files\uTorrent
2009-11-14 14:12 . 2009-11-14 14:12 -------- d-----w- c:\program files\AMD
2009-11-13 23:39 . 2009-11-13 23:39 -------- d-----w- c:\programdata\Futuremark
2009-11-13 23:35 . 2009-11-13 23:35 -------- d-----w- c:\program files\Common Files\Futuremark Shared
2009-11-12 20:40 . 2009-11-12 20:40 -------- d-----w- c:\program files\BreakPoint Software
2009-11-12 20:13 . 2009-11-12 19:11 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-11-12 19:13 . 2009-11-09 20:02 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-11-12 16:42 . 2009-11-12 16:42 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2009-11-11 14:38 . 2009-11-11 14:37 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\Apple Computer
2009-11-11 14:36 . 2009-11-11 14:36 -------- d-----w- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-11 14:36 . 2009-11-11 14:36 -------- d-----w- c:\program files\iTunes
2009-11-11 14:36 . 2009-11-11 14:36 -------- d-----w- c:\program files\iPod
2009-11-11 14:36 . 2009-11-11 14:35 -------- d-----w- c:\programdata\Apple Computer
2009-11-11 14:36 . 2009-11-11 14:35 -------- d-----w- c:\program files\QuickTime
2009-11-11 14:35 . 2009-11-11 14:35 -------- d-----w- c:\program files\Apple Software Update
2009-11-11 14:35 . 2009-11-11 14:35 -------- d-----w- c:\programdata\Apple
2009-11-11 14:29 . 2009-11-11 14:29 -------- d-----w- c:\program files\TuneUp Utilities 2010
2009-11-11 14:29 . 2009-11-11 14:29 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\TuneUp Software
2009-11-11 14:29 . 2009-11-11 14:28 -------- d-----w- c:\programdata\TuneUp Software
2009-11-11 14:28 . 2009-11-11 14:28 -------- d-sh--w- c:\programdata\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2009-11-09 20:02 . 2009-11-09 20:02 -------- d--h--r- c:\users\FazyCZ\AppData\Roaming\SecuROM
2009-11-09 19:50 . 2009-11-09 19:50 -------- d-----w- c:\program files\Aspyr
2009-11-09 17:43 . 2009-11-09 17:43 -------- d-----w- c:\program files\Alchemy Elixir
2009-11-08 16:48 . 2009-11-08 16:48 0 ----a-w- c:\windows\nsreg.dat
2009-11-07 20:37 . 2009-11-07 16:14 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-11-07 17:35 . 2009-11-07 17:35 -------- d-----w- c:\program files\Doom 3
2009-11-07 17:30 . 2009-11-07 17:26 -------- d-----w- c:\users\FazyCZ\AppData\Roaming\DAEMON Tools Lite
2009-11-07 17:28 . 2009-11-07 17:28 -------- d-----w- c:\programdata\DAEMON Tools Lite
2009-11-07 17:28 . 2009-11-07 17:28 -------- d-----w- c:\program files\DAEMON Tools Lite
2009-11-07 17:26 . 2009-11-07 17:26 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-11-07 17:19 . 2009-11-07 17:19 -------- d-----w- c:\program files\CCleaner
2009-11-07 17:05 . 2009-11-07 17:05 -------- d-----w- c:\program files\AIMP2
2009-11-07 16:17 . 2009-11-07 16:17 -------- d-----w- c:\program files\Realtek AC97
2009-11-07 16:17 . 2009-11-07 16:17 319488 ----a-w- c:\windows\HideWin.exe
2009-11-07 16:17 . 2009-11-07 16:17 -------- d-----w- c:\program files\Common Files\InstallShield
2009-11-07 16:16 . 2009-11-07 16:16 -------- d-----w- c:\program files\Lavalys
2009-11-07 16:15 . 2009-11-07 16:14 -------- d-----w- c:\program files\AGEIA Technologies
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Plocha
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Oblíbené položky
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Šablony
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Nabídka Start
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Dokumenty
2009-11-07 16:07 . 2009-11-07 16:07 -------- d-sh--we c:\programdata\Data aplikací
2009-11-07 16:04 . 2009-11-07 16:04 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704]
"K3805"="c:\program files\Alchemy Elixir\control.exe" [2008-10-23 237568]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2007-12-21 1443072]
"EVGAPrecision"="c:\program files\EVGA Precision\EVGAPrecisionWrapper.exe" [2009-04-15 44048]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Alchemy Elixir.lnk - c:\program files\Alchemy Elixir\traicon.exe [2009-11-9 126976]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2007-08-24 06:00 33648 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"RGSC"=c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
"Steam"="c:\program files\steam\steam.exe" -silent
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
"Adobe_ID0ENQBO"=c:\progra~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\System32\drivers\vwififlt.sys [14.7.2009 0:52 48128]
R2 cpuz132;cpuz132;c:\windows\System32\drivers\cpuz132_x32.sys [20.12.2009 23:16 12672]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [21.12.2007 8:21 468224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
S0 sptd;sptd;c:\windows\System32\drivers\sptd.sys [7.11.2009 18:26 721904]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [15.8.2008 5:46 284016]
S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [21.5.2008 12:42 64000]
S3 ElanFltr;Alchemy Elixir;c:\windows\System32\drivers\ElanFltr.sys [9.11.2009 18:43 42880]
S3 KMWDFILTERx86;HIDServiceDesc;c:\windows\System32\drivers\KMWDFILTER.sys [29.4.2009 15:37 25088]
S3 netr73;ASUS USB - ovladač karty pro bezdrátovou síť LAN pro systém Windows Vista;c:\windows\System32\drivers\netr73.sys [10.6.2009 22:18 545792]
S3 RTCore32;RTCore32;c:\program files\EVGA Precision\RTCore32.sys [25.5.2005 19:39 4608]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\System32\drivers\s816bus.sys [12.11.2009 17:39 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\System32\drivers\s816mdfl.sys [12.11.2009 17:39 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\System32\drivers\s816mdm.sys [12.11.2009 17:39 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\System32\drivers\s816mgmt.sys [12.11.2009 17:39 99112]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\System32\drivers\s816obex.sys [12.11.2009 17:39 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\System32\drivers\s816unic.sys [12.11.2009 17:39 97704]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
FF - ProfilePath - c:\users\FazyCZ\AppData\Roaming\Mozilla\Firefox\Profiles\yhy7bwdy.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/?#obsah
FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 2
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: content.notify.interval - 750000
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections-per-server - 4
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1057476104-4051501317-3611337506-1000\Software\SecuROM\License information*]
"datasecu"=hex:d6,92,ba,7b,80,98,5a,c6,78,89,0b,00,df,74,d4,b9,5d,81,1c,d6,56,
76,a2,68,c9,29,64,20,30,0c,a0,66,51,99,64,6d,fc,ba,a7,16,0a,93,83,f4,e0,83,\
"rkeysecu"=hex:8d,b8,91,ea,68,be,f5,96,13,ef,0e,87,cb,62,26,2c
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-01-03 21:46:16
ComboFix-quarantined-files.txt 2010-01-03 20:46
Před spuštěním: Volných bajtů: 226 989 989 888
Po spuštění: Volných bajtů: 226 894 123 008
- - End Of File - - A97B478B80CD97D86E5BE82CBFC471B2
