tu je log z kombofixu:
ComboFix 09-04-04.01 - Deniska 2009-04-11 17:10:23.2 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.676 [GMT 2:00]
Spuštěný z: c:\documents and settings\Deniska\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Deniska\Plocha\CFscript.txt
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-03-11 do 2009-04-11 )))))))))))))))))))))))))))))))
.
2009-04-10 18:23 . 2009-04-10 18:28 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-04-10 18:23 . 2009-04-10 18:23 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\Malwarebytes
2009-04-10 18:23 . 2009-04-10 18:23 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\Malwarebytes
2009-04-10 18:23 . 2009-04-10 18:23 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\Malwarebytes
2009-04-10 18:23 . 2009-04-10 18:23 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2009-04-10 18:23 . 2009-04-06 15:32 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-10 18:23 . 2009-04-06 15:32 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-04-08 21:59 . 2009-04-08 21:59 <DIR> d-------- c:\program files\Trend Micro
2009-04-05 20:50 . 2005-05-17 15:24 311,296 --a------ c:\windows\system32\AegisI5.exe
2009-04-05 20:50 . 2006-01-12 19:46 252,928 --a------ c:\windows\system32\drivers\rt73.sys
2009-04-05 20:50 . 2005-10-17 19:50 245,376 --a------ c:\windows\system32\drivers\rt2500usb.SYS
2009-04-05 20:50 . 2005-12-05 19:01 114,688 --a------ c:\windows\system32\Install7x.dll
2009-04-05 20:50 . 2009-04-05 20:50 20,747 --a------ c:\windows\system32\drivers\AegisP.sys
2009-04-05 20:50 . 2005-11-30 11:33 2,048 --a------ c:\windows\system32\drivers\rt73.bin
2009-04-05 20:50 . 2005-08-19 15:51 138 --a------ c:\windows\filespec7x
2009-04-05 15:48 . 2009-04-05 15:48 <DIR> d-------- c:\program files\DVD Shrink
2009-04-05 15:48 . 2009-04-05 16:03 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\DVD Shrink
2009-04-05 15:40 . 2009-04-05 15:40 <DIR> d-------- c:\program files\Elaborate Bytes
2009-04-04 21:52 . 2009-04-04 21:52 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\DVDFab
2009-04-04 21:52 . 2009-04-04 21:52 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\DVDFab
2009-04-04 21:52 . 2009-04-04 21:52 <DIR> d-------- c:\documents and settings\Deniska\Data aplikací\DVDFab
2009-04-04 21:21 . 2009-04-04 21:21 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\SlySoft
2009-04-04 21:19 . 2009-04-04 21:19 <DIR> d-------- c:\program files\SlySoft
2009-03-18 19:08 . 2009-03-18 19:08 103,744 --a------ c:\windows\system32\drivers\AnyDVD.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-10 16:24 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Skype
2009-04-10 16:24 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Skype
2009-04-10 16:24 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Skype
2009-04-10 16:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\skypePM
2009-04-10 16:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\skypePM
2009-04-10 16:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\skypePM
2009-04-05 19:51 --------- d-----w c:\program files\SpeedFan
2009-04-05 19:18 --------- d-----w c:\program files\Spybot - Search & Destroy
2009-04-05 19:14 --------- d-----w c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2009-04-05 18:50 --------- d--h--w c:\program files\InstallShield Installation Information
2009-04-05 18:50 --------- d-----w c:\program files\TOPCOM
2009-04-05 18:46 --------- d---a-w c:\documents and settings\All Users\Data aplikací\TEMP
2009-04-05 13:47 --------- d-----w c:\documents and settings\Deniska\Data aplikací\uTorrent
2009-04-05 13:47 --------- d-----w c:\documents and settings\Deniska\Data aplikací\uTorrent
2009-04-05 13:47 --------- d-----w c:\documents and settings\Deniska\Data aplikací\uTorrent
2009-04-04 17:23 --------- d-----w c:\program files\DVDFab 5
2009-04-04 17:15 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Vso
2009-04-04 17:15 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Vso
2009-04-04 17:15 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Vso
2009-04-04 16:29 --------- d-----w c:\program files\JetAudio
2009-03-26 17:37 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Audacity
2009-03-26 17:37 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Audacity
2009-03-26 17:37 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Audacity
2009-02-17 17:11 24,232 ------w c:\windows\system32\drivers\ElbyCDIO.sys
2009-02-17 13:33 89,256 ------w c:\windows\system32\ElbyCDIO.dll
2009-02-15 17:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\PC Suite
2009-02-15 17:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\PC Suite
2009-02-15 17:22 --------- d-----w c:\documents and settings\Deniska\Data aplikací\PC Suite
2009-02-15 17:21 --------- d-----w c:\documents and settings\All Users\Data aplikací\PC Suite
2009-02-15 17:15 --------- d-----w c:\program files\Nokia
2009-02-15 17:15 --------- d-----w c:\program files\Common Files\PCSuite
2009-02-15 17:15 --------- d-----w c:\program files\Common Files\Nokia
2009-02-15 17:14 --------- d-----w c:\program files\PC Connectivity Solution
2009-02-14 13:57 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Nokia
2009-02-14 13:57 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Nokia
2009-02-14 13:57 --------- d-----w c:\documents and settings\Deniska\Data aplikací\Nokia
2009-02-14 13:52 --------- d-----w c:\program files\DIFX
2009-02-14 13:48 --------- d-----w c:\documents and settings\All Users\Data aplikací\Installations
2008-08-17 16:14 32 ----a-w c:\documents and settings\All Users\Data aplikací\ezsid.dat
2008-08-16 19:29 47,360 ----a-w c:\documents and settings\Deniska\Data aplikací\pcouffin.sys
2008-08-16 19:29 47,360 ----a-w c:\documents and settings\Deniska\Data aplikací\pcouffin.sys
2008-08-16 19:29 47,360 ----a-w c:\documents and settings\Deniska\Data aplikací\pcouffin.sys
.
------- Sigcheck -------
2008-04-14 08:52 701440 fea3a22106bbd8d3d260051769b01199 c:\windows\system32\wininet.dll
2008-04-14 08:52 701440 fea3a22106bbd8d3d260051769b01199 c:\windows\system32\dllcache\wininet.dll
2008-04-14 08:52 976384 13e794e5591776cbc71055a7b3cc1d5f c:\windows\explorer.exe
2008-04-14 08:52 976384 13e794e5591776cbc71055a7b3cc1d5f c:\windows\system32\dllcache\explorer.exe
2008-04-14 08:52 100864 78b15f9f14c07e99816b14c4b76b1b2b c:\windows\system32\wuauclt.exe
2008-04-14 08:52 100864 78b15f9f14c07e99816b14c4b76b1b2b c:\windows\system32\dllcache\wuauclt.exe
.
((((((((((((((((((((((((((((( SnapShot@2009-04-11_13.14.57,62 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-04-11 11:03:35 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2009-04-11 15:04:39 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2009-04-11 11:03:35 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2009-04-11 15:04:39 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2009-04-11 11:03:35 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2009-04-11 15:04:39 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-08-01 222592]
"RocketDock"="c:\windows\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe" [2007-03-19 630784]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-12-03 1205760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"ATITool"="c:\program files\ATITool\ATITool.exe" [2007-06-22 3119616]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-07-01 1447168]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2008-04-14 c:\windows\system32\advpack.dll]
c:\documents and settings\Deniska\Nabˇdka Start\Programy\Po spuçtŘnˇ\
RocketDock.lnk - c:\windows\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [19.3.2007 0:05:02 630784]
TransBar.lnk - c:\windows\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe [1.6.2005 21:41:18 65536]
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Topcom Wireless LAN Utility.lnk - c:\program files\TOPCOM\Common\Topcom_USB_4101gmr.exe [5.4.2009 20:51:28 618496]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.clmp3enc"= c:\progra~1\CYBERL~1\Power2Go\CLMP3Enc.ACM
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\
0autocheck autochk *
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Topcom Wireless LAN Utility.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Topcom Wireless LAN Utility.lnk
backup=c:\windows\pss\Topcom Wireless LAN Utility.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Deniska^Nabídka Start^Programy^Po spuštění^UberIcon.lnk]
path=c:\documents and settings\Deniska\Nabídka Start\Programy\Po spuštění\UberIcon.lnk
backup=c:\windows\pss\UberIcon.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Deniska^Nabídka Start^Programy^Po spuštění^Y'z Shadow.lnk]
path=c:\documents and settings\Deniska\Nabídka Start\Programy\Po spuštění\Y'z Shadow.lnk
backup=c:\windows\pss\Y'z Shadow.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AudioDeck]
--a------ 2006-11-02 16:57 528384 c:\program files\VIA\VIAudioi\SBADeck\ADeck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
--a------ 2008-03-21 10:21 91432 c:\program files\CyberLink\Shared Files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
--------- 2007-09-27 23:10 122880 c:\program files\CyberLink\Power2Go\CLMLSvc.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 2008-04-14 08:52 15360 c:\windows\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
--a------ 2007-03-06 17:48 488984 c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
--a------ 2007-03-06 17:58 1060376 c:\program files\Labtec\WebCam10\WebCam10.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
--a------ 2007-02-22 19:53 2209224 c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD8LanguageShortcut]
--------- 2007-12-14 11:36 50472 c:\program files\CyberLink\PowerDVD8\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power2GoExpress]
--------- 2007-09-29 16:53 2680104 c:\program files\CyberLink\Power2Go\Power2GoExpress.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl8]
--------- 2008-03-20 20:23 83240 c:\program files\CyberLink\PowerDVD8\PDVD8Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
-ra------ 2008-11-07 15:31 21633320 c:\program files\Skype\Phone\Skype.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-08-16 21:02 185896 c:\program files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wscsvc"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 Si3531;Si3531;c:\windows\system32\drivers\Si3531.sys [5.5.2008 0:45:56 210736]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [1.7.2008 10:04:40 34312]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};c:\program files\CyberLink\PowerDVD8\
000.fcl [1.2.2008 17:24:04 41456]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [1.7.2008 10:02:28 468224]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [14.4.2008 0:26:40 69120]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
2009-03-13 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-28 14:49]
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{1E6712AA-2699-4D57-83D8-09A31CE74796} - (no file)
.
------- Doplňkový sken -------
.
uStart Page =
hxxp://search.bearshare.com/sk/IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Deniska\Data aplikací\Mozilla\Firefox\Profiles\qcxxik42.default\
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.
**************************************************************************
catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-04-11 17:12:07
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory:
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ovfsthkosswulqpscbrfvdjbpjxjvfmkieivim]
"imagepath"="\systemroot\system32\drivers\ovfsthtqcycbvjaxddxenqcpqgnxvqrtbievhg.sys"
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD8\
000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ovfsthkosswulqpscbrfvdjbpjxjvfmkieivim]
@DACL=(02 0000)
"start"=dword:00000001
"type"=dword:00000001
"group"="file system"
"imagepath"=expand:"\\systemroot\\system32\\drivers\\ovfsthtqcycbvjaxddxenqcpqgnxvqrtbievhg.sys"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(972)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2009-04-11 17:13:52
ComboFix-quarantined-files.txt 2009-04-11 15:13:50
ComboFix2.txt 2009-04-11 11:16:16
Před spuštěním: Volných bajtů: 17 015 791 616
Po spuštění: Volných bajtů: 17,004,175,360
223
a tu log z hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:15:59, on 11. 4. 2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://search.bearshare.com/sk/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E6712AA-2699-4D57-83D8-09A31CE74796} - (no file)
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATITool] "C:\Program Files\ATITool\ATITool.exe" -s
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Global Startup: Topcom Wireless LAN Utility.lnk = C:\Program Files\TOPCOM\Common\Topcom_USB_4101gmr.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 6198 bytes
Notebook Asus G73 Full HD, Core i720, 8GB DDR3 RAM, 2x 500GB 7200 HDD, ATI Radeon HD 5870 1GB DDR5, Blue Ray combo
