Prosím vas mozete pozret DAKUJEM
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:02:40, on 7. 2. 2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\Styler\Styler.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\pc2\Dokumenty\virus irtok\HiJackThis 2_0_2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BootSkin Startup Jobs] "C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" /StartupJobs
O4 - HKLM\..\Run: [LogonStudio] "C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\nbj.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: Styler.lnk = ?
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{26EC0911-27D0-4923-B6FC-DF9AD5E944D5}: NameServer = 217.118.96.203,217.118.96.226
O17 - HKLM\System\CS1\Services\Tcpip\..\{26EC0911-27D0-4923-B6FC-DF9AD5E944D5}: NameServer = 217.118.96.203,217.118.96.226
O17 - HKLM\System\CS2\Services\Tcpip\..\{26EC0911-27D0-4923-B6FC-DF9AD5E944D5}: NameServer = 217.118.96.203,217.118.96.226
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
--
End of file - 7088 bytes
Prosím vas mozete pozret
prosim vas mam tu aj log Combo fix moze my niekdo pozret co mam zle DAKUJEM PEKNE.
ComboFix 08-02.05.3 - pc2 2008-02-07 13:36:57.2 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.199 [GMT 1:00]
Running from: C:\Documents and Settings\pc2\Plocha\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\pc2\Data aplikací\inst.exe
C:\WINDOWS\system32\pskill.exe
.
((((((((((((((((((((((((( Files Created from 2008-01-07 to 2008-02-07 )))))))))))))))))))))))))))))))
.
2008-02-06 22:35 . 2008-02-06 22:35 230 --a------ C:\WINDOWS\system32\spupdsvc.inf
2008-02-06 15:11 . 2008-02-06 20:56 <DIR> d-------- C:\Program Files\MixMeister Studio 7.2.2
2008-02-06 15:11 . 2008-02-06 15:11 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\MixMeister Technology
2008-02-06 11:22 . 2008-02-06 11:23 <DIR> d-------- C:\Program Files\Styler
2008-02-05 23:16 . 2008-02-05 23:16 <DIR> d-------- C:\Program Files\WinCustomize
2008-02-05 23:16 . 2000-10-10 13:01 198,656 --a------ C:\WINDOWS\system32\comdlg32.ocx
2008-02-05 23:16 . 2000-05-17 09:52 187,392 --a------ C:\WINDOWS\system32\JPGUtils.dll
2008-02-05 23:16 . 2008-02-07 13:35 24 --a------ C:\WINDOWS\LogonStudio.ini
2008-02-05 15:37 . 2008-02-05 15:37 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\Styler
2008-02-05 14:15 . 2008-02-05 14:15 45 --a------ C:\TEST.XML
2008-02-05 10:46 . 2004-08-07 09:36 218,624 --a------ C:\WINDOWS\system32\uxtheme.dll
2008-02-04 23:49 . 2004-07-09 08:43 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
2008-02-04 22:34 . 2008-02-04 22:34 <DIR> d-------- C:\Program Files\VirtualDJ
2008-02-04 21:21 . 2008-02-05 00:25 163,712 --a------ C:\WINDOWS\system32\drivers\vidstub.sys
2008-02-04 18:56 . 2008-02-04 19:35 <DIR> d-------- C:\Program Files\EA GAMES
2008-02-04 16:20 . 2008-02-04 16:20 <DIR> d-------- C:\Documents and Settings\pc2\vw
2008-02-04 12:00 . 2008-02-04 13:03 <DIR> d-------- C:\Program Files\Nufsoft
2008-02-04 12:00 . 2006-04-06 19:08 1,498,112 --a------ C:\WINDOWS\Water_Illusion.scr
2008-02-04 12:00 . 2008-02-04 12:00 907,003 --a------ C:\WINDOWS\Water Illusion Professional Uninstaller.exe
2008-02-02 09:12 . 2008-02-02 09:18 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\ICQ
2008-02-02 09:11 . 2008-02-02 09:18 <DIR> d-------- C:\Program Files\ICQ6
2008-02-02 09:11 . 2008-02-02 09:11 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\InstallShield
2008-02-01 23:03 . 2008-02-01 23:03 <DIR> d-------- C:\Program Files\GoldWave
2008-01-31 21:40 . 2008-01-31 21:40 <DIR> d-------- C:\Program Files\Ableton
2008-01-31 11:48 . 2008-01-31 11:48 <DIR> d-------- C:\Program Files\Native Instruments
2008-01-31 11:33 . 2008-01-31 11:33 78,942 --a------ C:\WINDOWS\Icon_1.ico
2008-01-31 11:24 . 2008-01-31 11:24 <DIR> d--h----- C:\Documents and Settings\All Users\Data aplikací\{935E689D-6817-43D3-B156-C59662DC1809}
2008-01-31 11:23 . 2008-02-05 19:37 <DIR> d-------- C:\Program Files\NeuroTran
2008-01-27 17:04 . 2005-05-26 15:34 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2008-01-25 00:31 . 2008-01-25 00:34 38 --a------ C:\WINDOWS\avisplitter.INI
2008-01-24 23:13 . 2008-01-24 23:13 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-01-24 22:05 . 2008-01-24 22:07 49,106 --a------ C:\WINDOWS\system32\ffdshow.reg
2008-01-24 22:00 . 2008-01-24 23:07 <DIR> d-------- C:\Program Files\VirtualDub
2008-01-24 22:00 . 2008-01-24 22:00 <DIR> d-------- C:\Program Files\plugins
2008-01-24 22:00 . 2008-01-24 22:00 <DIR> d-------- C:\Program Files\aviproxy
2008-01-24 22:00 . 2007-12-09 18:28 31,232 --a------ C:\WINDOWS\system\vdremote.dll
2008-01-24 22:00 . 2007-12-09 18:28 25,088 --a------ C:\WINDOWS\system\vdsvrlnk.dll
2008-01-24 17:09 . 2008-01-24 17:09 <DIR> d-------- C:\Program Files\CCleaner
2008-01-24 15:04 . 2008-01-24 15:04 <DIR> d-------- C:\WINDOWS\Easy CD-DA Extractor
2008-01-24 12:39 . 2008-01-24 18:32 62,091 ---h----- C:\treeinfo.wc
2008-01-23 19:41 . 2007-10-30 10:16 211 --ahs---- C:\BOOT.BKK
2008-01-23 18:27 . 2008-01-23 18:27 6,656 --ahs---- C:\WINDOWS\system32\Thumbs.db
2008-01-22 18:47 . 2008-01-22 18:47 <DIR> d-------- C:\Program Files\Alcohol Soft
2008-01-22 18:47 . 2005-04-25 10:43 159,616 --a------ C:\WINDOWS\system32\drivers\Vax347b.sys
2008-01-22 18:47 . 2004-04-30 09:33 5,248 --a------ C:\WINDOWS\system32\drivers\Vax347s.sys
2008-01-22 17:56 . 2008-01-22 17:56 <DIR> d-------- C:\Program Files\Java
2008-01-22 17:56 . 2008-01-22 17:56 <DIR> d-------- C:\Program Files\Common Files\Java
2008-01-22 17:56 . 2007-12-14 01:59 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-01-22 16:02 . 2008-01-22 16:02 <DIR> d-------- C:\Program Files\MySpeed Personal Edition
2008-01-21 22:36 . 2008-01-21 22:36 <DIR> d-------- C:\WINDOWS\Easy CD-DA Extractor 11
2008-01-21 22:36 . 2008-02-06 20:41 <DIR> d-------- C:\Program Files\Easy CD-DA Extractor 11
2008-01-15 23:17 . 2008-01-15 23:17 <DIR> d-------- C:\Program Files\Opera
2008-01-15 15:24 . 2008-01-15 15:24 0 --a------ C:\WINDOWS\Infob.dat
2008-01-15 15:24 . 2008-01-15 15:24 0 --a------ C:\WINDOWS\Infoa.dat
2008-01-14 09:20 . 2008-01-14 09:20 <DIR> d-------- C:\Program Files\Lavasoft
2008-01-14 09:20 . 2008-01-14 09:20 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-01-14 09:19 . 2008-01-24 16:55 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-01-13 18:50 . 2008-01-13 18:50 <DIR> d-------- C:\WINDOWS\Sun
2008-01-13 12:45 . 2008-01-13 12:45 <DIR> d-------- C:\Program Files\IIS Resources
2008-01-12 21:56 . 2006-05-25 14:52 162,304 --a------ C:\WINDOWS\system32\ztvunrar36.dll
2008-01-12 21:56 . 2003-02-02 19:06 153,088 --a------ C:\WINDOWS\system32\unrar3.dll
2008-01-12 21:56 . 2005-08-26 00:50 77,312 --a------ C:\WINDOWS\system32\ztvunace26.dll
2008-01-12 21:56 . 2006-06-19 12:01 69,632 --a------ C:\WINDOWS\system32\ztvcabinet.dll
2008-01-12 20:49 . 2008-01-12 20:49 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\SlySoft
2008-01-12 20:46 . 2008-01-12 20:46 0 ---hs---- C:\WINDOWS\S7E627380.tmp
2008-01-12 20:45 . 2008-01-12 20:45 <DIR> d-------- C:\Program Files\SlySoft
2008-01-12 14:26 . 2008-01-12 14:26 6,144 --ahs---- C:\WINDOWS\system32\access.ctl
2008-01-12 00:53 . 2004-08-17 14:49 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-01-12 00:52 . 2008-01-12 00:52 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-01-12 00:51 . 2008-01-12 00:51 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-01-12 00:51 . 2008-01-12 00:51 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-01-11 14:19 . 2008-01-11 14:19 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\Ahead
2008-01-10 11:46 . 2008-01-10 11:46 <DIR> dr-hs---- C:\sys
2008-01-09 20:21 . 2008-01-09 20:27 <DIR> d-------- C:\Documents and Settings\pc2\Contacts
2008-01-09 20:20 . 2008-01-09 20:20 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-01-09 20:20 . 2008-01-09 20:20 <DIR> d-------- C:\Program Files\MSN Messenger
2008-01-09 20:16 . 2001-10-25 13:00 68,608 --a------ C:\WINDOWS\system32\plugin.ocx
2008-01-09 20:16 . 2001-10-25 13:00 68,608 --a------ C:\WINDOWS\system32\dllcache\plugin.ocx
2008-01-09 20:15 . 2008-01-09 20:15 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-01-09 20:15 . 2006-09-25 17:58 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-01-09 15:38 . 2008-01-09 16:01 625 --a------ C:\WINDOWS\eReg.dat
2008-01-09 14:28 . 2008-02-06 14:27 2,359,350 --a------ C:\WINDOWS\ACD Wallpaper.bmp
2008-01-08 23:40 . 2008-01-31 10:57 <DIR> d-------- C:\Program Files\Orbitdownloader
2008-01-08 22:06 . 2005-01-22 18:05 20,480 --------- C:\WINDOWS\system32\wbload.dll
2008-01-08 22:00 . 2008-02-05 10:12 <DIR> d-------- C:\Program Files\Common Files\Stardock
2008-01-08 20:22 . 2008-01-08 20:22 335 --a------ C:\WINDOWS\mozregistry.dat
2008-01-08 20:10 . 2008-01-08 20:10 <DIR> d-------- C:\Program Files\Common Files\Native Instruments
2008-01-08 20:10 . 2008-01-08 20:10 <DIR> d-------- C:\Program Files\Common Files\Digidesign
2008-01-08 15:44 . 2008-01-08 15:44 1,099,839 --a------ C:\WINDOWS\system32\TmpA11677437
2008-01-07 22:03 . 2008-01-07 22:03 <DIR> d-------- C:\Program Files\Digital1Audio
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-07 11:39 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Orbit
2008-02-07 09:33 2,192 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
2008-02-06 16:58 2,501,120 ----a-w C:\WINDOWS\system32\logonuiX.exe
2008-02-05 20:43 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\uTorrent
2008-02-04 20:21 --------- d-----w C:\Program Files\Stardock
2008-02-02 08:14 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-02 07:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Vso
2008-02-02 07:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\CopyToDvd
2008-01-31 18:22 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\AdobeUM
2008-01-28 19:31 47,360 ----a-w C:\WINDOWS\system32\drivers\pcouffin.sys
2008-01-28 19:31 47,360 ----a-w C:\Documents and Settings\pc2\Data aplikací\pcouffin.sys
2008-01-24 22:11 --------- d-----w C:\Program Files\DivX
2008-01-24 21:45 49,106 ----a-w C:\WINDOWS\system32\gplmpg.reg
2008-01-22 18:14 11,973 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2008-01-21 10:53 --------- d-----w C:\Program Files\VSTplugins
2008-01-21 10:33 --------- d---a-w C:\Documents and Settings\All Users\Data aplikací\TEMP
2008-01-15 14:24 --------- d-----w C:\Program Files\Total Video Converter
2008-01-14 08:18 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Lavasoft
2007-12-31 10:33 --------- d-----w C:\Program Files\Smart Projects
2007-12-24 12:49 7,680 ----a-w C:\WINDOWS\system32\ff_vfw.dll
2007-12-21 07:58 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Winamp
2007-12-14 08:24 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\1Click DVD Copy Pro
2007-12-11 21:42 --------- d-----w C:\Program Files\VSO
2007-12-11 20:59 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Bluetooth
2007-12-11 18:26 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Winferno
2007-12-10 23:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Publish Providers
2007-12-08 16:38 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\OtakuSoftware
2007-12-08 15:42 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Media Player Classic
2007-12-07 22:52 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Ableton
2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-12-04 01:33 682,496 ----a-w C:\WINDOWS\system32\divx.dll
2007-11-29 22:30 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2007-11-29 22:28 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
2007-11-10 11:02 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2007-11-07 16:12 7,840 ----a-w C:\WINDOWS\system32\mcdmsg5.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 14:49 15360]
"NBJ"="C:\Program Files\Ahead\Nero BackItUp\nbj.exe" [2006-09-15 13:27 2048000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-06-18 09:31 67584 C:\WINDOWS\SOUNDMAN.EXE]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-06-28 21:05 344064]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2005-06-29 01:09 32768]
"Control Center"="C:\Program Files\ASUS\WLAN Card Utilities\Center.exe" [2004-02-24 12:17 1448448]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2006-01-12 15:40 155648]
"BootSkin Startup Jobs"="C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" [2004-04-26 15:21 270336]
"LogonStudio"="C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" [2002-09-03 18:38 987187]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-17 14:49 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2004-08-17 14:49 100352 C:\WINDOWS\system32\advpack.dll]
C:\Documents and Settings\pc2\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Styler.lnk - C:\Documents and Settings\pc2\Data aplikacˇ\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe [2008-02-06 11:22:03 15086]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="C:\\WINDOWS\\system32\\logonui.exe"
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys [2005-09-26 11:05]
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys [2005-09-26 11:05]
R3 ASNDIS5;ASNDIS5 Protocol Driver;C:\WINDOWS\system32\ASNDIS5.SYS [2002-09-09 19:54]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2004-08-03 22:04]
R3 W8100PCI;ASUS 802.11b/g Driver for Windows XP;C:\WINDOWS\system32\DRIVERS\mrv8k51.sys [2003-12-24 12:43]
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-07 13:40:41
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-02-07 13:42:07
ComboFix-quarantined-files.txt 2008-02-07 12:42:01
ComboFix 08-02.05.3 - pc2 2008-02-07 13:36:57.2 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.199 [GMT 1:00]
Running from: C:\Documents and Settings\pc2\Plocha\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\pc2\Data aplikací\inst.exe
C:\WINDOWS\system32\pskill.exe
.
((((((((((((((((((((((((( Files Created from 2008-01-07 to 2008-02-07 )))))))))))))))))))))))))))))))
.
2008-02-06 22:35 . 2008-02-06 22:35 230 --a------ C:\WINDOWS\system32\spupdsvc.inf
2008-02-06 15:11 . 2008-02-06 20:56 <DIR> d-------- C:\Program Files\MixMeister Studio 7.2.2
2008-02-06 15:11 . 2008-02-06 15:11 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\MixMeister Technology
2008-02-06 11:22 . 2008-02-06 11:23 <DIR> d-------- C:\Program Files\Styler
2008-02-05 23:16 . 2008-02-05 23:16 <DIR> d-------- C:\Program Files\WinCustomize
2008-02-05 23:16 . 2000-10-10 13:01 198,656 --a------ C:\WINDOWS\system32\comdlg32.ocx
2008-02-05 23:16 . 2000-05-17 09:52 187,392 --a------ C:\WINDOWS\system32\JPGUtils.dll
2008-02-05 23:16 . 2008-02-07 13:35 24 --a------ C:\WINDOWS\LogonStudio.ini
2008-02-05 15:37 . 2008-02-05 15:37 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\Styler
2008-02-05 14:15 . 2008-02-05 14:15 45 --a------ C:\TEST.XML
2008-02-05 10:46 . 2004-08-07 09:36 218,624 --a------ C:\WINDOWS\system32\uxtheme.dll
2008-02-04 23:49 . 2004-07-09 08:43 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
2008-02-04 22:34 . 2008-02-04 22:34 <DIR> d-------- C:\Program Files\VirtualDJ
2008-02-04 21:21 . 2008-02-05 00:25 163,712 --a------ C:\WINDOWS\system32\drivers\vidstub.sys
2008-02-04 18:56 . 2008-02-04 19:35 <DIR> d-------- C:\Program Files\EA GAMES
2008-02-04 16:20 . 2008-02-04 16:20 <DIR> d-------- C:\Documents and Settings\pc2\vw
2008-02-04 12:00 . 2008-02-04 13:03 <DIR> d-------- C:\Program Files\Nufsoft
2008-02-04 12:00 . 2006-04-06 19:08 1,498,112 --a------ C:\WINDOWS\Water_Illusion.scr
2008-02-04 12:00 . 2008-02-04 12:00 907,003 --a------ C:\WINDOWS\Water Illusion Professional Uninstaller.exe
2008-02-02 09:12 . 2008-02-02 09:18 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\ICQ
2008-02-02 09:11 . 2008-02-02 09:18 <DIR> d-------- C:\Program Files\ICQ6
2008-02-02 09:11 . 2008-02-02 09:11 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\InstallShield
2008-02-01 23:03 . 2008-02-01 23:03 <DIR> d-------- C:\Program Files\GoldWave
2008-01-31 21:40 . 2008-01-31 21:40 <DIR> d-------- C:\Program Files\Ableton
2008-01-31 11:48 . 2008-01-31 11:48 <DIR> d-------- C:\Program Files\Native Instruments
2008-01-31 11:33 . 2008-01-31 11:33 78,942 --a------ C:\WINDOWS\Icon_1.ico
2008-01-31 11:24 . 2008-01-31 11:24 <DIR> d--h----- C:\Documents and Settings\All Users\Data aplikací\{935E689D-6817-43D3-B156-C59662DC1809}
2008-01-31 11:23 . 2008-02-05 19:37 <DIR> d-------- C:\Program Files\NeuroTran
2008-01-27 17:04 . 2005-05-26 15:34 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2008-01-25 00:31 . 2008-01-25 00:34 38 --a------ C:\WINDOWS\avisplitter.INI
2008-01-24 23:13 . 2008-01-24 23:13 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-01-24 22:05 . 2008-01-24 22:07 49,106 --a------ C:\WINDOWS\system32\ffdshow.reg
2008-01-24 22:00 . 2008-01-24 23:07 <DIR> d-------- C:\Program Files\VirtualDub
2008-01-24 22:00 . 2008-01-24 22:00 <DIR> d-------- C:\Program Files\plugins
2008-01-24 22:00 . 2008-01-24 22:00 <DIR> d-------- C:\Program Files\aviproxy
2008-01-24 22:00 . 2007-12-09 18:28 31,232 --a------ C:\WINDOWS\system\vdremote.dll
2008-01-24 22:00 . 2007-12-09 18:28 25,088 --a------ C:\WINDOWS\system\vdsvrlnk.dll
2008-01-24 17:09 . 2008-01-24 17:09 <DIR> d-------- C:\Program Files\CCleaner
2008-01-24 15:04 . 2008-01-24 15:04 <DIR> d-------- C:\WINDOWS\Easy CD-DA Extractor
2008-01-24 12:39 . 2008-01-24 18:32 62,091 ---h----- C:\treeinfo.wc
2008-01-23 19:41 . 2007-10-30 10:16 211 --ahs---- C:\BOOT.BKK
2008-01-23 18:27 . 2008-01-23 18:27 6,656 --ahs---- C:\WINDOWS\system32\Thumbs.db
2008-01-22 18:47 . 2008-01-22 18:47 <DIR> d-------- C:\Program Files\Alcohol Soft
2008-01-22 18:47 . 2005-04-25 10:43 159,616 --a------ C:\WINDOWS\system32\drivers\Vax347b.sys
2008-01-22 18:47 . 2004-04-30 09:33 5,248 --a------ C:\WINDOWS\system32\drivers\Vax347s.sys
2008-01-22 17:56 . 2008-01-22 17:56 <DIR> d-------- C:\Program Files\Java
2008-01-22 17:56 . 2008-01-22 17:56 <DIR> d-------- C:\Program Files\Common Files\Java
2008-01-22 17:56 . 2007-12-14 01:59 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-01-22 16:02 . 2008-01-22 16:02 <DIR> d-------- C:\Program Files\MySpeed Personal Edition
2008-01-21 22:36 . 2008-01-21 22:36 <DIR> d-------- C:\WINDOWS\Easy CD-DA Extractor 11
2008-01-21 22:36 . 2008-02-06 20:41 <DIR> d-------- C:\Program Files\Easy CD-DA Extractor 11
2008-01-15 23:17 . 2008-01-15 23:17 <DIR> d-------- C:\Program Files\Opera
2008-01-15 15:24 . 2008-01-15 15:24 0 --a------ C:\WINDOWS\Infob.dat
2008-01-15 15:24 . 2008-01-15 15:24 0 --a------ C:\WINDOWS\Infoa.dat
2008-01-14 09:20 . 2008-01-14 09:20 <DIR> d-------- C:\Program Files\Lavasoft
2008-01-14 09:20 . 2008-01-14 09:20 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-01-14 09:19 . 2008-01-24 16:55 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-01-13 18:50 . 2008-01-13 18:50 <DIR> d-------- C:\WINDOWS\Sun
2008-01-13 12:45 . 2008-01-13 12:45 <DIR> d-------- C:\Program Files\IIS Resources
2008-01-12 21:56 . 2006-05-25 14:52 162,304 --a------ C:\WINDOWS\system32\ztvunrar36.dll
2008-01-12 21:56 . 2003-02-02 19:06 153,088 --a------ C:\WINDOWS\system32\unrar3.dll
2008-01-12 21:56 . 2005-08-26 00:50 77,312 --a------ C:\WINDOWS\system32\ztvunace26.dll
2008-01-12 21:56 . 2006-06-19 12:01 69,632 --a------ C:\WINDOWS\system32\ztvcabinet.dll
2008-01-12 20:49 . 2008-01-12 20:49 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\SlySoft
2008-01-12 20:46 . 2008-01-12 20:46 0 ---hs---- C:\WINDOWS\S7E627380.tmp
2008-01-12 20:45 . 2008-01-12 20:45 <DIR> d-------- C:\Program Files\SlySoft
2008-01-12 14:26 . 2008-01-12 14:26 6,144 --ahs---- C:\WINDOWS\system32\access.ctl
2008-01-12 00:53 . 2004-08-17 14:49 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-01-12 00:52 . 2008-01-12 00:52 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-01-12 00:51 . 2008-01-12 00:51 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-01-12 00:51 . 2008-01-12 00:51 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-01-11 14:19 . 2008-01-11 14:19 <DIR> d-------- C:\Documents and Settings\pc2\Data aplikací\Ahead
2008-01-10 11:46 . 2008-01-10 11:46 <DIR> dr-hs---- C:\sys
2008-01-09 20:21 . 2008-01-09 20:27 <DIR> d-------- C:\Documents and Settings\pc2\Contacts
2008-01-09 20:20 . 2008-01-09 20:20 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-01-09 20:20 . 2008-01-09 20:20 <DIR> d-------- C:\Program Files\MSN Messenger
2008-01-09 20:16 . 2001-10-25 13:00 68,608 --a------ C:\WINDOWS\system32\plugin.ocx
2008-01-09 20:16 . 2001-10-25 13:00 68,608 --a------ C:\WINDOWS\system32\dllcache\plugin.ocx
2008-01-09 20:15 . 2008-01-09 20:15 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-01-09 20:15 . 2006-09-25 17:58 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-01-09 15:38 . 2008-01-09 16:01 625 --a------ C:\WINDOWS\eReg.dat
2008-01-09 14:28 . 2008-02-06 14:27 2,359,350 --a------ C:\WINDOWS\ACD Wallpaper.bmp
2008-01-08 23:40 . 2008-01-31 10:57 <DIR> d-------- C:\Program Files\Orbitdownloader
2008-01-08 22:06 . 2005-01-22 18:05 20,480 --------- C:\WINDOWS\system32\wbload.dll
2008-01-08 22:00 . 2008-02-05 10:12 <DIR> d-------- C:\Program Files\Common Files\Stardock
2008-01-08 20:22 . 2008-01-08 20:22 335 --a------ C:\WINDOWS\mozregistry.dat
2008-01-08 20:10 . 2008-01-08 20:10 <DIR> d-------- C:\Program Files\Common Files\Native Instruments
2008-01-08 20:10 . 2008-01-08 20:10 <DIR> d-------- C:\Program Files\Common Files\Digidesign
2008-01-08 15:44 . 2008-01-08 15:44 1,099,839 --a------ C:\WINDOWS\system32\TmpA11677437
2008-01-07 22:03 . 2008-01-07 22:03 <DIR> d-------- C:\Program Files\Digital1Audio
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-07 11:39 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Orbit
2008-02-07 09:33 2,192 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
2008-02-06 16:58 2,501,120 ----a-w C:\WINDOWS\system32\logonuiX.exe
2008-02-05 20:43 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\uTorrent
2008-02-04 20:21 --------- d-----w C:\Program Files\Stardock
2008-02-02 08:14 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-02 07:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Vso
2008-02-02 07:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\CopyToDvd
2008-01-31 18:22 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\AdobeUM
2008-01-28 19:31 47,360 ----a-w C:\WINDOWS\system32\drivers\pcouffin.sys
2008-01-28 19:31 47,360 ----a-w C:\Documents and Settings\pc2\Data aplikací\pcouffin.sys
2008-01-24 22:11 --------- d-----w C:\Program Files\DivX
2008-01-24 21:45 49,106 ----a-w C:\WINDOWS\system32\gplmpg.reg
2008-01-22 18:14 11,973 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2008-01-21 10:53 --------- d-----w C:\Program Files\VSTplugins
2008-01-21 10:33 --------- d---a-w C:\Documents and Settings\All Users\Data aplikací\TEMP
2008-01-15 14:24 --------- d-----w C:\Program Files\Total Video Converter
2008-01-14 08:18 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Lavasoft
2007-12-31 10:33 --------- d-----w C:\Program Files\Smart Projects
2007-12-24 12:49 7,680 ----a-w C:\WINDOWS\system32\ff_vfw.dll
2007-12-21 07:58 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Winamp
2007-12-14 08:24 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\1Click DVD Copy Pro
2007-12-11 21:42 --------- d-----w C:\Program Files\VSO
2007-12-11 20:59 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Bluetooth
2007-12-11 18:26 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Winferno
2007-12-10 23:34 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Publish Providers
2007-12-08 16:38 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\OtakuSoftware
2007-12-08 15:42 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Media Player Classic
2007-12-07 22:52 --------- d-----w C:\Documents and Settings\pc2\Data aplikací\Ableton
2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-12-04 01:33 682,496 ----a-w C:\WINDOWS\system32\divx.dll
2007-11-29 22:30 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2007-11-29 22:28 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
2007-11-10 11:02 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2007-11-07 16:12 7,840 ----a-w C:\WINDOWS\system32\mcdmsg5.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 14:49 15360]
"NBJ"="C:\Program Files\Ahead\Nero BackItUp\nbj.exe" [2006-09-15 13:27 2048000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-06-18 09:31 67584 C:\WINDOWS\SOUNDMAN.EXE]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-06-28 21:05 344064]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2005-06-29 01:09 32768]
"Control Center"="C:\Program Files\ASUS\WLAN Card Utilities\Center.exe" [2004-02-24 12:17 1448448]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2006-01-12 15:40 155648]
"BootSkin Startup Jobs"="C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" [2004-04-26 15:21 270336]
"LogonStudio"="C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" [2002-09-03 18:38 987187]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-17 14:49 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_3"="advpack.dll" [2004-08-17 14:49 100352 C:\WINDOWS\system32\advpack.dll]
C:\Documents and Settings\pc2\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Styler.lnk - C:\Documents and Settings\pc2\Data aplikacˇ\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe [2008-02-06 11:22:03 15086]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="C:\\WINDOWS\\system32\\logonui.exe"
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys [2005-09-26 11:05]
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys [2005-09-26 11:05]
R3 ASNDIS5;ASNDIS5 Protocol Driver;C:\WINDOWS\system32\ASNDIS5.SYS [2002-09-09 19:54]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2004-08-03 22:04]
R3 W8100PCI;ASUS 802.11b/g Driver for Windows XP;C:\WINDOWS\system32\DRIVERS\mrv8k51.sys [2003-12-24 12:43]
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-07 13:40:41
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-02-07 13:42:07
ComboFix-quarantined-files.txt 2008-02-07 12:42:01
-
Baron Prášil
- Master Level 7
- Příspěvky: 4882
- Registrován: červen 06
- Pohlaví:
- Stav:
Offline
ahoj preac a combo fix,tam nemam nieco zle,prosim naco su tie programy,potrebujem ich alebo nie.DAKUJEM VELMI PEKNE.mozes my pomoct.
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Visual C++ 2005 Redistributable
WebFldrs Xp
Windows Installer 3.1 (KB893803)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
este toto my vypise,
"Aplikace nemohla být spuštěna, protože součást framedyn.dll nelze najít. Potíže pravděpodobně odstraníte opětovnou instalací aplikace. ...
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Visual C++ 2005 Redistributable
WebFldrs Xp
Windows Installer 3.1 (KB893803)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
este toto my vypise,
"Aplikace nemohla být spuštěna, protože součást framedyn.dll nelze najít. Potíže pravděpodobně odstraníte opětovnou instalací aplikace. ...
-
Baron Prášil
- Master Level 7
- Příspěvky: 4882
- Registrován: červen 06
- Pohlaví:
- Stav:
Offline
http://support.microsoft.com/kb/319114/cs
tady k tomu něco je
jestli ty programy potřebuješ nebo ne nevim ale šmejdi to nejsou.
tady k tomu něco je
jestli ty programy potřebuješ nebo ne nevim ale šmejdi to nejsou.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 58 hostů