VIRUS ALERT! Pomóóóóc Vyřešeno

[Diallix]

Ten conbofix a co sa Vas pyta?

[Reklama]

[Funstorm007]

zde je ten log:

ComboFix 08-10-05.11 - Kuba 2008-10-12 21:26:42.3 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.1.1029.18.623 [GMT 2:00]
Spuštěný z: C:\Documents and Settings\Kuba\Plocha\ComboFix.exe

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
/wow section nedokončena

((((((((((((((((((((((((( Soubory vytvořené od 2008-09-12 do 2008-10-12 )))))))))))))))))))))))))))))))
.

2008-10-12 20:21 . 2008-10-12 20:22 <DIR> d-------- C:\Program Files\Common Files\Adobe
2008-10-12 19:58 . 2008-10-12 19:58 <DIR> d-------- C:\Program Files\Sunbelt Software
2008-10-12 19:58 . 2008-07-16 09:57 269,736 -ra------ C:\WINDOWS\system32\drivers\SbFw.sys
2008-10-12 19:58 . 2008-06-21 04:54 65,576 --a------ C:\WINDOWS\system32\drivers\SbFwIm.sys
2008-10-12 18:28 . 2008-10-12 18:28 <DIR> d-------- C:\Program Files\Paragon Software
2008-10-12 16:31 . 2008-10-12 16:39 <DIR> d---s---- C:\Hudba
2008-10-12 13:03 . 2008-10-12 13:03 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Malwarebytes
2008-10-11 00:32 . 2008-10-11 00:32 153,434 --a------ C:\WINDOWS\system32\g59.exe
2008-10-10 23:11 . 2008-10-10 23:11 61,440 --a------ C:\WINDOWS\system32\drivers\msulr.sys
2008-10-09 18:30 . 2008-10-09 18:37 <DIR> d-------- C:\SDFix
2008-10-08 11:43 . 2008-10-08 11:43 479,232 --a------ C:\WINDOWS\system32\ezkrdscacssisy.dll
2008-10-07 20:28 . 2008-10-07 20:28 <DIR> d-------- C:\Documents and Settings\Taťka\Phone Browser
2008-10-07 20:28 . 2008-10-07 20:28 <DIR> d-------- C:\Documents and Settings\Taťka\Phone Browser
2008-10-07 17:11 . 2008-10-07 17:11 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\Malwarebytes
2008-10-07 17:10 . 2008-10-07 17:11 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-07 17:10 . 2008-10-07 17:10 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2008-10-07 17:10 . 2008-09-10 00:10 38,528 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-07 17:10 . 2008-09-10 00:09 17,200 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-10-07 17:07 . 2008-10-07 17:07 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\BSplayer
2008-10-06 21:17 . 2008-10-06 21:17 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\TuneUp Software
2008-10-06 20:09 . 2008-10-06 20:09 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Yahoo! Companion
2008-10-06 20:08 . 2008-10-06 20:08 <DIR> d-------- C:\Program Files\Yahoo!
2008-10-06 20:08 . 2008-10-06 20:13 <DIR> d-------- C:\Program Files\CCleaner
2008-10-06 19:43 . 2008-10-06 19:43 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\ICQ
2008-10-05 19:58 . 2008-10-11 00:32 79,077 --a------ C:\WINDOWS\system32\gbqnmkyqxmlyoqw.exe
2008-10-05 19:57 . 2008-10-05 19:57 153,512 --a------ C:\WINDOWS\system32\g71.exe
2008-10-05 18:37 . 2008-10-05 18:37 <DIR> d-------- C:\Program Files\Lavasoft
2008-10-05 18:37 . 2008-10-05 18:38 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-10-05 18:32 . 2008-10-05 18:32 <DIR> d-------- C:\Program Files\Trend Micro
2008-10-05 17:52 . 2008-10-05 17:52 <DIR> d-------- C:\Program Files\BitTorrent Fastest Tool
2008-10-05 17:51 . 2008-10-10 23:19 90,891 --a------ C:\WINDOWS\system32\ezkrdscacssisy.dll-uninst.exe
2008-10-05 17:50 . 2008-10-05 19:51 <DIR> d-------- C:\Program Files\Web Hottest Videos Personal Player
2008-10-05 17:50 . 2008-10-05 17:50 <DIR> d-------- C:\Program Files\Conduit
2008-10-05 17:50 . 2008-10-05 17:54 <DIR> d-------- C:\Program Files\Come2PlayK2P
2008-10-05 16:06 . 2008-10-05 16:06 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\SUPERAntiSpyware.com
2008-10-04 12:01 . 2007-03-01 19:54 21,056 --a------ C:\WINDOWS\system32\drivers\sskbfd.sys
2008-10-04 11:54 . 2008-10-04 11:54 164 --a------ C:\install.dat
2008-10-04 11:53 . 2008-10-04 11:53 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Webroot
2008-10-03 16:05 . 2008-10-03 16:05 156,672 --a------ C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll
2008-10-02 19:51 . 2007-09-06 00:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe
2008-10-02 19:51 . 2006-04-27 17:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2008-10-02 19:51 . 2008-09-08 23:38 88,576 --a------ C:\WINDOWS\system32\AntiXPVSTFix.exe
2008-10-02 19:51 . 2008-10-01 15:51 87,552 --a------ C:\WINDOWS\system32\VACFix.exe
2008-10-02 19:51 . 2008-09-19 12:26 82,944 --a------ C:\WINDOWS\system32\o4Patch.exe
2008-10-02 19:51 . 2008-09-19 12:26 82,944 --a------ C:\WINDOWS\system32\IEDFix.C.exe
2008-10-02 19:51 . 2008-08-18 12:19 82,432 --a------ C:\WINDOWS\system32\404Fix.exe
2008-10-02 19:51 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-10-02 19:51 . 2004-07-31 18:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe
2008-10-02 19:51 . 2007-10-04 00:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe
2008-10-01 20:39 . 2008-10-01 20:39 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2008-10-01 20:38 . 2008-10-01 20:39 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2008-10-01 20:38 . 2008-10-01 20:38 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\SUPERAntiSpyware.com
2008-10-01 20:09 . 2008-10-01 20:09 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\AntiMalwareGuard
2008-10-01 18:27 . 2008-09-02 17:25 4,096 --a------ C:\WINDOWS\system32\bootrem.exe
2008-10-01 18:26 . 2008-10-01 18:26 <DIR> d-------- C:\My Downloads
2008-10-01 13:59 . 2008-10-01 13:59 <DIR> d-------- C:\Program Files\THQ
2008-09-30 17:24 . 2008-09-30 17:25 <DIR> d-------- C:\Documents and Settings\Eliška\Data aplikací\Zoner
2008-09-27 23:29 . 2008-09-27 23:29 <DIR> d-------- C:\Documents and Settings\Kuba\.sysdb20
2008-09-27 23:29 . 2008-09-27 23:29 <DIR> d-------- C:\Documents and Settings\Kuba\.editix
2008-09-27 23:28 . 2008-09-27 23:28 <DIR> d-------- C:\Program Files\editix2008
2008-09-24 20:38 . 2008-09-24 20:41 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Zoner
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\system32\cs
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\system32\bits
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\l2schemas
2008-09-22 20:52 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2008-09-22 20:44 . 2008-09-22 20:44 <DIR> d-------- C:\WINDOWS\EHome
2008-09-22 20:36 . 2008-09-22 20:38 <DIR> d--h----- C:\Program Files\Zero G Registry
2008-09-22 20:36 . 2008-09-22 20:36 <DIR> d-------- C:\Program Files\Series_60_Theme_Studio
2008-09-22 20:34 . 2008-09-22 20:34 <DIR> d--h----- C:\Documents and Settings\Kuba\InstallAnywhere
2008-09-22 14:52 . 2008-09-22 14:53 <DIR> d-------- C:\Program Files\SISSigner
2008-09-21 17:34 . 2004-01-14 03:10 163,840 --a------ C:\WINDOWS\BJPSUNST.EXE
2008-09-21 17:33 . 1998-10-29 16:45 306,688 --a------ C:\WINDOWS\IsUninst.exe
2008-09-21 17:32 . 2008-09-21 17:32 <DIR> d-------- C:\WINDOWS\StartHtmico
2008-09-21 17:31 . 2008-09-21 17:31 <DIR> d--h----- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
2008-09-21 17:31 . 2005-04-15 07:00 140,288 --a------ C:\WINDOWS\system32\CNMLM78.DLL
2008-09-21 17:31 . 2005-03-08 20:17 90,112 -ra------ C:\WINDOWS\system32\CNMCP78.exe
2008-09-21 17:31 . 2005-04-15 07:00 8,704 --a------ C:\WINDOWS\system32\CNMVS78.DLL
2008-09-21 17:30 . 2008-09-21 17:34 <DIR> d-------- C:\Program Files\Canon
2008-09-21 17:22 . 2008-04-13 20:47 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-09-18 19:39 . 2008-09-18 19:39 <DIR> d-------- C:\Documents and Settings\Eliška\Data aplikací\Samsung
2008-09-18 19:38 . 2008-09-18 19:38 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Samsung
2008-09-18 19:32 . 2008-09-18 19:32 <DIR> d-------- C:\WINDOWS\system32\Samsung_USB_Drivers
2008-09-18 19:32 . 2006-05-03 22:53 174,592 --a------ C:\WINDOWS\system32\framedyn.dll
2008-09-18 19:32 . 2007-05-02 11:12 109,704 --a------ C:\WINDOWS\system32\drivers\ssm_mdm.sys
2008-09-18 19:32 . 2007-05-02 11:12 83,592 --a------ C:\WINDOWS\system32\drivers\ssm_bus.sys
2008-09-18 19:32 . 2007-05-02 11:12 15,112 --a------ C:\WINDOWS\system32\drivers\ssm_mdfl.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_whnt.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_wh.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_cmnt.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_cm.sys
2008-09-18 19:31 . 2006-07-24 16:05 5,632 --a------ C:\WINDOWS\system32\drivers\StarOpen.sys
2008-09-18 19:30 . 2008-09-18 19:30 <DIR> d-------- C:\Program Files\Samsung
2008-09-18 18:38 . 2008-09-18 18:38 <DIR> d-------- C:\WINDOWS\system32\Samsung
2008-09-18 18:38 . 2005-08-28 20:51 766 --a------ C:\WINDOWS\system32\Uninstall.ico
2008-09-18 18:37 . 2008-09-18 18:37 <DIR> d-------- C:\WINDOWS\system32\Samsung PC Studio Codecs
2008-09-18 18:37 . 2005-11-29 16:17 2,067,140 --a------ C:\WINDOWS\system32\avcodec.dll
2008-09-18 18:37 . 2005-12-16 18:30 679,936 --a------ C:\WINDOWS\system32\fun_mp4_enc.dll
2008-09-18 18:37 . 2005-12-16 15:50 634,880 --a------ C:\WINDOWS\system32\FunDecFilter.ax
2008-09-18 18:37 . 2005-12-15 16:48 528,384 --a------ C:\WINDOWS\system32\FunEncFilter.ax
2008-09-18 18:37 . 2005-12-15 16:53 69,632 --a------ C:\WINDOWS\system32\FunEQFilter.ax
2008-09-18 18:37 . 2005-12-15 16:50 61,440 --a------ C:\WINDOWS\system32\mp4_vcodec.dll
2008-09-18 18:37 . 2005-12-15 16:53 57,344 --a------ C:\WINDOWS\system32\FunVideoAdjustFilter.ax
2008-09-18 18:37 . 2005-12-15 16:52 53,248 --a------ C:\WINDOWS\system32\FunVideoResizeFilter.ax
2008-09-18 18:37 . 2005-12-15 16:54 53,248 --a------ C:\WINDOWS\system32\FunImgFilter.ax
2008-09-17 16:56 . 2008-09-17 16:56 <DIR> d-------- C:\WINDOWS\system32\QuickTime
2008-09-17 16:55 . 2008-09-17 16:55 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-09-17 16:55 . 2008-09-17 16:56 <DIR> d-------- C:\Program Files\Macromedia
2008-09-17 16:55 . 2008-09-17 16:58 <DIR> d-------- C:\Program Files\Common Files\Macromedia
2008-09-17 15:18 . 2008-09-17 15:18 <DIR> d-------- C:\Program Files\Common Files\SWF Studio
2008-09-16 19:11 . 2004-08-17 15:43 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-09-13 20:51 . 2008-10-01 08:59 151 --a------ C:\WINDOWS\PhotoSnapViewer.INI
2008-09-13 10:56 . 2008-10-10 19:56 <DIR> d-------- C:\Program Files\Spybot - Search & Destroy
2008-09-13 10:56 . 2008-10-10 19:56 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-12 16:28 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-12 10:38 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2008-10-12 10:37 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Spyware Terminator
2008-10-12 10:28 --------- d-----w C:\Program Files\Spyware Terminator
2008-10-10 17:45 --------- d-----w C:\Program Files\eMule
2008-10-10 15:56 --------- d-----w C:\Documents and Settings\Taťka\Data aplikací\Spyware Terminator
2008-10-05 16:37 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-10-02 18:38 90,112 ----a-w C:\WINDOWS\DUMP4ac4.tmp
2008-10-02 18:37 98,304 ----a-w C:\WINDOWS\DUMP3875.tmp
2008-10-01 09:37 --------- d-----w C:\Documents and Settings\Taťka\Data aplikací\OpenOffice.org2
2008-09-29 13:54 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\Spyware Terminator
2008-09-28 13:23 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-09-28 12:09 --------- d-----w C:\Program Files\SMS posílač Treca
2008-09-27 12:10 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\OpenOffice.org2
2008-09-27 09:20 --------- d-----w C:\Program Files\ICQ6
2008-09-24 18:27 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\OpenOffice.org2
2008-09-22 19:00 2,684 ----a-w C:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
2008-09-17 17:21 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2008-09-17 14:56 --------- d-----w C:\Program Files\Opera
2008-09-13 11:48 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Ahead
2008-09-08 15:44 --------- d-----w C:\Program Files\Nero
2008-09-08 15:44 --------- d-----w C:\Program Files\Common Files\Ahead
2008-09-07 16:10 --------- d-----w C:\Program Files\DAP
2008-09-07 16:10 --------- d-----w C:\Program Files\BitComet
2008-09-07 16:10 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\SpeedBit
2008-09-07 16:09 --------- d-----w C:\Program Files\BS.Player ControlBar
2008-09-06 18:05 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\BSplayer
2008-09-06 17:44 --------- d-----w C:\Program Files\Webteh
2008-09-06 17:44 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\BSplayer Pro
2008-09-06 12:39 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-09-06 12:39 107,832 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-08-31 09:52 --------- d---a-w C:\Documents and Settings\All Users\Data aplikací\TEMP
2008-08-30 18:46 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Free Download Manager
2008-08-29 16:18 2,560 ----a-w C:\WINDOWS\system32\bitcometres.dll
2008-08-29 10:42 50,688 ----a-w C:\WINDOWS\system32\wbhelp2.dll
2008-08-29 09:58 --------- d-----w C:\Program Files\Free Download Manager
2008-08-29 09:57 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\FreeDownloadManager.ORG
2008-08-28 18:36 --------- d-----w C:\Program Files\Star Downloader
2008-08-28 14:37 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\ICQ
2008-08-26 21:20 --------- d-----w C:\Program Files\Wordmaster XP
2008-08-23 11:14 --------- d-----w C:\Program Files\Lonely Cat Games
2008-08-23 10:26 --------- d-----w C:\Program Files\Any Video Converter
2008-08-23 10:26 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Any Video Converter
2008-08-14 18:44 --------- d-----w C:\Program Files\YouTubeRobot
2008-08-06 19:41 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2008-08-04 20:50 47,251 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2008-08-04 20:50 2,145 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-08-04 17:27 8,972 ----a-w C:\WINDOWS\pchealth\helpctr\Config\Cntstore.bin
2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
.

((((((((((((((((((((((((((((( snapshot@2008-10-11_18.11.09.90 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-10-12 18:22:31 295,606 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1029-7B44-A81200000003}\SC_Reader.exe
+ 2008-10-12 17:58:53 18,718 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\ARPPRODUCTICON.exe
+ 2008-10-12 17:58:53 18,718 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\NewShortcut1_E659E0EE10E649B7869660F38D0EB174.exe
+ 2008-10-12 17:58:53 57,344 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\NewShortcut4_C665E66BE8EF49DBB30B81BB5E60462C.exe
- 2008-10-10 18:00:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-10-12 10:37:50 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-10-10 18:00:02 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-12 10:37:50 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-12 10:37:55 49,152 --sha-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008092920081006\index.dat
+ 2008-10-12 10:37:55 32,768 --sha-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008101220081013\index.dat
- 2008-10-10 18:00:02 65,536 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2008-10-12 10:37:50 65,536 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2008-06-21 02:54:54 66,600 ----a-r C:\WINDOWS\system32\drivers\sbhips.sys
+ 2006-06-05 12:14:28 479,232 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2006-06-05 12:14:28 548,864 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 12:14:28 626,688 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1adcdfd4-d18f-d5de-64c7-60d2557b57a8}]
2008-10-03 16:05 156672 --a------ C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1c4dcf93-aa29-beb4-7c96-0ac2686d02a6}]
2008-10-08 11:43 479232 --a------ C:\WINDOWS\system32\ezkrdscacssisy.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{b8a5b62c-517f-42a5-85ae-29b5497fb15f}]
2008-08-20 23:03 1780248 --a------ C:\Program Files\Come2PlayK2P\tbCome.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{2C688203-7EB3-4327-9995-1CB417BA23F9}"= "C:\Program Files\BS.Player ControlBar\BSToolbar.dll" [2008-08-13 757192]
"{b8a5b62c-517f-42a5-85ae-29b5497fb15f}"= "C:\Program Files\Come2PlayK2P\tbCome.dll" [2008-08-20 1780248]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{2C688203-7EB3-4327-9995-1CB417BA23F9}"= "C:\Program Files\BS.Player ControlBar\BSToolbar.dll" [2008-08-13 757192]
"{B8A5B62C-517F-42A5-85AE-29B5497FB15F}"= "C:\Program Files\Come2PlayK2P\tbCome.dll" [2008-08-20 1780248]

[HKEY_CLASSES_ROOT\clsid\{2c688203-7eb3-4327-9995-1cb417ba23f9}]
[HKEY_CLASSES_ROOT\BSToolbar.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{1FC79FB5-E4BD-48c8-B2E9-B8E74DB2C3A9}]
[HKEY_CLASSES_ROOT\BSToolbar.ToolBandObj]

[HKEY_CLASSES_ROOT\clsid\{b8a5b62c-517f-42a5-85ae-29b5497fb15f}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-04-22 5898240]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-04-22 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 155648]
"vsldbhqvjmhlyyztw"="C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll" [2008-10-03 156672]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-08-04 1817600]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"nwiz"="nwiz.exe" [2005-04-22 C:\WINDOWS\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]

C:\Documents and Settings\Taśka\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Personal Player.lnk - C:\Program Files\Web Hottest Videos Personal Player\Adware-SE profesional Web hottest videos personal player.exe [2008-10-05 442368]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-07-23 16:28 352256 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 C:\WINDOWS\system32\byXOiGAP

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
"ICQ"="C:\Program Files\ICQ6\ICQ.exe" silent
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" -startup
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
"SpySweeper"=C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\ICQ6\\ICQ.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Free Download Manager\\fdm.exe"=
"C:\\Program Files\\BitComet\\BitComet.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8623:TCP"= 8623:TCP:BitComet 8623 TCP
"8623:UDP"= 8623:UDP:BitComet 8623 UDP

R1 SbFw;SbFw;C:\WINDOWS\system32\drivers\SbFw.sys [2008-07-16 269736]
R1 sbhips;Sunbelt HIPS Driver;C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2008-08-04 141312]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
R2 SbPF.Launcher;SbPF.Launcher;C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-07-30 95528]
R2 SPF4;Sunbelt Personal Firewall 4;C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-07-30 1361192]
R2 UxTuneUp;TuneUp Design Expansion;C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 DstAud;DstAud;C:\WINDOWS\system32\DRIVERS\DstAud.sys [2001-12-05 8901]
R3 DstVid;DstVid;C:\WINDOWS\system32\DRIVERS\DstVid.sys [2001-12-05 11237]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2008-04-13 69120]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB;C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [ ]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

*Newly Created Service* - PROCEXP90
*Newly Created Service* - SBFW
*Newly Created Service* - SBHIPS
*Newly Created Service* - SBPF.LAUNCHER
*Newly Created Service* - SPF4
.
Obsah adresáře 'Naplánované úlohy'

2008-10-03 C:\WINDOWS\Tasks\1-Click Maintenance.job
- C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe [2006-10-22 14:17]
.
.
------- Doplňkový sken -------
.
FireFox -: Profile - C:\Documents and Settings\Kuba\Data aplikací\Mozilla\Firefox\Profiles\2bwrrear.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.bsplayer-search.com/startpage
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npstar.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-12 21:27:46
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...


**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet015\Services\TDSSserv]
"imagepath"="\systemroot\system32\drivers\TDSSserv.sys"
.
Celkový čas: 2008-10-12 21:35:06
ComboFix-quarantined-files.txt 2008-10-12 19:34:59
ComboFix2.txt 2008-10-11 16:12:17

Před spuštěním: 2 728 271 872
Po spuštění: 2,714,890,240

315 --- E O F --- 2008-09-23 16:42:32

[Funstorm007]

Jo a jeste neco,uz se mi zobrazili chybejici ikony na plose,mysli ze vsechny

[Funstorm007]

NO hovno ikony,uplne vse uz je v cajku,co sem udelal??? .Cim to je????

[Funstorm007]

jo a ten firewall bezi nejak na pozadi nebo co??Ze ho nikde nevidim...

[mmmartin]

NO hovno ikony,uplne vse uz je v cajku,co sem udelal??? .Cim to je????

To jsem sám rád, že je možné označit topic za vyřešený.
Ano, firewall běží na pozadí.

[Diallix]

Toto ste zvladol.

Teraz do poznamkoveho bloku skopirujte:

KiiAll::
File::
C:\WINDOWS\system32\g59.exe
C:\WINDOWS\system32\drivers\msulr.sys
C:\WINDOWS\system32\ezkrdscacssisy.dll
C:\WINDOWS\system32\gbqnmkyqxmlyoqw.exe
C:\WINDOWS\system32\g71.exe
C:\WINDOWS\system32\ezkrdscacssisy.dll-uninst.exe
C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll
C:\WINDOWS\system32\ezkrdscacssisy.dll
C:\WINDOWS\DUMP4ac4.tmp
C:\WINDOWS\DUMP3875.tmp
C:\WINDOWS\system32\VCCLSID.exe
C:\WINDOWS\system32\SrchSTS.exe
C:\WINDOWS\system32\AntiXPVSTFix.exe
C:\WINDOWS\system32\VACFix.exe
C:\WINDOWS\system32\o4Patch.exe
C:\WINDOWS\system32\IEDFix.C.exe
C:\WINDOWS\system32\404Fix.exe
C:\WINDOWS\system32\Process.exe
C:\WINDOWS\system32\dumphive.exe
C:\WINDOWS\system32\WS2Fix.exe
C:\WINDOWS\system32\Uninstall.ico

Folder::
C:\Program Files\Web Hottest Videos Personal Player

Registry::
[HKEY_LOCAL_MACHINE\System\ControlSet015\Services\TDSSserv]
"imagepath"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"vsldbhqvjmhlyyztw"=-
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1c4dcf93-aa29-beb4-7c96-0ac2686d02a6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1adcdfd4-d18f-d5de-64c7-60d2557b57a8}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Authentication Packages"=hex(7):6d,73,76,31,5f,30,00,00

Ulozte ho na plochu ako CFScript.txt, chytte mysou, presunte nad ComboFix a pustite ako na obrazku dole. Po skene ComboFix vygeneruje a ulozi do lokalnej jednotky novy log ktoreho obsah skopirujte sem.


Ked to urobite, tak podla tochto navodu pouzite MWAV. http://viry.cz/forum/viewtopic.php?f=29&t=4097
Program si stiahnite , nainstalujte, spravne nastavte podla navodu, updatujte a zvolte skenovanie. Po skene sem dajte log z dolneho okna. Pred skenom vypnite vsetky AV a antispy !

Problem zdaleka nie je vyrieseny!

[Funstorm007]

Takze,zde je ten lug z Combofix:

ComboFix 08-10-05.11 - Kuba 2008-10-13 20:18:43.4 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.1.1029.18.621 [GMT 2:00]
Spuštěný z: C:\Documents and Settings\Kuba\Plocha\ComboFix.exe
Použité ovládací přepínače :: C:\Documents and Settings\Kuba\Plocha\CFScript.txt
* Vytvořen nový Bod Obnovení

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!

FILE ::
C:\WINDOWS\DUMP3875.tmp
C:\WINDOWS\DUMP4ac4.tmp
C:\WINDOWS\system32\404Fix.exe
C:\WINDOWS\system32\AntiXPVSTFix.exe
C:\WINDOWS\system32\drivers\msulr.sys
C:\WINDOWS\system32\dumphive.exe
C:\WINDOWS\system32\ezkrdscacssisy.dll
C:\WINDOWS\system32\ezkrdscacssisy.dll-uninst.exe
C:\WINDOWS\system32\g59.exe
C:\WINDOWS\system32\g71.exe
C:\WINDOWS\system32\gbqnmkyqxmlyoqw.exe
C:\WINDOWS\system32\IEDFix.C.exe
C:\WINDOWS\system32\o4Patch.exe
C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll
C:\WINDOWS\system32\Process.exe
C:\WINDOWS\system32\SrchSTS.exe
C:\WINDOWS\system32\Uninstall.ico
C:\WINDOWS\system32\VACFix.exe
C:\WINDOWS\system32\VCCLSID.exe
C:\WINDOWS\system32\WS2Fix.exe
.
/wow section nedokončena

((((((((((((((((((((((((( Soubory vytvořené od 2008-09-13 do 2008-10-13 )))))))))))))))))))))))))))))))
.

2008-10-12 20:21 . 2008-10-12 20:22 <DIR> d-------- C:\Program Files\Common Files\Adobe
2008-10-12 19:58 . 2008-10-12 19:58 <DIR> d-------- C:\Program Files\Sunbelt Software
2008-10-12 19:58 . 2008-07-16 09:57 269,736 -ra------ C:\WINDOWS\system32\drivers\SbFw.sys
2008-10-12 19:58 . 2008-06-21 04:54 65,576 --a------ C:\WINDOWS\system32\drivers\SbFwIm.sys
2008-10-12 18:28 . 2008-10-12 18:28 <DIR> d-------- C:\Program Files\Paragon Software
2008-10-12 16:31 . 2008-10-12 16:39 <DIR> d---s---- C:\Hudba
2008-10-12 13:03 . 2008-10-12 13:03 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Malwarebytes
2008-10-11 00:32 . 2008-10-11 00:32 153,434 --a------ C:\WINDOWS\system32\g59.exe
2008-10-10 23:11 . 2008-10-10 23:11 61,440 --a------ C:\WINDOWS\system32\drivers\msulr.sys
2008-10-09 18:30 . 2008-10-09 18:37 <DIR> d-------- C:\SDFix
2008-10-08 11:43 . 2008-10-08 11:43 479,232 --a------ C:\WINDOWS\system32\ezkrdscacssisy.dll
2008-10-07 20:28 . 2008-10-07 20:28 <DIR> d-------- C:\Documents and Settings\Taťka\Phone Browser
2008-10-07 20:28 . 2008-10-07 20:28 <DIR> d-------- C:\Documents and Settings\Taťka\Phone Browser
2008-10-07 17:11 . 2008-10-07 17:11 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\Malwarebytes
2008-10-07 17:10 . 2008-10-07 17:11 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-07 17:10 . 2008-10-07 17:10 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2008-10-07 17:10 . 2008-09-10 00:10 38,528 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-07 17:10 . 2008-09-10 00:09 17,200 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-10-07 17:07 . 2008-10-07 17:07 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\BSplayer
2008-10-06 21:17 . 2008-10-06 21:17 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\TuneUp Software
2008-10-06 20:09 . 2008-10-06 20:09 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Yahoo! Companion
2008-10-06 20:08 . 2008-10-06 20:08 <DIR> d-------- C:\Program Files\Yahoo!
2008-10-06 20:08 . 2008-10-06 20:13 <DIR> d-------- C:\Program Files\CCleaner
2008-10-06 19:43 . 2008-10-06 19:43 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\ICQ
2008-10-05 19:58 . 2008-10-11 00:32 79,077 --a------ C:\WINDOWS\system32\gbqnmkyqxmlyoqw.exe
2008-10-05 19:57 . 2008-10-05 19:57 153,512 --a------ C:\WINDOWS\system32\g71.exe
2008-10-05 18:37 . 2008-10-05 18:37 <DIR> d-------- C:\Program Files\Lavasoft
2008-10-05 18:37 . 2008-10-05 18:38 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-10-05 18:32 . 2008-10-05 18:32 <DIR> d-------- C:\Program Files\Trend Micro
2008-10-05 17:52 . 2008-10-05 17:52 <DIR> d-------- C:\Program Files\BitTorrent Fastest Tool
2008-10-05 17:51 . 2008-10-10 23:19 90,891 --a------ C:\WINDOWS\system32\ezkrdscacssisy.dll-uninst.exe
2008-10-05 17:50 . 2008-10-05 19:51 <DIR> d-------- C:\Program Files\Web Hottest Videos Personal Player
2008-10-05 17:50 . 2008-10-05 17:50 <DIR> d-------- C:\Program Files\Conduit
2008-10-05 17:50 . 2008-10-05 17:54 <DIR> d-------- C:\Program Files\Come2PlayK2P
2008-10-05 16:06 . 2008-10-05 16:06 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\SUPERAntiSpyware.com
2008-10-04 12:01 . 2007-03-01 19:54 21,056 --a------ C:\WINDOWS\system32\drivers\sskbfd.sys
2008-10-04 11:54 . 2008-10-04 11:54 164 --a------ C:\install.dat
2008-10-04 11:53 . 2008-10-04 11:53 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Webroot
2008-10-03 16:05 . 2008-10-03 16:05 156,672 --a------ C:\WINDOWS\system32\piwzdctrtcbtjrxa.dll
2008-10-02 19:51 . 2007-09-06 00:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe
2008-10-02 19:51 . 2006-04-27 17:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2008-10-02 19:51 . 2008-09-08 23:38 88,576 --a------ C:\WINDOWS\system32\AntiXPVSTFix.exe
2008-10-02 19:51 . 2008-10-01 15:51 87,552 --a------ C:\WINDOWS\system32\VACFix.exe
2008-10-02 19:51 . 2008-09-19 12:26 82,944 --a------ C:\WINDOWS\system32\o4Patch.exe
2008-10-02 19:51 . 2008-09-19 12:26 82,944 --a------ C:\WINDOWS\system32\IEDFix.C.exe
2008-10-02 19:51 . 2008-08-18 12:19 82,432 --a------ C:\WINDOWS\system32\404Fix.exe
2008-10-02 19:51 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-10-02 19:51 . 2004-07-31 18:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe
2008-10-02 19:51 . 2007-10-04 00:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe
2008-10-01 20:39 . 2008-10-01 20:39 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2008-10-01 20:38 . 2008-10-01 20:39 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2008-10-01 20:38 . 2008-10-01 20:38 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\SUPERAntiSpyware.com
2008-10-01 20:09 . 2008-10-01 20:09 <DIR> d-------- C:\Documents and Settings\Taťka\Data aplikací\AntiMalwareGuard
2008-10-01 18:27 . 2008-09-02 17:25 4,096 --a------ C:\WINDOWS\system32\bootrem.exe
2008-10-01 18:26 . 2008-10-01 18:26 <DIR> d-------- C:\My Downloads
2008-10-01 13:59 . 2008-10-01 13:59 <DIR> d-------- C:\Program Files\THQ
2008-09-30 17:24 . 2008-09-30 17:25 <DIR> d-------- C:\Documents and Settings\Eliška\Data aplikací\Zoner
2008-09-27 23:29 . 2008-09-27 23:29 <DIR> d-------- C:\Documents and Settings\Kuba\.sysdb20
2008-09-27 23:29 . 2008-09-27 23:29 <DIR> d-------- C:\Documents and Settings\Kuba\.editix
2008-09-27 23:28 . 2008-09-27 23:28 <DIR> d-------- C:\Program Files\editix2008
2008-09-24 20:38 . 2008-09-24 20:41 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Zoner
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\system32\cs
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\system32\bits
2008-09-22 20:54 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\l2schemas
2008-09-22 20:52 . 2008-09-22 20:54 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2008-09-22 20:44 . 2008-09-22 20:44 <DIR> d-------- C:\WINDOWS\EHome
2008-09-22 20:36 . 2008-09-22 20:38 <DIR> d--h----- C:\Program Files\Zero G Registry
2008-09-22 20:36 . 2008-09-22 20:36 <DIR> d-------- C:\Program Files\Series_60_Theme_Studio
2008-09-22 20:34 . 2008-09-22 20:34 <DIR> d--h----- C:\Documents and Settings\Kuba\InstallAnywhere
2008-09-22 14:52 . 2008-09-22 14:53 <DIR> d-------- C:\Program Files\SISSigner
2008-09-21 17:34 . 2004-01-14 03:10 163,840 --a------ C:\WINDOWS\BJPSUNST.EXE
2008-09-21 17:33 . 1998-10-29 16:45 306,688 --a------ C:\WINDOWS\IsUninst.exe
2008-09-21 17:32 . 2008-09-21 17:32 <DIR> d-------- C:\WINDOWS\StartHtmico
2008-09-21 17:31 . 2008-09-21 17:31 <DIR> d--h----- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
2008-09-21 17:31 . 2005-04-15 07:00 140,288 --a------ C:\WINDOWS\system32\CNMLM78.DLL
2008-09-21 17:31 . 2005-03-08 20:17 90,112 -ra------ C:\WINDOWS\system32\CNMCP78.exe
2008-09-21 17:31 . 2005-04-15 07:00 8,704 --a------ C:\WINDOWS\system32\CNMVS78.DLL
2008-09-21 17:30 . 2008-09-21 17:34 <DIR> d-------- C:\Program Files\Canon
2008-09-21 17:22 . 2008-04-13 20:47 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-09-18 19:39 . 2008-09-18 19:39 <DIR> d-------- C:\Documents and Settings\Eliška\Data aplikací\Samsung
2008-09-18 19:38 . 2008-09-18 19:38 <DIR> d-------- C:\Documents and Settings\Kuba\Data aplikací\Samsung
2008-09-18 19:32 . 2008-09-18 19:32 <DIR> d-------- C:\WINDOWS\system32\Samsung_USB_Drivers
2008-09-18 19:32 . 2006-05-03 22:53 174,592 --a------ C:\WINDOWS\system32\framedyn.dll
2008-09-18 19:32 . 2007-05-02 11:12 109,704 --a------ C:\WINDOWS\system32\drivers\ssm_mdm.sys
2008-09-18 19:32 . 2007-05-02 11:12 83,592 --a------ C:\WINDOWS\system32\drivers\ssm_bus.sys
2008-09-18 19:32 . 2007-05-02 11:12 15,112 --a------ C:\WINDOWS\system32\drivers\ssm_mdfl.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_whnt.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_wh.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_cmnt.sys
2008-09-18 19:32 . 2007-05-02 11:12 12,424 --a------ C:\WINDOWS\system32\drivers\ssm_cm.sys
2008-09-18 19:31 . 2006-07-24 16:05 5,632 --a------ C:\WINDOWS\system32\drivers\StarOpen.sys
2008-09-18 19:30 . 2008-09-18 19:30 <DIR> d-------- C:\Program Files\Samsung
2008-09-18 18:38 . 2008-09-18 18:38 <DIR> d-------- C:\WINDOWS\system32\Samsung
2008-09-18 18:38 . 2005-08-28 20:51 766 --a------ C:\WINDOWS\system32\Uninstall.ico
2008-09-18 18:37 . 2008-09-18 18:37 <DIR> d-------- C:\WINDOWS\system32\Samsung PC Studio Codecs
2008-09-18 18:37 . 2005-11-29 16:17 2,067,140 --a------ C:\WINDOWS\system32\avcodec.dll
2008-09-18 18:37 . 2005-12-16 18:30 679,936 --a------ C:\WINDOWS\system32\fun_mp4_enc.dll
2008-09-18 18:37 . 2005-12-16 15:50 634,880 --a------ C:\WINDOWS\system32\FunDecFilter.ax
2008-09-18 18:37 . 2005-12-15 16:48 528,384 --a------ C:\WINDOWS\system32\FunEncFilter.ax
2008-09-18 18:37 . 2005-12-15 16:53 69,632 --a------ C:\WINDOWS\system32\FunEQFilter.ax
2008-09-18 18:37 . 2005-12-15 16:50 61,440 --a------ C:\WINDOWS\system32\mp4_vcodec.dll
2008-09-18 18:37 . 2005-12-15 16:53 57,344 --a------ C:\WINDOWS\system32\FunVideoAdjustFilter.ax
2008-09-18 18:37 . 2005-12-15 16:52 53,248 --a------ C:\WINDOWS\system32\FunVideoResizeFilter.ax
2008-09-18 18:37 . 2005-12-15 16:54 53,248 --a------ C:\WINDOWS\system32\FunImgFilter.ax
2008-09-17 16:56 . 2008-09-17 16:56 <DIR> d-------- C:\WINDOWS\system32\QuickTime
2008-09-17 16:55 . 2008-09-17 16:55 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-09-17 16:55 . 2008-09-17 16:56 <DIR> d-------- C:\Program Files\Macromedia
2008-09-17 16:55 . 2008-09-17 16:58 <DIR> d-------- C:\Program Files\Common Files\Macromedia
2008-09-17 15:18 . 2008-09-17 15:18 <DIR> d-------- C:\Program Files\Common Files\SWF Studio
2008-09-16 19:11 . 2004-08-17 15:43 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-09-13 20:51 . 2008-10-01 08:59 151 --a------ C:\WINDOWS\PhotoSnapViewer.INI
2008-09-13 10:56 . 2008-10-10 19:56 <DIR> d-------- C:\Program Files\Spybot - Search & Destroy
2008-09-13 10:56 . 2008-10-10 19:56 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-13 18:06 --------- d-----w C:\Program Files\Spyware Terminator
2008-10-13 18:06 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2008-10-13 18:03 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Spyware Terminator
2008-10-12 16:28 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-10 17:45 --------- d-----w C:\Program Files\eMule
2008-10-10 15:56 --------- d-----w C:\Documents and Settings\Taťka\Data aplikací\Spyware Terminator
2008-10-05 16:37 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-10-02 18:38 90,112 ----a-w C:\WINDOWS\DUMP4ac4.tmp
2008-10-02 18:37 98,304 ----a-w C:\WINDOWS\DUMP3875.tmp
2008-10-01 09:37 --------- d-----w C:\Documents and Settings\Taťka\Data aplikací\OpenOffice.org2
2008-09-29 13:54 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\Spyware Terminator
2008-09-28 13:23 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-09-28 12:09 --------- d-----w C:\Program Files\SMS posílač Treca
2008-09-27 12:10 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\OpenOffice.org2
2008-09-27 09:20 --------- d-----w C:\Program Files\ICQ6
2008-09-24 18:27 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\OpenOffice.org2
2008-09-22 19:00 2,684 ----a-w C:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
2008-09-17 17:21 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2008-09-17 14:56 --------- d-----w C:\Program Files\Opera
2008-09-13 11:48 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Ahead
2008-09-08 15:44 --------- d-----w C:\Program Files\Nero
2008-09-08 15:44 --------- d-----w C:\Program Files\Common Files\Ahead
2008-09-07 16:10 --------- d-----w C:\Program Files\DAP
2008-09-07 16:10 --------- d-----w C:\Program Files\BitComet
2008-09-07 16:10 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\SpeedBit
2008-09-07 16:09 --------- d-----w C:\Program Files\BS.Player ControlBar
2008-09-06 18:05 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\BSplayer
2008-09-06 17:44 --------- d-----w C:\Program Files\Webteh
2008-09-06 17:44 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\BSplayer Pro
2008-09-06 12:39 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-09-06 12:39 107,832 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-08-31 09:52 --------- d---a-w C:\Documents and Settings\All Users\Data aplikací\TEMP
2008-08-30 18:46 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Free Download Manager
2008-08-29 16:18 2,560 ----a-w C:\WINDOWS\system32\bitcometres.dll
2008-08-29 10:42 50,688 ----a-w C:\WINDOWS\system32\wbhelp2.dll
2008-08-29 09:58 --------- d-----w C:\Program Files\Free Download Manager
2008-08-29 09:57 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\FreeDownloadManager.ORG
2008-08-28 18:36 --------- d-----w C:\Program Files\Star Downloader
2008-08-28 14:37 --------- d-----w C:\Documents and Settings\Eliška\Data aplikací\ICQ
2008-08-26 21:20 --------- d-----w C:\Program Files\Wordmaster XP
2008-08-23 11:14 --------- d-----w C:\Program Files\Lonely Cat Games
2008-08-23 10:26 --------- d-----w C:\Program Files\Any Video Converter
2008-08-23 10:26 --------- d-----w C:\Documents and Settings\Kuba\Data aplikací\Any Video Converter
2008-08-14 18:44 --------- d-----w C:\Program Files\YouTubeRobot
2008-08-06 19:41 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2008-08-04 20:50 47,251 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2008-08-04 20:50 2,145 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-08-04 17:27 8,972 ----a-w C:\WINDOWS\pchealth\helpctr\Config\Cntstore.bin
2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
.

((((((((((((((((((((((((((((( snapshot@2008-10-11_18.11.09.90 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-10-12 18:22:31 295,606 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1029-7B44-A81200000003}\SC_Reader.exe
+ 2008-10-12 17:58:53 18,718 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\ARPPRODUCTICON.exe
+ 2008-10-12 17:58:53 18,718 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\NewShortcut1_E659E0EE10E649B7869660F38D0EB174.exe
+ 2008-10-12 17:58:53 57,344 ----a-r C:\WINDOWS\Installer\{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}\NewShortcut4_C665E66BE8EF49DBB30B81BB5E60462C.exe
- 2008-10-10 18:00:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-10-12 10:37:50 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-10-10 18:00:02 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-12 10:37:50 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-12 10:37:55 49,152 --sha-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008092920081006\index.dat
+ 2008-10-12 10:37:55 32,768 --sha-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008101220081013\index.dat
- 2008-10-10 18:00:02 65,536 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2008-10-12 10:37:50 65,536 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2008-06-21 02:54:54 66,600 ----a-r C:\WINDOWS\system32\drivers\sbhips.sys
+ 2006-06-05 12:14:28 479,232 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2006-06-05 12:14:28 548,864 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 12:14:28 626,688 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{b8a5b62c-517f-42a5-85ae-29b5497fb15f}]
2008-08-20 23:03 1780248 --a------ C:\Program Files\Come2PlayK2P\tbCome.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{2C688203-7EB3-4327-9995-1CB417BA23F9}"= "C:\Program Files\BS.Player ControlBar\BSToolbar.dll" [2008-08-13 757192]
"{b8a5b62c-517f-42a5-85ae-29b5497fb15f}"= "C:\Program Files\Come2PlayK2P\tbCome.dll" [2008-08-20 1780248]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{2C688203-7EB3-4327-9995-1CB417BA23F9}"= "C:\Program Files\BS.Player ControlBar\BSToolbar.dll" [2008-08-13 757192]
"{B8A5B62C-517F-42A5-85AE-29B5497FB15F}"= "C:\Program Files\Come2PlayK2P\tbCome.dll" [2008-08-20 1780248]

[HKEY_CLASSES_ROOT\clsid\{2c688203-7eb3-4327-9995-1cb417ba23f9}]
[HKEY_CLASSES_ROOT\BSToolbar.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{1FC79FB5-E4BD-48c8-B2E9-B8E74DB2C3A9}]
[HKEY_CLASSES_ROOT\BSToolbar.ToolBandObj]

[HKEY_CLASSES_ROOT\clsid\{b8a5b62c-517f-42a5-85ae-29b5497fb15f}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-04-22 5898240]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-04-22 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 155648]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-08-04 1817600]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"nwiz"="nwiz.exe" [2005-04-22 C:\WINDOWS\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]

C:\Documents and Settings\Taśka\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Personal Player.lnk - C:\Program Files\Web Hottest Videos Personal Player\Adware-SE profesional Web hottest videos personal player.exe [2008-10-05 442368]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-07-23 16:28 352256 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
"ICQ"="C:\Program Files\ICQ6\ICQ.exe" silent
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SoundMan"=SOUNDMAN.EXE
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" -startup
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
"SpySweeper"=C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\ICQ6\\ICQ.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Free Download Manager\\fdm.exe"=
"C:\\Program Files\\BitComet\\BitComet.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8623:TCP"= 8623:TCP:BitComet 8623 TCP
"8623:UDP"= 8623:UDP:BitComet 8623 UDP

R1 SbFw;SbFw;C:\WINDOWS\system32\drivers\SbFw.sys [2008-07-16 269736]
R1 sbhips;Sunbelt HIPS Driver;C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2008-08-04 141312]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
R2 SbPF.Launcher;SbPF.Launcher;C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-07-30 95528]
R2 SPF4;Sunbelt Personal Firewall 4;C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-07-30 1361192]
R2 UxTuneUp;TuneUp Design Expansion;C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 DstAud;DstAud;C:\WINDOWS\system32\DRIVERS\DstAud.sys [2001-12-05 8901]
R3 DstVid;DstVid;C:\WINDOWS\system32\DRIVERS\DstVid.sys [2001-12-05 11237]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2008-04-13 69120]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB;C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [ ]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2008-10-03 C:\WINDOWS\Tasks\1-Click Maintenance.job
- C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe [2006-10-22 14:17]
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-13 20:19:27
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...


**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet015\Services\TDSSserv]
"imagepath"="\systemroot\system32\drivers\TDSSserv.sys"
.
Celkový čas: 2008-10-13 20:25:53
ComboFix-quarantined-files.txt 2008-10-13 18:25:42
ComboFix2.txt 2008-10-12 19:35:09
ComboFix3.txt 2008-10-11 16:12:17

Před spuštěním: 2 815 410 176
Po spuštění: 2,797,981,696

320 --- E O F --- 2008-09-23 16:42:32

[Diallix]

Nezmazalo to, jebak jeden.

Prosim, start >> spustit >> napiste combofix /u >> enter

Nasledne skuste v nudzovom rezime ten script aplikovat este raz. Ak nudzovy nepojde, tak v normalnom.

[Funstorm007]

OK,zkousel jsem ten MWAV,nastavil a spustil v poho,jenze jak je tam ta doporucovana moznost "pouze scan" aby nedoslo ke smazani dulezitych souboru,tak ja u moznos nejak nemuzu zatrhnout,mam verzi 10.0.8 !!!Prosim o pomoc,jinak u toho Combofixu mi ten Firewall dvakrat ukazal neco jako ze zakazal pokus o prunik,ci co...

[Diallix]

U mwavu dajte len sken, pretoze ma plane poplachy, aby nezmazal nieco ok.
Firewall, ak to hlasi len u combofixu, tak to povolte, ak Vam hlasi pokus u prunik neakeho suboru, alebo IP, tak to zadrhnite a aplikujte combofix.

[Funstorm007]

No jenze to je prave ten problem,ja tam to moznost nemam...co s tim???