Prosím o preventivní kontrolu logu ;)

M4RTY · Příspěvekod **M4RTY** » 03 dub 2010 10:14

Čau, s PC nemám problémy, ale chci si po delší době zkontrolovat log :wink:

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 10:12:51, on 3.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe
E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe
C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
E:\Program Files\CyberLink\PowerCinema\PCMAgent.exe
E:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe
E:\Program Files\CyberLink\TV Enhance\TVEService.exe
C:\Program Files\A4Tech\Mouse\Amoumain.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Clarus\Samsung Auto Backup\ISFGuage.exe
C:\Program Files\Clarus\Samsung Auto Backup\ISFRealTimeD.exe
C:\Program Files\Clarus\Samsung Auto Backup\ISFTimerD.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Martin\Opera10.51\opera.exe
C:\Program Files\AIMP2\AIMP2.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll
O2 - BHO: NetXfer - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - C:\Program Files\Xi\NetXfer\NXIEHelper.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\FlashGetBHO3.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O4 - HKLM\..\Run: [RTBatteryMeter] C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [StartupDelayer] "C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [UpdatePDRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\8.0"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCMAgent] "E:\Program Files\CyberLink\PowerCinema\PCMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "E:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [TVEService] "E:\Program Files\CyberLink\TV Enhance\TVEService.exe"
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Samsung Auto Backup Guage.lnk = ?
O4 - Global Startup: Samsung Auto Backup Real-Time Daemon.lnk = ?
O4 - Global Startup: Samsung Auto Backup Scheduler.lnk = ?
O8 - Extra context menu item: Download all by FlashGet3 - C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout pomocí NetXferu - C:\Program Files\Xi\NetXfer\NXAddLink.html
O8 - Extra context menu item: Stáhnout vše pomocí Net&Xferu - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - C:\Program Files\StreamingStar\HiDownload\hidownload.exe (HKCU)
O15 - Trusted Zone: http://software.kuaiche.com
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{46F288FA-1A35-4FA6-AFC1-24F703C2B251}: NameServer = 10.10.10.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HDD & SSD access service - Unknown owner - C:\Program Files\Common Files\BinarySense\disksvc.exe (file missing)
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe
O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe

--
End of file - 11679 bytes

Reklama

autoprd · Příspěvekod **autoprd** » 03 dub 2010 13:09

Fixni:

Kód: Vybrat vše

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll

Stáhni si ATF Cleaner
Spust a stiskni na select all found
Jestli jedeš přes Mozilu Firefox klikni na Firefox nahoře a vyber: Select All, potom klikni na Empty Selected.
Jestli jedeš přes Operu klikni nahoře na Operu a vyber: Select All, potom klikni na Empty Selected.
Až se to vyčistí klikni na exit pro ukončení.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

M4RTY · Příspěvekod **M4RTY** » 03 dub 2010 13:54

Malwarebytes' Anti-Malware 1.45
http://www.malwarebytes.org

Verze databáze: 3930

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

3.4.2010 13:47:47
mbam-log-2010-04-03 (13-47-47).txt

Typ skenu: Rychlý sken
Skenované objekty: 156500
Uplynulý čas: 7 minuta(y), 9 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

//Teď jsem šel na jeden web, a NOD32 hned hlásil JS/TrojanClicker.lframe.EA. Bylo to v opeře, žeprý něco když se to pokoušelo vytvořit opera.exe, toto okno jsem mohl zavřít, ptže soubor byl přesunut do karantény..Můžu používat Operu dále ? Můžu vymazat karanténu ?Dík

Příspěvekod **jaro3** » 03 dub 2010 20:35

Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit(systémové soubory), smazat, přesunout nebo přejmenovat

Stáhni si RSIT (by random/random)
- spusť ho, objeví se ti okno, tak pro pokračování klikni na Continue
- počkej až program proběhne a zobrazí se ti log jinak ho najdeš zde: C:\rsit\log.txt zkopíruj sem prosím celý jeho obsah

M4RTY · Příspěvekod **M4RTY** » 03 dub 2010 20:40

Díky , že ses mě ujal :wink:

. Jdu na to...a co ten NOD ?

Příspěvekod **jaro3** » 03 dub 2010 20:42

Zatím NOD32 nech dát do karantény , co chce.

M4RTY · Příspěvekod **M4RTY** » 03 dub 2010 22:38

Bohužel jsem to vypl, něco mi vytěžovalo CPU na 100% (různé updaty atd.) a nešlo to dopředu, jako kdyby se to zaseklo v čtvrtce, nebo to šlo tak pomalu, že to ani nešlo vidět :smile:

. Zkusím to zítra...tady screen -> zobrazuje kde ty zelené ' % ' byly...a co znamená to číslo (v mém případě 7124) ? Kolik tam má být asi, aby to bylo u konce ? Díky..

Příspěvekod **jaro3** » 03 dub 2010 22:45

co znamená to číslo (v mém případě 7124) ?--to je počet zkontrolovaných souborů. Kolik jich tam máš nevím -může to být 100 000-300 000...

Potom , zítra se kouknu na RSIT.

M4RTY · Příspěvekod **M4RTY** » 04 dub 2010 10:45

Tady ten log..HJT musím připojit sám, nechtěl se spustit stím programem..A můžu používat tu Operu ? Jo, a ještě :smile:

mám prevíta GoogleUpdate.exe mi zatěžoval při Dr.Web procesor na 100%, bylo to v procesech asi 4, vypl jsem to a vpoho...potom jsem to odstranil..

Logfile of random's system information tool 1.06 (written by random/random)
Run by Martin at 2010-04-04 10:40:15
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 37 GB (22%) free of 172 GB
Total RAM: 2046 MB (59% free)

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2010-03-27 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31FF080D-12A3-439A-A2EF-4BA95A3148E8}]
IE to GetRight Helper - C:\Program Files\GetRight\xx2gr.dll [2007-07-18 246848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll [2010-01-28 671480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83B80A9C-D91A-4F22-8DCF-EA7204039F79}]
NXIECatcher Class - C:\Program Files\Xi\NetXfer\NXIEHelper.dll [2007-08-15 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\FlashGetBHO3.dll [2009-12-22 157232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-24 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - NetXfer - C:\Program Files\Xi\NetXfer\NXToolBar.dll [2007-07-11 57344]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTBatteryMeter"=C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe [2003-01-16 49152]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2009-11-17 1800464]
"StartupDelayer"=C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe [2009-03-08 147456]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-01-11 13666408]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-01-11 110696]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-02-22 18791456]
"UpdatePDRShortCut"=C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"PCMAgent"=E:\Program Files\CyberLink\PowerCinema\PCMAgent.exe [2009-09-16 148776]
"CLMLServer"=E:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe [2009-09-16 202024]
"TVEService"=E:\Program Files\CyberLink\TV Enhance\TVEService.exe [2009-09-29 226536]
"WheelMouse"=C:\Program Files\A4Tech\Mouse\Amoumain.exe [2007-05-15 204800]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-03-27 198160]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-03-30 1820040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2010-01-01 2935480]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-01-29 30192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Martin.MARTIN-PC^Nabídka Start^Programy^Po spuštění^Yahoo! Widgets.lnk]
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe []

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
Samsung Auto Backup Guage.lnk - C:\Program Files\Clarus\Samsung Auto Backup\ISFGuage.exe
Samsung Auto Backup Real-Time Daemon.lnk - C:\Program Files\Clarus\Samsung Auto Backup\ISFRealTimeD.exe
Samsung Auto Backup Scheduler.lnk - C:\Program Files\Clarus\Samsung Auto Backup\ISFTimerD.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll [2009-10-02 128360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Dhcpserv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DnsServ]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Martin\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Martin\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Martin\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Martin\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Martin\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Martin\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Martin\EA Sports\FIFA 08\FIFA08.exe"="C:\Martin\EA Sports\FIFA 08\FIFA08.exe:*:Enabled:FIFA08"
"C:\Program Files\QIP Infium30\infium.exe"="C:\Program Files\QIP Infium30\infium.exe:*:Enabled:QIP Infium"
"C:\Martin\Opera\opera.exe"="C:\Martin\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Martin\KONAMI\Pro Evolution Soccer 10\pes2010.exe.exe"="C:\Martin\KONAMI\Pro Evolution Soccer 10\pes2010.exe.exe:*:Enabled:Pro Evolution Soccer 2010"
"C:\Python25\pythonw.exe"="C:\Python25\pythonw.exe:*:Enabled:pythonw"
"E:\Program Files\VirtualDJ\virtualdj_trial.exe"="E:\Program Files\VirtualDJ\virtualdj_trial.exe:*:Enabled:VirtualDJ"
"E:\Program Files\Activision\Modern Warfare 2\iw4mp.exe"="E:\Program Files\Activision\Modern Warfare 2\iw4mp.exe:*:Enabled:iw4mp"
"E:\Program Files\2K Sports\NBA 2K10\nba2k10.exe"="E:\Program Files\2K Sports\NBA 2K10\nba2k10.exe:*:Enabled:2K Sports NBA 2K10"
"E:\Counter-Strike Source\hl2.exe"="E:\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"E:\Program Files\EA Sports\FIFA 10\FIFA10.exe"="E:\Program Files\EA Sports\FIFA 10\FIFA10.exe:*:Enabled:FIFA10"
"C:\Program Files\Epson Software\Event Manager\EEventManager.exe"="C:\Program Files\Epson Software\Event Manager\EEventManager.exe:*:Enabled:EEventManager Application"
"C:\Program Files\Miranda IM\miranda32.exe"="C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NexonUS\NGM\NGM.exe"="C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"E:\Program Files\KONAMI\Pro Evolution Soccer 6\pes6.exe"="E:\Program Files\KONAMI\Pro Evolution Soccer 6\pes6.exe:*:Enabled:pes6.exe"
"E:\Program Files\KONAMI\Pro Evolution Soccer 6\PES6ONLINEvn\CODE\GoalServer6.exe"="E:\Program Files\KONAMI\Pro Evolution Soccer 6\PES6ONLINEvn\CODE\GoalServer6.exe:*:Enabled:GoalServer6"
"E:\Valve\hl.exe"="E:\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Martin\KONAMI\Pro Evolution Soccer 10\GamingAccess.exe"="C:\Martin\KONAMI\Pro Evolution Soccer 10\GamingAccess.exe:*:Enabled:Pro Evolution Soccer 2010"
"E:\Valve\hlds.exe"="E:\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"E:\Program Files\SEGA\Vancouver 2010\Vancouver.exe"="E:\Program Files\SEGA\Vancouver 2010\Vancouver.exe:*:Enabled:Vancouver 2010™"
"C:\Program Files\HLSW\hlsw.exe"="C:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"E:\Program Files\EA Games\Battlefield 2\BF2.exe"="E:\Program Files\EA Games\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Documents and Settings\Martin.MARTIN-PC\Plocha\Miranda\Miranda IM\miranda32.exe"="C:\Documents and Settings\Martin.MARTIN-PC\Plocha\Miranda\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"E:\Valve\hltv.exe"="E:\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"E:\Program Files\TmNationsForever\TmForever.exe"="E:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Martin\Opera10.51\opera.exe"="C:\Martin\Opera10.51\opera.exe:*:Enabled:Opera Internet Browser"
"E:\Program Files\CyberLink\TV Enhance\TVEnhance.exe"="E:\Program Files\CyberLink\TV Enhance\TVEnhance.exe:*:Enabled:CyberLink TVEnhance"
"E:\Program Files\CyberLink\TV Enhance\TVEService.exe"="E:\Program Files\CyberLink\TV Enhance\TVEService.exe:*:Enabled:CyberLink TVEnhance Resident Program"
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
"E:\Grid\GRID.exe"="E:\Grid\GRID.exe:*:Enabled:GRID Executable"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"E:\Combat Arms EU\CombatArms.exe"="E:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"E:\Combat Arms EU\Engine.exe"="E:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\ComBat_Arms\Combat Arms\CombatArms.exe"="E:\Program Files\ComBat_Arms\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe"
"E:\Program Files\ComBat_Arms\Combat Arms\Engine.exe"="E:\Program Files\ComBat_Arms\Combat Arms\Engine.exe:*Enabled:Engine.exe"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"E:\Program Files\CyberLink\TV Enhance\TVEnhance.exe"="E:\Program Files\CyberLink\TV Enhance\TVEnhance.exe:*:Enabled:CyberLink TVEnhance"
"E:\Program Files\CyberLink\TV Enhance\TVEService.exe"="E:\Program Files\CyberLink\TV Enhance\TVEService.exe:*:Enabled:CyberLink TVEnhance Resident Program"
"E:\Combat Arms EU\CombatArms.exe"="E:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"E:\Combat Arms EU\Engine.exe"="E:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c68332fa-3978-11df-bb81-001fd0623eac}]
shell\AutoRun\command - H:\APPInst.exe

======List of files/folders created in the last 1 months======

2010-04-04 10:40:16 ----D---- C:\Program Files\trend micro
2010-04-04 10:40:15 ----D---- C:\rsit
2010-04-03 19:38:40 ----D---- C:\Program Files\Common Files\Akamai
2010-03-31 21:50:37 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\BlackBean
2010-03-31 20:03:56 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NexonEU
2010-03-31 19:11:55 ----D---- C:\Nexon
2010-03-31 19:11:53 ----A---- C:\WINDOWS\NEXON_EU_DownloaderUpdater.exe
2010-03-31 18:28:39 ----D---- C:\hidownload
2010-03-30 13:59:22 ----D---- C:\Program Files\LogMeIn Hamachi
2010-03-28 20:27:15 ----D---- C:\Program Files\SpeedFan
2010-03-28 19:35:35 ----RA---- C:\WINDOWS\system32\tmpB954.tmp
2010-03-28 19:35:34 ----RA---- C:\WINDOWS\system32\tmpB953.tmp
2010-03-28 16:20:33 ----D---- C:\Program Files\SensorsView
2010-03-28 00:55:32 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-03-27 22:29:49 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\GetRight
2010-03-27 22:29:33 ----D---- C:\Program Files\GetRight
2010-03-27 22:00:49 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Real
2010-03-27 21:55:27 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2010-03-27 21:55:23 ----A---- C:\WINDOWS\system32\pndx5032.dll
2010-03-27 21:55:23 ----A---- C:\WINDOWS\system32\pndx5016.dll
2010-03-27 16:41:02 ----D---- C:\Program Files\Clarus
2010-03-27 15:19:22 ----D---- C:\Program Files\A4Tech
2010-03-27 15:07:09 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-03-22 15:41:51 ----A---- C:\WINDOWS\system32\msxml4a.dll
2010-03-22 15:40:40 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\PowerCinema
2010-03-21 22:28:22 ----HDC---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
2010-03-21 22:28:21 ----D---- C:\Program Files\Stardock
2010-03-21 10:44:30 ----A---- C:\WINDOWS\libem.INI
2010-03-21 10:44:01 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGet
2010-03-21 10:44:01 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\BITS
2010-03-21 10:43:52 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO
2010-03-21 10:43:49 ----D---- C:\Program Files\FlashGet Network
2010-03-18 20:48:51 ----D---- C:\Program Files\Runtime Software
2010-03-17 20:15:56 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Codemasters
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\rapture3d_oal.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_vml_p4.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_vml_p3.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_vml_def.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_p4.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_p3.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_lapack64.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_lapack32.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\mkl_def.dll
2010-03-17 20:15:16 ----A---- C:\WINDOWS\system32\libguide40.dll
2010-03-17 20:15:13 ----D---- C:\Program Files\BRS
2010-03-17 20:14:33 ----RA---- C:\WINDOWS\system32\tmp61B6.tmp
2010-03-17 20:14:33 ----RA---- C:\WINDOWS\system32\tmp61B5.tmp
2010-03-17 20:14:30 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2010-03-17 20:14:29 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2010-03-17 20:14:28 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2010-03-17 20:14:27 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2010-03-17 20:14:26 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2010-03-14 13:08:10 ----RHD---- C:\Program Files\rnamfler
2010-03-12 13:50:51 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\CyberLink
2010-03-12 13:50:49 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\CyberLink
2010-03-12 13:48:41 ----D---- C:\Program Files\QuickTime
2010-03-12 13:48:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Apple Computer
2010-03-12 13:48:30 ----D---- C:\Program Files\Apple Software Update
2010-03-12 13:48:30 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Apple
2010-03-12 13:46:40 ----D---- C:\Program Files\CyberLink
2010-03-11 21:01:33 ----A---- C:\WINDOWS\vncutil.exe
2010-03-11 21:01:29 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-03-11 21:01:29 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-03-11 19:29:40 ----A---- C:\WINDOWS\system32\atl71.dll
2010-03-11 19:29:40 ----A---- C:\WINDOWS\system32\ATL70.DLL
2010-03-11 19:29:35 ----A---- C:\WINDOWS\VFO.INI
2010-03-11 19:29:35 ----A---- C:\AUTOEXEC.BAT
2010-03-11 19:28:40 ----D---- C:\WINDOWS\Downloaded Installations
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MSVCP70.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MSVCI70.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71u.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71KOR.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71JPN.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71ITA.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71CHT.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71CHS.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71FRA.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71ESP.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71ENU.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71DEU.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC71.DLL
2010-03-11 19:28:37 ----A---- C:\WINDOWS\system32\MFC70U.DLL
2010-03-11 19:28:36 ----A---- C:\WINDOWS\system32\MFC70.DLL
2010-03-11 19:27:53 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Pinnacle Studio
2010-03-11 19:27:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Pinnacle
2010-03-11 19:27:03 ----D---- C:\Program Files\Pinnacle
2010-03-11 08:38:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-03-10 21:47:10 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Sony
2010-03-10 21:06:49 ----D---- C:\Program Files\MSECache
2010-03-08 22:22:27 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TmForever

======List of files/folders modified in the last 1 months======

2010-04-04 10:40:22 ----D---- C:\WINDOWS\temp
2010-04-04 10:40:16 ----RD---- C:\Program Files
2010-04-04 10:25:32 ----D---- C:\Program Files\Mozilla Firefox
2010-04-04 10:24:22 ----D---- C:\Program Files\Google
2010-04-04 09:22:14 ----D---- C:\WINDOWS
2010-04-03 22:40:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-03 22:40:03 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-03 19:53:58 ----D---- C:\WINDOWS\Prefetch
2010-04-03 19:38:40 ----D---- C:\Program Files\Common Files
2010-04-03 18:54:18 ----SHD---- C:\WINDOWS\Installer
2010-04-03 18:54:17 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\vlc
2010-04-03 16:51:32 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Adobe
2010-04-03 15:38:28 ----A---- C:\WINDOWS\system32\lpcio.dll
2010-04-03 15:38:03 ----D---- C:\WINDOWS\system32
2010-04-03 13:34:56 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-03 13:31:48 ----D---- C:\WINDOWS\system32\drivers
2010-04-03 13:17:08 ----D---- C:\Fraps
2010-04-03 12:23:20 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\dvdcss
2010-04-03 11:55:09 ----D---- C:\POC 2010
2010-04-03 10:47:19 ----D---- C:\Program Files\RocketDock
2010-04-03 10:40:06 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\AIMP
2010-04-02 22:35:01 ----RSD---- C:\WINDOWS\Fonts
2010-03-31 22:56:04 ----HD---- C:\WINDOWS\inf
2010-03-31 22:55:59 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-03-31 22:55:57 ----D---- C:\Program Files\Internet Explorer
2010-03-31 22:55:52 ----D---- C:\WINDOWS\ie8updates
2010-03-31 22:55:39 ----HD---- C:\WINDOWS\$hf_mig$
2010-03-31 22:53:57 ----D---- C:\WINDOWS\Minidump
2010-03-31 22:53:57 ----D---- C:\WINDOWS\Debug
2010-03-31 21:40:16 ----SHD---- C:\Config.Msi
2010-03-31 21:36:22 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-31 14:47:32 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-03-29 21:30:31 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Skype
2010-03-29 20:18:32 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\skypePM
2010-03-28 19:35:36 ----D---- C:\Program Files\OpenAL
2010-03-28 14:23:38 ----A---- C:\WINDOWS\wincmd.ini
2010-03-28 13:53:04 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
2010-03-28 13:52:04 ----SD---- C:\WINDOWS\Tasks
2010-03-28 13:50:32 ----SHD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
2010-03-27 21:55:43 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Real
2010-03-27 21:55:29 ----D---- C:\Program Files\Common Files\Real
2010-03-27 21:55:21 ----A---- C:\WINDOWS\system32\pncrt.dll
2010-03-27 21:16:45 ----D---- C:\Program Files\Xi
2010-03-27 11:33:13 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\ICQ
2010-03-27 11:17:59 ----D---- C:\Program Files\ICQ7.0
2010-03-22 16:28:33 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Opera
2010-03-22 16:28:21 ----D---- C:\Martin
2010-03-22 15:39:54 ----AD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
2010-03-21 22:28:44 ----RSD---- C:\WINDOWS\assembly
2010-03-21 22:28:28 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Stardock
2010-03-21 20:13:32 ----A---- C:\WINDOWS\win.ini
2010-03-20 19:50:57 ----D---- C:\WINDOWS\WinSxS
2010-03-20 19:50:17 ----D---- C:\WINDOWS\system32\DirectX
2010-03-20 19:50:08 ----D---- C:\WINDOWS\system32\CatRoot
2010-03-19 23:44:26 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\uTorrent
2010-03-17 21:24:26 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Microgaming
2010-03-17 20:14:33 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2010-03-17 20:14:33 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2010-03-14 22:30:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-03-12 20:07:55 ----D---- C:\Program Files\uTorrent
2010-03-12 13:32:58 ----D---- C:\Documents and Settings\Martin.MARTIN-PC\Data aplikací\Macromedia
2010-03-11 21:02:07 ----D---- C:\WINDOWS\system32\RTCOM
2010-03-11 21:01:41 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-03-11 08:38:59 ----D---- C:\Program Files\Movie Maker
2010-03-10 21:07:04 ----D---- C:\Program Files\Microsoft Office
2010-03-10 16:32:03 ----D---- C:\Program Files\Common Files\Nero
2010-03-10 16:31:34 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Nero
2010-03-05 20:23:34 ----D---- C:\Program Files\VibrateGameDeviceDriver

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 Amfilter;A4Tech Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\Amfilter.sys [2007-05-14 9216]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2009-11-17 132808]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2009-11-17 25160]
R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-02-02 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-02-02 25888]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 Amusbprt;A4Tech HID-compliant Mouse Driver; C:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2007-05-14 14336]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2007-11-07 12928]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-02-22 5862432]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-12 10276768]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-08-22 47360]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
S3 afah6xuq;afah6xuq; C:\WINDOWS\system32\drivers\afah6xuq.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\system32\epmntdrv.sys []
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\system32\EuGdiDrv.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2009-11-17 723632]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-24 153376]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2009-07-28 507904]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-01-11 154216]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-29 75064]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2009-09-29 247088]
R2 TVECapSvc;TVEnhance Background Capture Service (TBCS); E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe [2009-09-29 464224]
R2 TVESched;TVEnhance Task Scheduler (TTS)); E:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe [2009-09-29 189792]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe /svc []
S2 HDD & SSD access service;HDD & SSD access service; C:\Program Files\Common Files\BinarySense\disksvc.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-01-09 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-08-01 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-01-29 30192]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

HJT nebude :-(

. Při vytvvoření logu se ten program vždy sekne...

Příspěvekod **jaro3** » 04 dub 2010 13:31

HJT přeinstaluj.

Operu používej.

Vypni rez. ochrany i firewll u COMODO Internet Security

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

M4RTY · Příspěvekod **M4RTY** » 04 dub 2010 14:17

Přeinstalování nepomohlo...

ComboFix 10-04-03.02 - Martin 04.04.2010 13:59:09.18.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1612 [GMT 2:00]
Spuštěný z: c:\documents and settings\Martin.MARTIN-PC\Plocha\ComboFix.exe
AV: Eset NOD32 Antivirus 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: COMODO Firewall *disabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
SP: COMODO Defense+ *disabled* (Updated) {043803A4-4F86-4ef7-AFC5-F6E02A79969B}
* Rezidentní štít AV je zapnutý

.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Martin.MARTIN-PC\Dokumenty\cc_20100207_164350.reg
c:\documents and settings\Martin.MARTIN-PC\Dokumenty\cc_20100220_231957.reg
c:\documents and settings\Martin.MARTIN-PC\Dokumenty\cc_20100228_230937.reg
c:\documents and settings\Martin.MARTIN-PC\Dokumenty\cc_20100304_233113.reg
c:\documents and settings\Martin.MARTIN-PC\Dokumenty\cc_20100306_231424.reg
C:\Documents
c:\program files\FlashGet Network
c:\program files\FlashGet Network\FlashGet 3\adns.dll
c:\program files\FlashGet Network\FlashGet 3\btcoreu.dll
c:\program files\FlashGet Network\FlashGet 3\BugReport.dll
c:\program files\FlashGet Network\FlashGet 3\BugReport.exe
c:\program files\FlashGet Network\FlashGet 3\cd1.ico
c:\program files\FlashGet Network\FlashGet 3\ckcore.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\14_43260.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\28_83260.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\atrc.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\Codecs.zip
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\cook.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\ddnt3260.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\dnet3260.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drv1.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drv2.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\drvc.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\hxltcolor.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\raac.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\ralf.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv10.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv20.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv30.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\rv40.dll
c:\program files\FlashGet Network\FlashGet 3\codec\real\Codecs\sipr.dll
c:\program files\FlashGet Network\FlashGet 3\commonlib.dll
c:\program files\FlashGet Network\FlashGet 3\componentskrnl.dll
c:\program files\FlashGet Network\FlashGet 3\config\clients.met
c:\program files\FlashGet Network\FlashGet 3\config\cryptkey.dat
c:\program files\FlashGet Network\FlashGet 3\config\emfriends.met
c:\program files\FlashGet Network\FlashGet 3\config\known.met
c:\program files\FlashGet Network\FlashGet 3\config\known2_64.met
c:\program files\FlashGet Network\FlashGet 3\config\preferences.dat
c:\program files\FlashGet Network\FlashGet 3\config\preferences.ini
c:\program files\FlashGet Network\FlashGet 3\config\server.met
c:\program files\FlashGet Network\FlashGet 3\config\upload.met
c:\program files\FlashGet Network\FlashGet 3\corestat.dll
c:\program files\FlashGet Network\FlashGet 3\dat\Appsetting.cfg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\1.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\2.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\3.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\btn1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\btn2.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\cig.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\cig1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_33665566.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_5-04400194A.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_5_4504_1.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_baiyexing111_1.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_csqyz010315.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_icon01.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_icon03.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_icon04.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_logo.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_miyiyangdeshuangyan11.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_pes2010-80X60-v2.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\client_WuBiaoTi-2.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\dian.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\directui_new_1269596458.zip
c:\program files\FlashGet Network\FlashGet 3\dat\directui\down.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\game.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\game.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\game1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\gameall.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\gametop.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\ico01.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\ico02.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\line.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\movie.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\movie1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\new_rescenter.txt
c:\program files\FlashGet Network\FlashGet 3\dat\directui\newgame.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\newmovie.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p1.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p2.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p3.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p4.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p5.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p6.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p7.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\p8.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\pic_bg.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\preview.gif
c:\program files\FlashGet Network\FlashGet 3\dat\directui\reom.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\reom.jpg1
c:\program files\FlashGet Network\FlashGet 3\dat\directui\rescenter.txt
c:\program files\FlashGet Network\FlashGet 3\dat\directui\soft.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\soft_zhan.jpg
c:\program files\FlashGet Network\FlashGet 3\dat\directui\tab.gif
c:\program files\FlashGet Network\FlashGet 3\dat\FlashGet3db.bak
c:\program files\FlashGet Network\FlashGet 3\dat\FlashGet3db.db
c:\program files\FlashGet Network\FlashGet 3\dat\stat\advertisement\domain_url_list_en.zip
c:\program files\FlashGet Network\FlashGet 3\dat\stat\advertisement\port.ini
c:\program files\FlashGet Network\FlashGet 3\dat\stat\skinpreview\preview_blue.png
c:\program files\FlashGet Network\FlashGet 3\dat\stat\skinpreview\preview_classic.png
c:\program files\FlashGet Network\FlashGet 3\dat\stat\skinpreview\preview_white.png
c:\program files\FlashGet Network\FlashGet 3\dat\stat\statdata\statinfo.dat
c:\program files\FlashGet Network\FlashGet 3\dbghelp.dll
c:\program files\FlashGet Network\FlashGet 3\fg.ico
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\default.htm
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\FGResDetector.conf
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\banner.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\bullet.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\close.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\closelabel.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\download-icon.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\explorer.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\ftp.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\image.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\introTextBg.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\loading.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\nextlabel.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\prevlabel.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\software.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\data\images\vod.gif
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\FGResDetector.exe
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\about.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\ftplist_tree_icon.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\option_icon.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_hide.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\quickop_show.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\statusbar_bk.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\tasktab_close.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_back.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_bk.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_close.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_forward.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\image\toolbar_refresh.png
c:\program files\FlashGet Network\FlashGet 3\FGResDetector_I\lang\l.eng.xml
c:\program files\FlashGet Network\FlashGet 3\FGSoftware.exe
c:\program files\FlashGet Network\FlashGet 3\Flashget3.exe
c:\program files\FlashGet Network\FlashGet 3\FlashGet3.xpi
c:\program files\FlashGet Network\FlashGet 3\FlashGetBHO3.dll
c:\program files\FlashGet Network\FlashGet 3\FlashGetHook.dll
c:\program files\FlashGet Network\FlashGet 3\fnsArchive.dll
c:\program files\FlashGet Network\FlashGet 3\fnsDirectuix.dll
c:\program files\FlashGet Network\FlashGet 3\fnsLanguage.dll
c:\program files\FlashGet Network\FlashGet 3\fnslanguage_en.dll
c:\program files\FlashGet Network\FlashGet 3\fnsSecurity.dll
c:\program files\FlashGet Network\FlashGet 3\fnsScheduler.dll
c:\program files\FlashGet Network\FlashGet 3\fnsSkinX.dll
c:\program files\FlashGet Network\FlashGet 3\fnsStatistics.dll
c:\program files\FlashGet Network\FlashGet 3\game.ico
c:\program files\FlashGet Network\FlashGet 3\gb2312-unicode.dic
c:\program files\FlashGet Network\FlashGet 3\gdiplus.dll
c:\program files\FlashGet Network\FlashGet 3\GetAllUrl.htm
c:\program files\FlashGet Network\FlashGet 3\GetUrl.htm
c:\program files\FlashGet Network\FlashGet 3\GoogleToolbarInstaller_download_signed.exe
c:\program files\FlashGet Network\FlashGet 3\libem.dll
c:\program files\FlashGet Network\FlashGet 3\license.txt
c:\program files\FlashGet Network\FlashGet 3\lst_tz.bin
c:\program files\FlashGet Network\FlashGet 3\P2PCfg.ini
c:\program files\FlashGet Network\FlashGet 3\p2pcore.dll
c:\program files\FlashGet Network\FlashGet 3\p2score.dll
c:\program files\FlashGet Network\FlashGet 3\perf.ini
c:\program files\FlashGet Network\FlashGet 3\pncrt.dll
c:\program files\FlashGet Network\FlashGet 3\pstat.dat
c:\program files\FlashGet Network\FlashGet 3\pup.dat
c:\program files\FlashGet Network\FlashGet 3\RdOldDb.dll
c:\program files\FlashGet Network\FlashGet 3\RealMediaSplitter.ax
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\BarSet.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_check.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_normal.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\btn_radio.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\desktoplink.ico
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\login_line.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\menu_icon.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\option_line.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\option_page_line.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\skin.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendLogo.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\SuspendNoLogo.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_backgrand.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_cancle.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_catgroy.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_group.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_new.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_open.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_option.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_pause.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_recly.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbar_start.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_left.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_middle.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\toolbarbutton_right.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\top_logotitle.gif
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\torrent.ico
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\userinfo_head.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\image\VistaStyleListItems.bmp
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\preview.png
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\skin.xml
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\loginfailed.wav
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\loginsucc.wav
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\msgnotify.wav
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\sound\notify.wav
c:\program files\FlashGet Network\FlashGet 3\skin\international\default\topmain.png
c:\program files\FlashGet Network\FlashGet 3\SnapShot.dll
c:\program files\FlashGet Network\FlashGet 3\storage.dll
c:\program files\FlashGet Network\FlashGet 3\SysOptimize.exe
c:\program files\FlashGet Network\FlashGet 3\uninst.exe
c:\program files\FlashGet Network\FlashGet 3\VodCore.dll
c:\program files\FlashGet Network\FlashGet 3\zlib.dll
c:\windows\AppPatch\AcAdProc.dll
c:\windows\system32\secustat.dat

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-04 do 2010-04-04 )))))))))))))))))))))))))))))))
.

2010-04-04 08:40 . 2010-04-04 08:40 -------- d-----w- c:\program files\trend micro
2010-04-04 08:40 . 2010-04-04 08:42 -------- d-----w- C:\rsit
2010-04-03 17:38 . 2010-04-04 12:10 -------- d-----w- c:\program files\Common Files\Akamai
2010-03-31 17:11 . 2010-03-31 17:11 -------- d-----w- C:\Nexon
2010-03-31 17:11 . 2010-03-31 17:11 421888 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe
2010-03-31 16:28 . 2010-03-31 16:48 -------- d-----w- C:\hidownload
2010-03-30 11:59 . 2010-03-30 11:59 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-03-29 13:21 . 2010-02-03 13:56 26176 ---ha-w- c:\windows\system32\hamachi.sys
2010-03-28 18:27 . 2010-04-02 20:47 -------- d-----w- c:\program files\SpeedFan
2010-03-28 14:20 . 1996-04-03 19:33 5248 ----a-w- c:\windows\system32\drivers\giveio.sys
2010-03-28 14:20 . 2010-03-28 14:20 -------- d-----w- c:\program files\SensorsView
2010-03-27 14:41 . 2010-03-27 14:41 -------- d-----w- c:\program files\Clarus
2010-03-27 13:19 . 2010-03-27 13:19 -------- d-----w- c:\program files\A4Tech
2010-03-27 13:07 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-03-22 13:41 . 2009-09-29 16:56 44544 ----a-w- c:\windows\system32\msxml4a.dll
2010-03-21 20:28 . 2010-03-21 20:28 -------- d-----w- c:\program files\Stardock
2010-03-21 08:45 . 2010-03-27 19:19 305 ----a-w- c:\windows\system32\secushr.dat
2010-03-19 18:28 . 2010-03-21 12:12 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-18 18:48 . 2010-03-18 18:48 -------- d-----w- c:\program files\Runtime Software
2010-03-17 18:15 . 2009-10-16 10:19 872448 ----a-w- c:\windows\system32\rapture3d_oal.dll
2010-03-17 18:15 . 2009-07-13 18:04 839680 ----a-w- c:\windows\system32\mkl_vml_p4.dll
2010-03-17 18:15 . 2009-07-13 18:04 532480 ----a-w- c:\windows\system32\mkl_vml_p3.dll
2010-03-17 18:15 . 2009-07-13 18:04 512000 ----a-w- c:\windows\system32\mkl_vml_def.dll
2010-03-17 18:15 . 2009-07-13 18:04 3485696 ----a-w- c:\windows\system32\mkl_p4.dll
2010-03-17 18:15 . 2009-07-13 18:04 2793472 ----a-w- c:\windows\system32\mkl_p3.dll
2010-03-17 18:15 . 2009-07-13 18:04 2441216 ----a-w- c:\windows\system32\mkl_def.dll
2010-03-17 18:15 . 2009-07-13 18:04 2174976 ----a-w- c:\windows\system32\mkl_lapack32.dll
2010-03-17 18:15 . 2009-07-13 18:04 2125824 ----a-w- c:\windows\system32\mkl_lapack64.dll
2010-03-17 18:15 . 2009-07-13 18:04 184320 ----a-w- c:\windows\system32\libguide40.dll
2010-03-17 18:15 . 2010-03-17 18:15 -------- d-----w- c:\program files\BRS
2010-03-17 18:14 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-03-17 18:14 . 2009-09-04 16:44 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2010-03-17 18:14 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2010-03-17 18:14 . 2009-09-04 16:29 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2010-03-17 18:14 . 2009-09-04 16:29 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2010-03-14 20:30 . 2010-02-12 19:34 123280 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2010-03-14 20:30 . 2010-02-12 19:34 41680 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2010-03-14 11:08 . 2010-03-14 11:10 -------- d--h--r- c:\program files\rnamfler
2010-03-12 11:52 . 2010-03-12 11:52 -------- d-----w- c:\documents and settings\All Users.WINDOWS\CyberLink
2010-03-12 11:48 . 2010-03-12 11:49 -------- d-----w- c:\program files\QuickTime
2010-03-12 11:48 . 2010-03-12 11:48 -------- d-----w- c:\program files\Apple Software Update
2010-03-12 11:48 . 2010-03-12 11:48 -------- d-----w- c:\documents and settings\NeaPhetyx\Plocha
2010-03-12 11:48 . 2010-03-12 11:48 -------- d-----w- c:\documents and settings\NeaPhetyx\Nabídka Start
2010-03-12 11:48 . 2010-03-12 11:48 -------- d-----w- c:\documents and settings\MARTIN~1~MAR\Plocha
2010-03-12 11:48 . 2010-03-12 11:48 -------- d-----w- c:\documents and settings\MARTIN~1~MAR\Nabídka Start
2010-03-12 11:46 . 2010-03-12 11:47 -------- d-----w- c:\program files\CyberLink
2010-03-11 19:01 . 2010-02-22 16:57 358944 ----a-w- c:\windows\vncutil.exe
2010-03-11 19:01 . 2010-02-22 16:56 51232 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2010-03-11 19:01 . 2010-02-22 16:56 129568 ----a-w- c:\windows\RtkAudioService.exe
2010-03-11 19:01 . 2009-11-18 06:17 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2010-03-11 19:01 . 2009-11-18 06:16 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2010-03-11 17:29 . 2004-07-02 15:28 89088 ----a-w- c:\windows\system32\atl71.dll
2010-03-11 17:29 . 2004-07-02 15:28 84992 ----a-w- c:\windows\system32\ATL70.DLL
2010-03-11 17:27 . 2010-03-11 17:30 -------- d-----w- c:\program files\Pinnacle
2010-03-11 17:26 . 2005-02-09 10:59 14165 ----a-w- c:\windows\system32\drivers\Pclepci.sys
2010-03-10 19:06 . 2010-03-10 19:06 -------- d-----w- c:\program files\MSECache

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-04 09:13 . 2009-10-29 20:11 -------- d-----w- c:\program files\Xi
2010-04-04 09:10 . 2009-07-28 14:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-04 08:24 . 2010-01-24 09:48 -------- d-----w- c:\program files\Google
2010-04-03 13:38 . 2008-04-14 12:00 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-04-03 11:34 . 2009-08-05 21:10 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-03 08:47 . 2010-02-21 12:12 -------- d-----w- c:\program files\RocketDock
2010-03-31 12:47 . 2009-07-28 18:01 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-03-31 12:47 . 2009-07-28 18:00 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-03-29 22:46 . 2009-08-05 21:10 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-29 22:45 . 2009-08-05 21:10 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-03-28 17:35 . 2010-02-01 16:56 -------- d-----w- c:\program files\OpenAL
2010-03-27 19:55 . 2009-08-08 20:05 -------- d-----w- c:\program files\Common Files\Real
2010-03-27 09:17 . 2010-01-17 21:08 -------- d-----w- c:\program files\ICQ7.0
2010-03-17 18:14 . 2010-02-01 16:56 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2010-03-17 18:14 . 2010-02-01 16:56 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2010-03-14 10:10 . 2010-02-15 13:38 288304 ----a-w- C:\bin0.bin
2010-03-14 10:10 . 2010-02-15 13:38 189178 ----a-w- C:\subafsfile0.bin
2010-03-12 18:07 . 2009-07-28 16:49 -------- d-----w- c:\program files\uTorrent
2010-03-10 14:32 . 2009-08-22 09:20 -------- d-----w- c:\program files\Common Files\Nero
2010-03-05 18:23 . 2009-08-25 11:04 -------- d-----w- c:\program files\VibrateGameDeviceDriver
2010-03-02 16:33 . 2010-03-02 16:17 -------- d-----w- c:\program files\YouTube HD Transfer
2010-03-01 20:38 . 2010-03-01 20:38 -------- d-----w- c:\program files\Sonic Foundry
2010-03-01 20:38 . 2010-03-01 20:38 -------- d-----w- c:\program files\Pure Motion
2010-03-01 20:38 . 2010-03-01 20:38 -------- d-----w- c:\program files\DebugMode
2010-02-28 12:21 . 2010-01-31 10:03 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-02-27 09:45 . 2008-04-14 12:00 78746 ----a-w- c:\windows\system32\perfc005.dat
2010-02-27 09:45 . 2008-04-14 12:00 430694 ----a-w- c:\windows\system32\perfh005.dat
2010-02-25 06:18 . 2008-04-14 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 15:56 . 2010-02-24 15:54 -------- d-----w- c:\program files\BitComet
2010-02-23 19:04 . 2009-07-29 12:32 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-02-23 19:04 . 2009-07-29 12:32 -------- d-----w- c:\program files\AGEIA Technologies
2010-02-23 19:04 . 2009-07-29 12:32 -------- d-----w- c:\program files\NVIDIA Corporation
2010-02-22 16:57 . 2009-07-28 16:10 84512 ----a-w- c:\windows\SOUNDMAN.EXE
2010-02-22 16:57 . 2009-07-28 16:10 1833504 ----a-w- c:\windows\SkyTel.exe
2010-02-22 16:57 . 2009-07-28 16:10 1489440 ----a-w- c:\windows\RtlUpd.exe
2010-02-22 16:56 . 2009-07-28 16:09 9721888 ----a-w- c:\windows\RTLCPL.EXE
2010-02-22 16:56 . 2009-07-28 16:09 18791456 ----a-w- c:\windows\RTHDCPL.EXE
2010-02-22 16:56 . 2009-07-28 16:09 2177568 ----a-w- c:\windows\MicCal.exe
2010-02-22 16:56 . 2009-07-28 16:09 64032 ----a-w- c:\windows\ALCMTR.EXE
2010-02-22 16:56 . 2009-07-28 16:09 2815520 ----a-w- c:\windows\ALCWZRD.EXE
2010-02-22 16:28 . 2009-07-28 16:09 5862432 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2010-02-22 15:02 . 2010-02-22 14:55 -------- d-----w- c:\program files\WhoCrashed
2010-02-22 13:44 . 2009-11-06 20:55 -------- d-----w- c:\program files\Miranda IM
2010-02-21 18:35 . 2010-02-21 18:35 -------- d-----w- c:\program files\ClocX
2010-02-21 15:21 . 2009-07-30 10:25 -------- d-----w- c:\program files\OEdit
2010-02-19 16:59 . 2010-02-19 16:59 477 ----a-w- c:\windows\eReg.dat
2010-02-14 15:47 . 2010-02-14 15:47 -------- d-----w- c:\program files\Moddingway
2010-02-14 14:45 . 2010-02-14 14:45 -------- d-----w- c:\program files\Cucusoft
2010-02-12 20:10 . 2009-08-01 14:08 -------- d-----w- c:\program files\Fifa Master
2010-02-12 18:02 . 2009-07-28 16:09 1247776 ----a-w- c:\windows\RtlExUpd.dll
2010-02-11 20:08 . 2010-02-07 20:23 -------- d-----w- c:\program files\Czech Soccer Manager 2002 FE
2010-02-10 20:20 . 2009-12-05 17:06 -------- d-----w- c:\program files\FIFAMANIA
2010-02-10 16:54 . 2009-08-09 15:07 -------- d-----w- c:\program files\GameSpy Arcade
2010-02-10 16:23 . 2010-02-10 16:23 -------- d-----w- c:\program files\AliveMedia
2010-02-10 12:54 . 2010-02-10 12:44 -------- d-----w- c:\program files\Opera 10.50 Beta
2010-02-09 16:01 . 2010-02-09 16:01 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-02-09 16:01 . 2009-07-28 17:31 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-02-06 12:34 . 2010-02-06 12:34 -------- d-----w- c:\program files\TrendMicro
2010-02-05 21:30 . 2010-02-05 21:29 -------- d-s---w- c:\program files\HLSW
2010-02-05 19:14 . 2010-02-05 19:14 -------- d-----w- c:\program files\Zaparit
2010-02-02 18:39 . 2010-02-02 18:39 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-02-02 18:39 . 2010-02-02 18:39 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-12 04:03 . 2009-12-06 15:51 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-01-12 04:03 . 2009-12-06 15:51 11632640 ----a-w- c:\windows\system32\nvcompiler.dll
2010-01-12 04:03 . 2009-07-29 12:31 4077672 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-01-12 04:03 . 2009-07-29 12:31 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2010-01-12 04:03 . 2009-07-29 12:31 2283526 ----a-w- c:\windows\system32\nvdata.bin
2010-01-12 04:03 . 2009-07-28 16:14 10276768 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-01-12 04:03 . 2009-07-28 16:13 6359168 ----a-w- c:\windows\system32\nv4_disp.dll
2010-01-12 04:03 . 2009-07-28 16:13 4104192 ----a-w- c:\windows\system32\nvcuda.dll
2010-01-12 04:03 . 2009-07-28 16:13 182888 ----a-w- c:\windows\system32\nvcodins.dll
2010-01-12 04:03 . 2009-07-28 16:13 14458880 ----a-w- c:\windows\system32\nvoglnt.dll
2010-01-12 04:03 . 2009-07-28 16:13 1081344 ----a-w- c:\windows\system32\nvapi.dll
2010-01-09 17:18 . 2010-01-09 17:18 152904 ----a-w- c:\windows\system32\vghd.scr
2010-01-29 15:44 . 2010-01-29 15:42 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-01-01 2935480]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTBatteryMeter"="c:\program files\VibrateGameDeviceDriver\RFPIcon.exe" [2003-01-16 49152]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-11-17 1800464]
"StartupDelayer"="c:\program files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe" [2009-03-08 147456]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
"RTHDCPL"="RTHDCPL.EXE" [2010-02-22 18791456]
"UpdatePDRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"WheelMouse"="c:\program files\A4Tech\Mouse\Amoumain.exe" [2007-05-15 204800]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-03-27 198160]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2010-03-30 1820040]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Samsung Auto Backup Guage.lnk - c:\program files\Clarus\Samsung Auto Backup\ISFGuage.exe [2010-3-27 888832]
Samsung Auto Backup Real-Time Daemon.lnk - c:\program files\Clarus\Samsung Auto Backup\ISFRealTimeD.exe [2010-3-27 77824]
Samsung Auto Backup Scheduler.lnk - c:\program files\Clarus\Samsung Auto Backup\ISFTimerD.exe [2010-3-27 94208]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 10:05 356352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll

[HKLM\~\startupfolder\C:^Documents and Settings^Martin.MARTIN-PC^Nabídka Start^Programy^Po spuštění^Yahoo! Widgets.lnk]
path=c:\documents and settings\Martin.MARTIN-PC\Nabídka Start\Programy\Po spuštění\Yahoo! Widgets.lnk
backup=c:\windows\pss\Yahoo! Widgets.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"PlayMovie"="e:\program files\CyberLink\PlayMovie\PMVService.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Martin\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"c:\\Martin\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Martin\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Martin\\EA Sports\\FIFA 08\\FIFA08.exe"=
"c:\\Program Files\\QIP Infium30\\infium.exe"=
"c:\\Martin\\Opera\\opera.exe"=
"c:\\Martin\\KONAMI\\Pro Evolution Soccer 10\\pes2010.exe.exe"=
"c:\\Python25\\pythonw.exe"=
"e:\\Program Files\\VirtualDJ\\virtualdj_trial.exe"=
"e:\\Program Files\\Activision\\Modern Warfare 2\\iw4mp.exe"=
"e:\\Program Files\\2K Sports\\NBA 2K10\\nba2k10.exe"=
"e:\\Counter-Strike Source\\hl2.exe"=
"e:\\Program Files\\EA Sports\\FIFA 10\\FIFA10.exe"=
"c:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\All Users.WINDOWS\\Data aplikací\\NexonUS\\NGM\\NGM.exe"=
"e:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\pes6.exe"=
"e:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\PES6ONLINEvn\\CODE\\GoalServer6.exe"=
"e:\\Valve\\hl.exe"=
"c:\\Program Files\\ICQ7.0\\ICQ.exe"=
"c:\\Program Files\\ICQ7.0\\aolload.exe"=
"c:\\Martin\\KONAMI\\Pro Evolution Soccer 10\\GamingAccess.exe"=
"e:\\Valve\\hlds.exe"=
"e:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"e:\\Program Files\\EA Games\\Battlefield 2\\BF2.exe"=
"c:\\Program Files\\GameSpy Arcade\\Aphex.exe"=
"c:\\Documents and Settings\\Martin.MARTIN-PC\\Plocha\\Miranda\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"e:\\Valve\\hltv.exe"=
"e:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Martin\\Opera10.51\\opera.exe"=
"e:\\Grid\\GRID.exe"=
"c:\\Nexon\\NEXON_EU_Downloader\\NEXON_EU_Downloader_Engine.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"56118:TCP"= 56118:TCP:Pando Media Booster
"56118:UDP"= 56118:UDP:Pando Media Booster
"22232:TCP"= 22232:TCP:BitComet 22232 TCP
"22232:UDP"= 22232:UDP:BitComet 22232 UDP
"1032:TCP"= 1032:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [28.7.2009 19:31 691696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [29.10.2009 12:09 132808]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [29.10.2009 12:09 25160]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [5.8.2009 16:06 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5.8.2009 16:06 74480]
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [14.4.2008 14:00 14336]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [30.3.2010 11:16 1107336]
R3 DynCal;Dynamic Calibration Service;c:\windows\system32\drivers\DynCal.sys [7.11.2007 20:15 12928]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [22.10.2009 20:35 27632]
S2 gupdate;Služba Google Update (gupdate);"c:\program files\Google\Update\GoogleUpdate.exe" /svc --> c:\program files\Google\Update\GoogleUpdate.exe [?]
S2 HDD & SSD access service;HDD & SSD access service;"c:\program files\Common Files\BinarySense\disksvc.exe" --> c:\program files\Common Files\BinarySense\disksvc.exe [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [11.3.2010 21:01 1691480]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [27.11.2009 17:54 13192]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [27.11.2009 17:54 8456]
S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589;"c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" --> c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [?]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [22.10.2009 20:35 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [22.10.2009 20:35 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [22.10.2009 20:35 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [22.10.2009 20:35 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [22.10.2009 20:35 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [22.10.2009 20:35 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [22.10.2009 20:35 115752]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [5.8.2009 16:06 7408]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
IE: Download all by FlashGet3 - c:\documents and settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\GetAllUrl.htm
IE: Download by FlashGet3 - c:\documents and settings\Martin.MARTIN-PC\Data aplikací\FlashGetBHO\GetUrl.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Stáhnout odkaz s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechna videa s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddVideo.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: {{88EB38EF-4D2C-436D-ABD3-56B232674062} - c:\program files\ICQ7.0\ICQ.exe
LSP: c:\windows\system32\imon.dll
Trusted Zone: kuaiche.com\software
TCP: {46F288FA-1A35-4FA6-AFC1-24F703C2B251} = 10.10.10.1
FF - ProfilePath - c:\documents and settings\Martin.MARTIN-PC\Data aplikací\Mozilla\Firefox\Profiles\bder680s.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/ig
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\martin\Opera\program\plugins\npdsplay.dll
FF - plugin: c:\martin\Opera\program\plugins\NPOFFICE.DLL
FF - plugin: c:\martin\Opera\program\plugins\NPSWF32.dll
FF - plugin: c:\martin\Opera\program\plugins\npwmsdrm.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\npdsplay.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\nppl3260.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\nprjplug.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\nprpjplug.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\NPSWF32.dll
FF - plugin: c:\martin\Opera10.51\program\plugins\npwmsdrm.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npyaxmpb.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

SafeBoot-Dhcpserv
SafeBoot-DnsServ
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
AddRemove-FlashGet 3.3 - c:\program files\FlashGet Network\FlashGet 3\uninst.exe
AddRemove-{5A0B7BA5-4682-4273-81C2-69B17E649103} - c:\program files\InstallShield Installation Information\{5A0B7BA5-4682-4273-81C2-69B17E649103}\setup.exe
AddRemove-UnityWebPlayer - c:\documents and settings\Martin.MARTIN-PC\Local Settings\Data aplikací\Unity\WebPlayer\Uninstall.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-04 14:10
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spkz.sys >>UNKNOWN [0x8B582938]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb80ecf28
\Driver\ACPI -> ACPI.sys @ 0xb7e74cb8
\Driver\atapi -> atapi.sys @ 0xb7e2fb40
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x80579022
ParseProcedure -> ntkrnlpa.exe @ 0x80577c84
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x80579022
ParseProcedure -> ntkrnlpa.exe @ 0x80577c84
user & kernel MBR OK

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Program Files/Common Files/Akamai/rswin_3653.dll"

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Program Files/Common Files/Akamai/rswin_3653.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-448539723-926492609-1801674531-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-448539723-926492609-1801674531-1004\Software\SecuROM\License information*]
"datasecu"=hex:87,9b,68,f6,a1,4a,c5,b9,ec,12,bd,3b,aa,ea,c7,97,29,b0,b4,d0,a5,
54,1b,aa,b0,3d,d8,b6,d2,c9,07,2f,af,07,9c,32,f2,f2,01,f7,33,23,ed,c6,9f,0c,\
"rkeysecu"=hex:a4,4b,64,9e,56,2a,28,74,ae,d5,4d,ca,96,9b,bc,79
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1280)
c:\program files\SUPERAntiSpyware\SASWINLO.dll

- - - - - - - > 'lsass.exe'(1416)
c:\windows\system32\imon.dll
c:\program files\Eset\pr_imon.dll

- - - - - - - > 'explorer.exe'(2212)
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\Amhooker.dll
c:\program files\Stardock\Fences\FencesMenu.dll
c:\program files\stardock\fences\DesktopDock.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Microsoft Virtual PC\VPCShExH.DLL
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\SUPERAntiSpyware\SASSEH.DLL
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\COMODO\COMODO Internet Security\cmdagent.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Eset\nod32krn.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\RTHDCPL.EXE
c:\program files\Eset\nod32kui.exe
c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2010-04-04 14:15:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-04-04 12:15

Před spuštěním: Volných bajtů: 38 315 307 008
Po spuštění: Volných bajtů: 41 387 823 104

- - End Of File - - B2CD0019742C41CBF3B62A545B61FC70

Příspěvekod **jaro3** » 04 dub 2010 16:38

používáš Akamai?

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
File::
c:\windows\system32\d3d9caps.dat
C:\bin0.bin
C:\subafsfile0.bin
c:\windows\ALCMTR.EXE

Driver::
gupdate
Služba Google Update
HDD & SSD access service
GoogleDesktopManager-110309-193829
Google Desktop Manager 5.9.911.3589
VBoxNetFlt
VBoxNetFlt Service

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Prosím o preventivní kontrolu logu ;) Vyřešeno

Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Re: Prosím o preventivní kontrolu logu ;)

Kdo je online