Prosím o kontrolu logu Vyřešeno

[M4RTY]

Zdravím, v COMODU mám zablokovaných 205 pokusů o průnik...viz. screen

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:29:38, on 16.8.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Replay Media Catcher\FLVSrvc.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\HJT\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Ask and Record FLV Service] "C:\Program Files\Replay Media Catcher\FLVSrvc.exe" /run
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{49E7AC88-3BD9-4673-A8D9-DA1CFF080C49}: NameServer = 10.10.10.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\guard32.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: SRS Labs License Service - SRS Labs - C:\Program Files\Common Files\SRS Labs Shared\Service\srslabslicenseservice.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4865 bytes


Mbam - rychlý sken: bez nálezu

[Reklama]

[bledulka]

AHoj,

otestuj ten soubor Cry2010.exe na www.virustotal.com


V mbamu udělej uplný sken.

Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde

[M4RTY]

Díky, že si se mě ujala

Cry2010.exe má 33MB (limit je 20), proto jsem ho zabalil a otestoval - nic to nenašlo ..

[bledulka]

Co je to, nějaká hra? A potřebuje jít na net? pokud ne, prostě ji ve firewallu zakaž.
Ještě ten Rsit.

[M4RTY]

Malwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org

Verze databáze: 4387

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

16.8.2010 21:28:17
mbam-log-2010-08-16 (21-28-17).txt

Typ skenu: Úplný sken (C:\|F:\|)
Skenované objekty: 450314
Uplynulý čas: 1 hodina(y), 1 minuta(y), 0 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)


Jdu na RSIT
//To je patch na hru (ProEvolutionSoccer2010) Protože hra nemá licence na týmy, ani na některé hráče, tak to komumnita řeší patchema, já jsem na něho narazil tak před dvěma týdny...Přístup na net nepotřebuje, však to taky v FW blokuji, myslím..

[M4RTY]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin at 2010-08-16 21:33:46
Microsoft Windows 7 Professional
System drive C: has 84 GB (63%) free of 134 GB
Total RAM: 2047 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:33:59, on 16.8.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Replay Media Catcher\FLVSrvc.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Users\Martin\Desktop\RSIT.exe
C:\Program Files\trend micro\Martin.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Ask and Record FLV Service] "C:\Program Files\Replay Media Catcher\FLVSrvc.exe" /run
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{49E7AC88-3BD9-4673-A8D9-DA1CFF080C49}: NameServer = 10.10.10.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\guard32.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: SRS Labs License Service - SRS Labs - C:\Program Files\Common Files\SRS Labs Shared\Service\srslabslicenseservice.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4880 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-08-16 341600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-06 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-03-31 2145000]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-03-17 8546848]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2010-06-01 2039240]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 98304]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-08-16 202256]
"Ask and Record FLV Service"=C:\Program Files\Replay Media Catcher\FLVSrvc.exe [2009-09-22 156672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\system32\Macromed\Flash\FlashUtil10h_Plugin.exe [2010-07-19 231888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-03-30 1820040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Martin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
[]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-08-16 21:33:47 ----D---- C:\Program Files\trend micro
2010-08-16 21:33:46 ----D---- C:\rsit
2010-08-16 16:35:23 ----A---- C:\Windows\system32\rmc_fixasf.exe
2010-08-16 16:35:22 ----A---- C:\Windows\system32\rmc_rtspdl.dll
2010-08-16 16:22:34 ----D---- C:\Windows\Replay Media Catcher
2010-08-16 16:22:34 ----D---- C:\Program Files\Replay Media Catcher
2010-08-16 15:59:33 ----D---- C:\Program Files\Replay Media Catcher 4
2010-08-16 14:13:07 ----A---- C:\Windows\cdplayer.ini
2010-08-16 14:12:38 ----A---- C:\Windows\system32\rmoc3260.dll
2010-08-16 14:12:33 ----A---- C:\Windows\system32\pndx5032.dll
2010-08-16 14:12:33 ----A---- C:\Windows\system32\pndx5016.dll
2010-08-16 14:12:29 ----D---- C:\Program Files\Common Files\xing shared
2010-08-16 14:12:17 ----A---- C:\Windows\system32\pncrt.dll
2010-08-16 14:12:14 ----D---- C:\ProgramData\Real
2010-08-16 14:12:14 ----D---- C:\Program Files\Real
2010-08-16 14:12:14 ----D---- C:\Program Files\Common Files\Real
2010-08-16 14:11:55 ----D---- C:\Users\Martin\AppData\Roaming\Real
2010-08-16 14:02:52 ----D---- C:\Users\Martin\AppData\Roaming\Replay Media Catcher 4
2010-08-16 14:02:43 ----D---- C:\Program Files\Applian Technologies
2010-08-15 19:16:14 ----D---- C:\Users\Martin\AppData\Roaming\Trillian
2010-08-15 19:15:57 ----D---- C:\Program Files\Trillian
2010-08-14 13:01:30 ----D---- C:\Program Files\OEdit
2010-08-14 12:55:11 ----A---- C:\Windows\system32\DX8VB.DLL
2010-08-13 09:53:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-13 09:53:11 ----A---- C:\Windows\system32\ir32_32.dll
2010-08-13 09:53:11 ----A---- C:\Windows\system32\iccvid.dll
2010-08-13 09:53:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-13 09:53:08 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-08-13 09:53:07 ----A---- C:\Windows\system32\rtutils.dll
2010-08-13 09:53:06 ----A---- C:\Windows\system32\msxml3.dll
2010-08-13 09:53:06 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-08-13 09:53:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-13 09:53:06 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-13 09:53:01 ----A---- C:\Windows\system32\mshtml.dll
2010-08-13 09:52:59 ----A---- C:\Windows\system32\urlmon.dll
2010-08-13 09:52:59 ----A---- C:\Windows\system32\ieframe.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\wininet.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\mstime.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-13 09:52:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\ieui.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\iepeers.dll
2010-08-13 09:52:58 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-13 09:52:53 ----A---- C:\Windows\system32\schannel.dll
2010-08-13 09:52:52 ----A---- C:\Windows\system32\win32k.sys
2010-08-10 10:52:11 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-08-10 10:52:11 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-08-10 10:52:10 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-08-10 10:01:11 ----D---- C:\Program Files\Common Files\Steam
2010-08-10 10:01:10 ----D---- C:\Program Files\Steam
2010-08-08 10:04:41 ----D---- C:\Program Files\Sony Setup
2010-08-07 13:22:11 ----D---- C:\Program Files\CPUID
2010-08-07 13:22:11 ----A---- C:\Windows\system32\drivers\cpuz132_x32.sys
2010-08-06 12:50:59 ----D---- C:\Program Files\Common Files\Java
2010-08-06 12:50:18 ----A---- C:\Windows\system32\javaws.exe
2010-08-06 12:50:18 ----A---- C:\Windows\system32\javaw.exe
2010-08-06 12:50:18 ----A---- C:\Windows\system32\java.exe
2010-08-06 12:45:26 ----A---- C:\Windows\system32\PerfStringBackup.TMP
2010-08-05 21:56:08 ----SHD---- C:\$RECYCLE.BIN
2010-08-05 21:05:37 ----D---- C:\Program Files\Stardock
2010-08-04 18:35:08 ----D---- C:\Windows\temp
2010-08-03 09:52:48 ----A---- C:\Windows\system32\shell32.dll
2010-07-30 19:31:22 ----D---- C:\Users\Martin\AppData\Roaming\BinarySense
2010-07-30 19:31:16 ----AD---- C:\ProgramData\TEMP
2010-07-30 19:31:11 ----D---- C:\Program Files\Common Files\BinarySense
2010-07-28 14:38:41 ----D---- C:\Users\Martin\AppData\Roaming\FaceGen
2010-07-28 14:34:29 ----D---- C:\Program Files\Singular Inversions
2010-07-27 18:19:12 ----D---- C:\Users\Martin\AppData\Roaming\Need for Speed World
2010-07-27 17:55:18 ----D---- C:\ProgramData\Electronic Arts
2010-07-27 14:25:51 ----D---- C:\ProgramData\TmForever
2010-07-23 12:18:36 ----D---- C:\Users\Martin\AppData\Roaming\ATI
2010-07-23 12:18:36 ----D---- C:\ProgramData\ATI
2010-07-23 12:16:26 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-07-23 12:15:41 ----D---- C:\Program Files\ATI
2010-07-23 12:15:05 ----D---- C:\Program Files\ATI Technologies
2010-07-23 12:14:36 ----D---- C:\ATI
2010-07-22 13:34:00 ----D---- C:\Program Files\WinRAR
2010-07-21 22:22:57 ----D---- C:\Program Files\GIGABYTE
2010-07-21 22:22:37 ----A---- C:\Windows\gdrv.sys
2010-07-21 20:24:05 ----D---- C:\Program Files\uTorrent
2010-07-21 20:23:01 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2010-07-21 17:11:36 ----D---- C:\Downloads
2010-07-21 17:08:18 ----D---- C:\Users\Martin\AppData\Roaming\BitSpirit

======List of files/folders modified in the last 1 months======

2010-08-16 21:33:47 ----RD---- C:\Program Files
2010-08-16 21:33:43 ----D---- C:\Windows\system32\Tasks
2010-08-16 21:04:51 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2010-08-16 20:59:25 ----D---- C:\Windows\System32
2010-08-16 20:59:25 ----D---- C:\Windows\inf
2010-08-16 20:13:55 ----D---- C:\Windows\Prefetch
2010-08-16 17:21:26 ----D---- C:\Users\Martin\AppData\Roaming\AIMP
2010-08-16 16:22:34 ----D---- C:\Windows
2010-08-16 16:00:05 ----SHD---- C:\Windows\Installer
2010-08-16 16:00:05 ----D---- C:\Config.Msi
2010-08-16 15:59:58 ----D---- C:\Windows\system32\catroot
2010-08-16 15:59:42 ----D---- C:\Windows\system32\DriverStore
2010-08-16 15:59:28 ----SHD---- C:\System Volume Information
2010-08-16 14:27:18 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2010-08-16 14:12:29 ----D---- C:\Program Files\Common Files
2010-08-16 14:12:17 ----D---- C:\Program Files\Internet Explorer
2010-08-16 14:12:17 ----A---- C:\Windows\system32\msvcr71.dll
2010-08-16 14:12:17 ----A---- C:\Windows\system32\msvcp71.dll
2010-08-16 14:12:14 ----D---- C:\ProgramData
2010-08-16 12:39:42 ----D---- C:\Windows\system32\config
2010-08-16 11:22:18 ----D---- C:\Program Files\Opera
2010-08-15 18:26:08 ----D---- C:\Users\Martin\AppData\Roaming\ICQ
2010-08-14 13:32:17 ----D---- C:\ProgramData\DivX
2010-08-14 13:31:22 ----D---- C:\Program Files\DivX
2010-08-14 13:31:20 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-08-14 12:16:43 ----D---- C:\Windows\Microsoft.NET
2010-08-14 12:16:32 ----RSD---- C:\Windows\assembly
2010-08-14 09:06:05 ----D---- C:\Windows\winsxs
2010-08-14 09:04:12 ----D---- C:\Windows\system32\drivers
2010-08-14 09:04:11 ----D---- C:\Windows\system32\migration
2010-08-13 22:36:11 ----D---- C:\Windows\debug
2010-08-13 09:52:28 ----D---- C:\Windows\system32\catroot2
2010-08-10 14:17:30 ----D---- C:\ProgramData\FLEXnet
2010-08-10 11:42:30 ----D---- C:\Fraps
2010-08-08 21:11:21 ----D---- C:\Users\Martin\AppData\Roaming\Adobe
2010-08-08 10:49:42 ----D---- C:\Program Files\Sony
2010-08-08 10:06:20 ----D---- C:\Program Files\VstPlugins
2010-08-06 21:47:06 ----D---- C:\Users\Martin\AppData\Roaming\Mozilla
2010-08-06 12:50:13 ----A---- C:\Windows\system32\deployJava1.dll
2010-08-06 12:41:00 ----D---- C:\Windows\Tasks
2010-08-06 10:38:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-05 21:54:45 ----A---- C:\Windows\system.ini
2010-08-05 21:51:34 ----D---- C:\Windows\AppPatch
2010-08-05 21:07:23 ----A---- C:\Windows\win.ini
2010-08-05 10:43:50 ----D---- C:\Program Files\JDownloader
2010-08-05 10:14:19 ----D---- C:\Windows\system32\drivers\etc
2010-08-03 20:09:31 ----A---- C:\Windows\system32\MRT.exe
2010-08-03 17:39:36 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-30 22:53:31 ----D---- C:\Windows\pss
2010-07-30 18:21:38 ----D---- C:\Windows\Cursors
2010-07-28 14:42:52 ----D---- C:\Program Files\NVIDIA Corporation
2010-07-28 09:33:47 ----D---- C:\ProgramData\NVIDIA
2010-07-26 15:25:52 ----SD---- C:\Users\Martin\AppData\Roaming\Microsoft
2010-07-25 14:40:32 ----D---- C:\Windows\system32\wdi
2010-07-24 17:40:37 ----D---- C:\Program Files\Mozilla Firefox
2010-07-23 21:47:42 ----D---- C:\Windows\Registration
2010-07-23 13:48:44 ----D---- C:\Windows\Help
2010-07-22 17:17:00 ----RSD---- C:\Windows\Fonts
2010-07-22 13:35:17 ----D---- C:\Users\Martin\AppData\Roaming\WinRAR
2010-07-21 17:20:26 ----D---- C:\Program Files\Pando Networks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2010-06-04 224240]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2010-06-01 30112]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-03-31 114984]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2010-06-01 75944]
R2 cpuz132;cpuz132; \??\C:\Windows\system32\drivers\cpuz132_x32.sys [2009-03-27 12672]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-03-31 134024]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-03-31 96896]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-27 5586432]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-27 209920]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 108560]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-03-17 3041568]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-07-22 17488]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SRS_SSCFilter;SRS Labs Audio Sandbox (WDM); C:\Windows\system32\drivers\srs_sscfilter.sys [2006-10-09 34048]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-06-26 691696]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-27 176128]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-06-01 1778480]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-03-31 810120]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-07-02 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2010-07-14 214520]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-03-31 33560]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-06-19 654848]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SRS Labs License Service;SRS Labs License Service; C:\Program Files\Common Files\SRS Labs Shared\Service\srslabslicenseservice.exe [2010-05-31 72704]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2009-07-16 316664]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-13 1343400]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
S4 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2010-03-23 704760]

-----------------EOF-----------------

[bledulka]

Stáhni na plochu ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Před použitím vypni všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
-Zavři všechna aktivní okna a spusť ho pod učtem s právy administrátora
- Po spuštění se zobrazí podmínky použití, potvrď je stiskem tlačítka Ano

- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna

- Po dokončení skenování, se vytvoří log C:\ComboFix.txt, zkopíruj celý jeho obsah sem.

[M4RTY]

ComboFix 10-08-16.03 - Martin 17.08.2010 10:28:51.7.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.2047.1327 [GMT 2:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-07-17 do 2010-08-17 )))))))))))))))))))))))))))))))
.

2010-08-17 08:35 . 2010-08-17 08:35 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-08-17 08:35 . 2010-08-17 08:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-08-16 19:33 . 2010-08-16 19:33 -------- d-----w- c:\program files\trend micro
2010-08-16 19:33 . 2010-08-16 19:34 -------- d-----w- C:\rsit
2010-08-16 14:35 . 2010-08-16 14:35 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2010-08-16 14:35 . 2010-08-16 14:35 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2010-08-16 14:34 . 2010-08-16 14:34 -------- d-----w- c:\users\Martin\AppData\Local\mdnslib
2010-08-16 14:22 . 2010-08-17 08:03 -------- d-----w- c:\users\Martin\AppData\Local\FLVService
2010-08-16 14:22 . 2010-08-16 15:28 -------- d-----w- c:\program files\Replay Media Catcher
2010-08-16 14:22 . 2010-08-16 14:22 -------- d-----w- c:\windows\Replay Media Catcher
2010-08-16 13:59 . 2010-08-17 06:49 -------- d-----w- c:\program files\Replay Media Catcher 4
2010-08-16 12:02 . 2010-08-16 12:02 -------- d-----w- c:\users\Martin\AppData\Roaming\Replay Media Catcher 4
2010-08-16 12:02 . 2010-08-16 12:02 -------- d-----w- c:\program files\Applian Technologies
2010-08-15 17:16 . 2010-08-15 17:20 -------- d-----w- c:\users\Martin\AppData\Roaming\Trillian
2010-08-15 17:15 . 2010-08-15 17:32 -------- d-----w- c:\program files\Trillian
2010-08-15 16:26 . 2010-08-15 16:26 -------- d-----w- c:\users\Martin\AppData\Local\AOL
2010-08-14 11:01 . 2010-08-14 11:01 -------- d-----w- c:\program files\OEdit
2010-08-14 10:55 . 2001-04-24 16:05 1069056 ----a-w- c:\windows\system32\DX8VB.DLL
2010-08-13 07:53 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-08-13 07:53 . 2010-07-29 06:30 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-08-13 07:53 . 2010-07-29 06:30 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-08-13 07:53 . 2010-06-19 06:33 3955080 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-08-13 07:53 . 2010-06-19 06:33 3899784 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-08-13 07:53 . 2010-06-19 06:23 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-08-13 07:53 . 2010-06-22 02:47 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-13 07:53 . 2010-06-22 02:47 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-08-13 07:53 . 2010-06-22 02:47 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-13 07:53 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-08-13 07:52 . 2010-06-30 06:25 978432 ----a-w- c:\windows\system32\wininet.dll
2010-08-13 07:52 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-08-13 07:52 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-08-11 08:32 . 2010-08-11 08:32 95308 ---ha-w- c:\windows\system32\mlfcache.dat
2010-08-10 14:46 . 2010-08-10 14:46 45 ---h--w- c:\windows\dwin5799.dat
2010-08-10 08:01 . 2010-08-10 08:01 -------- d-----w- c:\program files\Common Files\Steam
2010-08-10 08:01 . 2010-08-13 12:19 -------- d-----w- c:\program files\Steam
2010-08-09 08:31 . 2010-08-09 08:31 -------- d-----w- c:\users\Martin\AppData\Local\Apple
2010-08-08 08:04 . 2010-08-08 08:04 -------- d-----w- c:\program files\Sony Setup
2010-08-07 11:22 . 2010-08-07 11:22 -------- d-----w- c:\program files\CPUID
2010-08-07 11:22 . 2009-03-26 23:16 12672 ----a-w- c:\windows\system32\drivers\cpuz132_x32.sys
2010-08-06 10:50 . 2010-08-06 10:50 -------- d-----w- c:\program files\Common Files\Java
2010-08-06 10:40 . 2010-08-06 10:40 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-06 08:32 . 2010-08-16 15:58 -------- d-----w- c:\users\Martin\AppData\Local\Adobe
2010-08-05 19:05 . 2010-08-05 19:05 -------- d-----w- c:\program files\Stardock
2010-08-05 07:39 . 2010-08-05 07:39 -------- d-----w- c:\users\Martin\AppData\Local\Apple Computer
2010-08-04 19:23 . 2010-08-17 08:35 -------- d-----w- c:\users\Martin\AppData\Local\temp
2010-08-04 16:17 . 2010-08-04 16:17 -------- d-----w- c:\users\Martin\AppData\Local\ATI
2010-08-03 16:01 . 2010-08-03 16:08 -------- d-----w- c:\users\Martin\AppData\Local\VirtuaTennis2009
2010-07-30 17:31 . 2010-07-30 17:31 -------- d-----w- c:\users\Martin\AppData\Roaming\BinarySense
2010-07-30 17:31 . 2010-08-04 11:56 -------- d-----w- c:\program files\Common Files\BinarySense
2010-07-28 12:38 . 2010-07-28 12:38 -------- d-----w- c:\users\Martin\AppData\Roaming\FaceGen
2010-07-28 12:34 . 2010-07-28 12:41 -------- d-----w- c:\program files\Singular Inversions
2010-07-27 16:19 . 2010-07-27 16:19 -------- d-----w- c:\users\Martin\AppData\Roaming\Need for Speed World
2010-07-27 16:15 . 2010-07-29 09:21 10708240 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\nfsw.exe
2010-07-27 16:15 . 2010-07-29 09:21 1790736 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\gameplay.native.dll
2010-07-27 16:15 . 2010-07-29 09:21 4068624 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\eawebkit.dll
2010-07-27 16:15 . 2010-07-29 09:21 267536 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\gameplay.dll
2010-07-27 16:15 . 2010-07-27 16:15 462864 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\d3dx10_37.dll
2010-07-27 16:15 . 2010-07-27 16:15 3786760 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\d3dx9_37.dll
2010-07-27 16:01 . 2010-07-27 16:01 883670 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\pb\pbcl.dll
2010-07-27 16:01 . 2010-07-27 16:01 57344 ----a-w- c:\programdata\Electronic Arts\Need For Speed World\Data\pb\pbag.dll
2010-07-27 15:55 . 2010-07-27 15:55 -------- d-----w- c:\users\Martin\AppData\Local\Electronic_Arts_Inc
2010-07-27 15:55 . 2010-07-27 15:55 -------- d-----w- c:\programdata\Electronic Arts
2010-07-27 12:25 . 2010-07-27 12:40 -------- d-----w- c:\programdata\TmForever
2010-07-26 13:20 . 2010-07-26 13:20 82726 ----a-r- c:\users\Martin\AppData\Roaming\Microsoft\Installer\{E871FF1A-D7A0-420D-9A47-B78AFD8B16AA}\_853F67D554F05449430E7E.exe
2010-07-26 13:20 . 2010-07-26 13:20 82726 ----a-r- c:\users\Martin\AppData\Roaming\Microsoft\Installer\{E871FF1A-D7A0-420D-9A47-B78AFD8B16AA}\_43EA64258A532C2A1F57BD.exe
2010-07-23 10:18 . 2010-07-23 10:18 -------- d-----w- c:\users\Martin\AppData\Roaming\ATI
2010-07-23 10:18 . 2010-07-23 10:18 -------- d-----w- c:\programdata\ATI
2010-07-23 10:16 . 2010-07-23 10:16 -------- d-----w- c:\program files\Common Files\ATI Technologies
2010-07-23 10:15 . 2010-07-23 10:15 -------- d-----w- c:\program files\ATI
2010-07-23 10:15 . 2010-07-23 10:16 -------- d-----w- c:\program files\ATI Technologies
2010-07-23 10:14 . 2010-07-23 10:14 -------- d-----w- C:\ATI
2010-07-21 20:22 . 2010-07-21 20:22 -------- d-----w- c:\program files\GIGABYTE
2010-07-21 20:22 . 2010-07-22 10:42 17488 ----a-w- c:\windows\gdrv.sys
2010-07-21 18:24 . 2010-07-21 18:24 -------- d-----w- c:\program files\uTorrent
2010-07-21 18:23 . 2010-07-21 21:09 -------- d-----w- c:\users\Martin\AppData\Roaming\uTorrent
2010-07-21 17:58 . 2010-07-21 17:59 -------- d-----w- c:\users\Martin\AppData\Local\NFS Underground 2
2010-07-21 17:12 . 2010-07-21 17:12 -------- d-----w- c:\users\Martin\SystemRequirementsLab
2010-07-21 15:11 . 2010-07-21 15:11 -------- d-----w- C:\Downloads
2010-07-21 15:08 . 2010-07-21 15:19 -------- d-----w- c:\users\Martin\AppData\Roaming\BitSpirit

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-17 08:00 . 2010-08-06 10:45 4484 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2010-08-16 19:40 . 2010-05-20 14:34 -------- d-----w- c:\users\Martin\AppData\Roaming\vlc
2010-08-16 15:21 . 2010-06-21 13:48 -------- d-----w- c:\users\Martin\AppData\Roaming\AIMP
2010-08-16 12:27 . 2010-05-20 15:22 -------- d-----w- c:\users\Martin\AppData\Roaming\dvdcss
2010-08-16 09:22 . 2010-05-17 18:10 -------- d-----w- c:\program files\Opera
2010-08-15 16:26 . 2010-06-30 13:26 -------- d-----w- c:\users\Martin\AppData\Roaming\ICQ
2010-08-14 11:32 . 2010-07-11 12:03 -------- d-----w- c:\programdata\DivX
2010-08-14 11:31 . 2010-07-11 12:07 57344 ----a-w- c:\programdata\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-08-14 11:31 . 2010-07-11 12:04 -------- d-----w- c:\program files\DivX
2010-08-14 11:31 . 2010-05-19 15:21 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-08-10 12:17 . 2010-06-19 13:23 -------- d-----w- c:\programdata\FLEXnet
2010-08-08 08:49 . 2010-05-17 19:49 -------- d-----w- c:\program files\Sony
2010-08-08 08:06 . 2010-06-19 08:48 -------- d-----w- c:\program files\VstPlugins
2010-08-06 10:50 . 2010-05-27 19:01 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-08-05 08:43 . 2010-06-09 15:45 -------- d-----w- c:\program files\JDownloader
2010-08-03 15:39 . 2010-05-17 16:31 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-07-31 09:35 . 2010-05-17 15:51 65256 ----a-w- c:\users\Martin\AppData\Local\GDIPFONTCACHEV1.DAT
2010-07-28 12:42 . 2010-06-06 19:12 -------- d-----w- c:\program files\NVIDIA Corporation
2010-07-28 07:33 . 2010-06-06 19:13 -------- d-----w- c:\programdata\NVIDIA
2010-07-21 15:20 . 2010-07-15 11:14 -------- d-----w- c:\program files\Pando Networks
2010-07-15 18:42 . 2010-07-15 18:42 398180 ----a-w- c:\windows\system32\levelr.dat
2010-07-15 18:42 . 2010-07-15 18:42 2525696 ----a-w- c:\windows\system32\levelr.exe
2010-07-15 16:15 . 2010-06-28 10:41 -------- d-----w- c:\users\Martin\AppData\Roaming\IObit
2010-07-14 08:33 . 2010-07-02 09:01 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-07-14 08:33 . 2010-07-02 09:01 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-07-13 19:45 . 2010-07-13 19:45 -------- d-----w- c:\program files\Lavalys
2010-07-11 13:12 . 2010-07-11 12:07 -------- d-----w- c:\users\Martin\AppData\Roaming\DivX
2010-07-11 12:07 . 2010-07-11 12:07 56997 ----a-w- c:\programdata\DivX\WebPlayer\Uninstaller.exe
2010-07-11 12:07 . 2010-07-11 12:07 56765 ----a-w- c:\programdata\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-07-11 12:07 . 2010-07-11 12:07 53600 ----a-w- c:\programdata\DivX\Update\Uninstaller.exe
2010-07-11 12:06 . 2010-07-11 12:06 57409 ----a-w- c:\programdata\DivX\ControlPanel\Uninstaller.exe
2010-07-11 12:06 . 2010-07-11 12:06 52963 ----a-w- c:\programdata\DivX\MSVC80CRTRedist\Uninstaller.exe
2010-07-11 12:06 . 2010-07-11 12:06 54073 ----a-w- c:\programdata\DivX\Qt4.5\Uninstaller.exe
2010-07-11 12:06 . 2010-07-11 12:06 -------- d-----w- c:\program files\Common Files\DivX Shared
2010-07-02 09:01 . 2010-07-02 09:01 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-06-30 19:28 . 2010-05-30 10:16 -------- d-----w- c:\program files\ICQ-Banner-Remover
2010-06-30 19:21 . 2010-06-30 19:21 -------- d-----w- c:\programdata\ICQ
2010-06-30 19:18 . 2010-06-30 13:25 -------- d-----w- c:\program files\ICQ7.2
2010-06-30 13:20 . 2010-06-30 13:20 -------- d-----w- c:\programdata\IObit
2010-06-28 11:33 . 2010-06-28 11:30 -------- d-----w- c:\programdata\COMODO
2010-06-28 11:27 . 2010-06-28 11:27 -------- d-----w- c:\program files\COMODO
2010-06-28 11:26 . 2010-06-28 11:22 -------- d-----w- c:\programdata\Comodo Downloader
2010-06-28 10:41 . 2010-06-28 10:41 -------- d-----w- c:\program files\IObit
2010-06-28 05:02 . 2010-06-28 05:02 -------- d-----w- c:\users\Martin\AppData\Roaming\vghd
2010-06-27 10:10 . 2010-06-27 10:01 5 ----a-w- c:\windows\treeskp.sys
2010-06-27 10:01 . 2010-06-27 09:02 -------- d-----w- c:\program files\vghd
2010-06-26 19:04 . 2010-06-26 19:04 -------- d-----w- c:\program files\SopCast
2010-06-26 17:40 . 2010-05-18 19:59 -------- d-----w- c:\program files\RocketDock
2010-06-26 12:23 . 2010-06-26 12:23 -------- d-----w- c:\program files\The KMPlayer
2010-06-26 12:20 . 2010-06-26 12:20 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-06-26 12:20 . 2010-06-26 12:20 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-06-26 07:56 . 2010-05-17 17:01 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-06-23 15:29 . 2010-06-23 15:29 -------- d-----w- c:\program files\VirusTotalUploader2
2010-06-23 14:56 . 2010-05-28 14:36 -------- d-----w- c:\program files\GRETECH
2010-06-21 13:47 . 2010-06-21 13:47 -------- d-----w- c:\program files\AIMP2
2010-06-19 14:40 . 2010-05-17 16:00 -------- d-----w- c:\program files\Common Files\Adobe
2010-06-19 13:16 . 2010-06-19 13:16 -------- d-----w- c:\program files\Bonjour
2010-06-19 13:11 . 2010-06-19 13:11 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-06-19 10:52 . 2010-06-19 10:52 -------- d-----w- c:\program files\Defraggler
2010-06-19 09:24 . 2010-05-23 09:20 -------- d-----w- c:\program files\Ashampoo
2010-06-19 09:21 . 2010-06-19 09:21 -------- d---a-w- c:\program files\Revo_Uninstaller
2010-06-19 08:48 . 2010-06-19 08:48 -------- d-----w- c:\program files\Outsim
2010-06-10 18:35 . 2010-06-10 18:35 39233 ----a-w- c:\windows\SETUP1.EXE
2010-06-09 08:06 . 2010-06-09 08:06 976832 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\Martin\10600\AdobeARM.exe
2010-06-09 08:06 . 2010-06-09 08:06 976832 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\27841\AdobeARM.exe
2010-06-09 08:06 . 2010-06-09 08:06 70584 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\Martin\10600\AdobeExtractFiles.dll
2010-06-09 08:06 . 2010-06-09 08:06 70584 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\27841\AdobeExtractFiles.dll
2010-06-09 08:06 . 2010-06-09 08:06 331176 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\Martin\10600\ReaderUpdater.exe
2010-06-09 08:06 . 2010-06-09 08:06 331176 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\Martin\10600\AcrobatUpdater.exe
2010-06-09 08:06 . 2010-06-09 08:06 331176 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\27841\ReaderUpdater.exe
2010-06-09 08:06 . 2010-06-09 08:06 331176 ----a-w- c:\programdata\Adobe\Reader\9.3\ARM\27841\AcrobatUpdater.exe
2010-06-04 10:29 . 2010-06-04 10:29 71992 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.33.16.0\SetupAdmin.exe
2010-06-04 09:55 . 2010-06-04 09:55 224240 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2010-06-02 02:55 . 2010-08-10 08:52 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2010-06-02 02:55 . 2010-08-10 08:52 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2010-06-02 02:55 . 2010-08-10 08:52 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2010-06-01 17:00 . 2010-06-01 17:00 278288 ----a-w- c:\windows\system32\guard32.dll
2010-06-01 17:00 . 2010-06-01 17:00 75944 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-06-01 17:00 . 2010-06-01 17:00 30112 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-06-01 17:00 . 2010-06-01 17:00 16744 ----a-w- c:\windows\system32\drivers\cmderd.sys
2010-05-30 07:16 . 2010-05-30 07:16 0 ----a-w- c:\windows\nsreg.dat
2010-05-27 17:38 . 2010-05-27 17:38 5586432 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2010-05-27 17:05 . 2010-05-27 17:05 15180800 ----a-w- c:\windows\system32\atioglxx.dll
2010-05-27 17:02 . 2010-05-27 17:02 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-05-27 17:02 . 2010-05-27 17:02 511488 ----a-w- c:\windows\system32\aticfx32.dll
2010-05-27 17:00 . 2010-05-27 17:00 446464 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-05-27 16:59 . 2010-05-27 16:59 376832 ----a-w- c:\windows\system32\atieclxx.exe
2010-05-27 16:59 . 2010-05-27 16:59 176128 ----a-w- c:\windows\system32\atiesrxx.exe
2010-05-27 16:58 . 2010-05-27 16:58 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2010-05-27 16:58 . 2010-05-27 16:58 356352 ----a-w- c:\windows\system32\atipdlxx.dll
2010-05-27 16:58 . 2010-05-27 16:58 11776 ----a-w- c:\windows\system32\atimuixx.dll
2010-05-27 16:57 . 2010-05-27 16:57 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2010-05-27 16:54 . 2010-05-27 16:54 3668480 ----a-w- c:\windows\system32\atidxx32.dll
2010-05-27 16:41 . 2010-05-27 16:41 53248 ----a-w- c:\windows\system32\aticalrt.dll
2010-05-27 16:41 . 2010-05-27 16:41 53248 ----a-w- c:\windows\system32\aticalcl.dll
2010-05-27 16:39 . 2010-05-27 16:39 4096000 ----a-w- c:\windows\system32\aticaldd.dll
2010-05-27 16:37 . 2010-05-27 16:37 3798528 ----a-w- c:\windows\system32\atiumdag.dll
2010-05-27 16:35 . 2010-05-27 16:35 50176 ----a-w- c:\windows\system32\coinst.dll
2010-05-27 16:31 . 2010-05-27 16:31 3025408 ----a-w- c:\windows\system32\atiumdva.dll
2010-05-27 16:25 . 2010-05-27 16:25 237568 ----a-w- c:\windows\system32\atiadlxx.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-03-31 2145000]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-03-17 8546848]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2010-06-01 2039240]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-27 98304]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-16 202256]
"Ask and Record FLV Service"="c:\program files\Replay Media Catcher\FLVSrvc.exe" [2009-09-22 156672]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ \0

[HKLM\~\startupfolder\C:^Users^Martin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
backup=c:\windows\pss\HDDlife.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-06-09 08:06 976832 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-21 23:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-06-03 00:50 1144104 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2010-03-30 09:16 1820040 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-05-14 09:44 248552 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-13 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-06-26 691696]
R4 TunngleService;TunngleService;c:\program files\Tunngle\TnglCtrl.exe [2010-03-23 704760]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2010-06-04 224240]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2010-06-01 30112]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-03-31 114984]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-27 176128]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-03-31 134024]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-03-31 810120]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-03-31 96896]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-05-27 5586432]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-05-27 209920]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]

.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Načítať použitie &BitSpirit
TCP: {49E7AC88-3BD9-4673-A8D9-DA1CFF080C49} = 10.10.10.1
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\tsf9vihz.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll
FF - plugin: c:\program files\Opera\program\plugins\nprjplug.dll
FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(2588)
c:\users\Martin\AppData\Local\FLVService\lib\FLVSrvLib.dll
.
Celkový čas: 2010-08-17 10:37:26
ComboFix-quarantined-files.txt 2010-08-17 08:37

Před spuštěním: Volných bajtů: 87 383 117 824
Po spuštění: Volných bajtů: 87 354 474 496

- - End Of File - - 3238B62CA62F9ED8CCF1FC004DE9A282

[bledulka]

Co počítač?

[M4RTY]

Počítač se chová normálně

[bledulka]

Ještě otestuj na www.virustotal.com
c:\users\Martin\AppData\Local\FLVService\lib\FLVSrvLib.dll

[M4RTY]

0/42