ComboFix 07-12-02.7 - Administrator 2007-12-04 14:11:36.1 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.1419 [GMT 1:00]
Running from: C:\Documents and Settings\Administrator\Plocha\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\Config.xml
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\db\Aliases.dbs
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\db\Sites.dbs
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\dwld\WhiteList.xip
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\report\aggr_storage.xml
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\report\send_storage.xml
C:\Documents and Settings\Administrator\Data aplikací\ShoppingReport\cs\res1\WhiteList.dbs
C:\Documents and Settings\Administrator\Oblíbené položky\Error Cleaner.url
C:\Documents and Settings\Administrator\Oblíbené položky\Privacy Protector.url
C:\Documents and Settings\Administrator\Oblíbené položky\Spyware&Malware Protection.url
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Bin\2.0.25\ShoppingReport.dll
C:\Program Files\ShoppingReport\Uninst.exe
C:\WINDOWS\dat.txt
C:\WINDOWS\rs.txt
C:\WINDOWS\search_res.txt
C:\WINDOWS\system32\Cfx32.lic
C:\WINDOWS\system32\cfx32.ocx
.
((((((((((((((((((((((((( Files Created from 2007-11-04 to 2007-12-04 )))))))))))))))))))))))))))))))
.
2007-12-04 14:17 . 2007-12-04 14:17 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2007-12-04 14:17 . 2007-12-04 14:17 1,409 --a------ C:\WINDOWS\QTFont.for
2007-12-03 19:13 . 2007-12-03 19:12 512,096 --a------ C:\WINDOWS\system32\drivers\amon.sys
2007-12-03 19:13 . 2007-12-03 19:12 15,424 --a------ C:\WINDOWS\system32\drivers\nod32drv.sys
2007-12-03 19:13 . 2007-12-03 19:13 0 --a------ C:\WINDOWS\system32\mapisvc.inf
2007-12-03 18:39 . 2007-12-03 18:39 <DIR> d-------- C:\WINDOWS\system32\URTTEMP
2007-12-03 18:38 . 2007-07-19 18:14 3,727,720 --a------ C:\WINDOWS\system32\d3dx9_35.dll
2007-12-03 18:38 . 2007-07-19 18:14 1,358,192 --a------ C:\WINDOWS\system32\D3DCompiler_35.dll
2007-12-03 18:38 . 2007-12-03 18:38 669,184 --a------ C:\WINDOWS\system32\pbsvc.exe
2007-12-03 18:38 . 2007-07-19 18:14 444,776 --a------ C:\WINDOWS\system32\d3dx10_35.dll
2007-12-03 18:10 . 6,471,555,533 C:\rzr-crys.out
2007-12-03 18:09 . 136,844,901 C:\rzr-crys.b64
2007-12-02 21:55 . 2007-12-04 12:42 <DIR> d-------- C:\Program Files\Common Files\SecurePCCleaner
2007-12-02 17:22 . 2007-12-02 17:22 0 --a------ C:\TP115F80.$$$
2007-12-02 17:21 . 2007-12-02 17:22 <DIR> d-------- C:\Program Files\TP
2007-12-02 17:21 . 1999-03-23 09:12 299,520 --a------ C:\WINDOWS\uninst.exe
2007-12-02 16:00 . 2007-12-01 16:05 307,200 --a------ C:\WINDOWS\vipextoxn.dll
2007-12-02 16:00 . 2007-12-01 16:05 258,048 --a------ C:\WINDOWS\jetctrl.dll
2007-12-02 16:00 . 2007-12-01 16:05 192,512 --a------ C:\WINDOWS\voipwet.dll
2007-12-02 16:00 . 2007-12-01 16:05 143,360 --a------ C:\WINDOWS\nretcip.exe
2007-12-02 15:33 . 2007-12-02 15:35 <DIR> d-------- C:\Program Files\Borland CBuilder6 Evaluation
2007-12-02 13:24 . 2007-12-02 13:24 <DIR> d-------- C:\Crysis_Vista_x64_Fix-Razor1911
2007-12-02 13:24 . 7,508,874 C:\rzr-c64f.out
2007-12-02 12:31 . 2007-12-02 12:31 138,752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2007-12-02 12:30 . 2007-12-02 16:37 <DIR> d-------- C:\Program Files\WinClamAVShield
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99999#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99998#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99997#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99996#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99995#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99994#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99993#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99992#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99991#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99990#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99989#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99988#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99987#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99986#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99985#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99984#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99983#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99982#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99981#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99980#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99979#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99978#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99977#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99976#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99975#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99974#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99973#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99972#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99971#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99970#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99969#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99968#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99967#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99966#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99965#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99964#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99963#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99962#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99961#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99960#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99959#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99958#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99957#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99956#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99955#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99954#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99953#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99952#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99951#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99950#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99949#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99948#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99947#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99946#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99945#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99944#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99943#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99942#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99941#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99940#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99939#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99938#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99937#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99936#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99935#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99934#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99933#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99932#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99931#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99930#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99929#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99928#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99927#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99926#
2007-12-01 20:26 . 2007-12-01 20:26 <DIR> d-------- C:\Documents and Settings\Administrator\Guliver#99925#
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-03 18:12 298,104 ----a-w C:\WINDOWS\system32\imon.dll
2007-12-03 14:31 --------- d-----w C:\Program Files\Spyware Terminator
2007-12-02 15:09 --------- d-----w C:\Program Files\Borland
2007-12-02 15:08 --------- d-----w C:\Program Files\Common Files\Borland Shared
2007-12-02 11:26 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2007-12-02 10:23 --------- d-----w C:\Program Files\ELIS
2007-11-30 20:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-11-26 19:28 --------- d-----w C:\Program Files\ICQLite
2007-11-24 16:22 --------- d-----w C:\Program Files\Microsoft Works
2007-11-23 15:20 --------- d-----w C:\Program Files\Comodo
2007-11-21 21:30 --------- d-----w C:\Program Files\EA SPORTS
2007-11-18 19:16 --------- d-----w C:\Program Files\Opera
2007-11-18 17:49 24,962 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
2007-11-17 16:48 --------- d-----w C:\Program Files\GRETECH
2007-11-16 16:37 --------- d-----w C:\Program Files\Tom Clancy's Splinter Cell Double Agent
2007-11-16 16:35 --------- d-----w C:\Program Files\Microsoft Games
2007-11-14 16:28 17,480 ----a-w C:\WINDOWS\system32\drivers\hamachi.sys
2007-11-13 20:19 --------- d-----w C:\Program Files\Yahoo!
2007-11-13 20:16 --------- d-----w C:\Program Files\Common Files\ACD Systems
2007-11-11 22:16 --------- d-----w C:\Program Files\HLSW
2007-11-11 09:00 --------- d-----w C:\Program Files\Activision
2007-11-11 07:46 685,816 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2007-11-07 21:08 --------- d-----w C:\Program Files\PC Wizard 2008
2007-11-03 13:42 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2007-11-02 05:52 2,644,480 ----a-w C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-11-02 04:57 9,314,304 ----a-w C:\WINDOWS\system32\atioglx2.dll
2007-11-02 04:24 176,128 ----a-w C:\WINDOWS\system32\atiok3x2.dll
2007-11-02 04:10 364,544 ----a-w C:\WINDOWS\system32\ATIDEMGX.dll
2007-11-02 04:09 268,288 ----a-w C:\WINDOWS\system32\ati2dvag.dll
2007-11-02 04:01 26,112 ----a-w C:\WINDOWS\system32\Ati2mdxx.exe
2007-11-02 04:01 143,360 ----a-w C:\WINDOWS\system32\atipdlxx.dll
2007-11-02 04:01 122,880 ----a-w C:\WINDOWS\system32\Oemdspif.dll
2007-11-02 04:00 43,520 ----a-w C:\WINDOWS\system32\ati2edxx.dll
2007-11-02 04:00 122,880 ----a-w C:\WINDOWS\system32\ati2evxx.dll
2007-11-02 03:59 495,616 ----a-w C:\WINDOWS\system32\ati2evxx.exe
2007-11-02 03:58 53,248 ----a-w C:\WINDOWS\system32\ATIDDC.DLL
2007-11-02 03:50 3,133,728 ----a-w C:\WINDOWS\system32\ati3duag.dll
2007-11-02 03:39 1,602,176 ----a-w C:\WINDOWS\system32\ativvaxx.dll
2007-11-02 03:35 307,200 ----a-w C:\WINDOWS\system32\atiiiexx.dll
2007-11-02 03:24 376,832 ----a-w C:\WINDOWS\system32\atikvmag.dll
2007-11-02 03:22 49,152 ----a-w C:\WINDOWS\system32\drivers\ati2erec.dll
2007-11-02 03:22 17,408 ----a-w C:\WINDOWS\system32\atitvo32.dll
2007-11-02 03:16 499,712 ----a-w C:\WINDOWS\system32\ati2cqag.dll
2007-10-31 22:02 --------- d-----w C:\Program Files\PowerISO
2007-10-31 13:28 --------- d-----w C:\Program Files\Common Files\SWF Studio
2007-10-31 11:26 --------- d-----w C:\Program Files\Eidos
2007-10-30 17:32 --------- d-----w C:\Program Files\ReadManiac
2007-10-30 12:42 --------- d-----w C:\Program Files\Valve
2007-10-30 11:35 --------- d-----w C:\Program Files\Ultra Mobile 3GP Video Converter
2007-10-30 09:29 30,728 ------w C:\WINDOWS\system32\drivers\epfwtdir.sys
2007-10-30 09:27 27,144 ------w C:\WINDOWS\system32\drivers\easdrv.sys
2007-10-27 17:29 --------- d-----w C:\Program Files\Crawler
2007-10-27 10:54 196,653 ----a-w C:\WINDOWS\system32\drivers\aVivid.bin
2007-10-26 21:40 --------- d-----w C:\Program Files\Registry Shower 2007
2007-10-25 19:52 --------- d-----w C:\Program Files\QuickTime
2007-10-25 13:25 737,280 ----a-w C:\WINDOWS\iun6002.exe
2007-10-25 13:21 --------- d-----w C:\Program Files\Essentials Codec Pack
2007-10-24 16:33 --------- d-----w C:\Program Files\Commander
2007-10-23 15:09 --------- d-----w C:\Program Files\Ubisoft
2007-10-22 19:21 --------- d-----w C:\Program Files\vr2b5t
2007-10-20 10:45 --------- d-----w C:\Program Files\VisualTooltip
2007-10-20 10:45 --------- d-----w C:\Program Files\Styler
2007-10-19 16:24 --------- d-----w C:\Program Files\Poznáváme C-Sharp a Microsoft.NET
2007-10-18 19:02 --------- d-----w C:\Program Files\Common Files\LightScribe
2007-10-18 19:01 --------- d-----w C:\Program Files\Common Files\Ahead
2007-10-18 18:59 --------- d-----w C:\Program Files\Nero
2007-10-18 18:58 --------- d-----w C:\Program Files\AskTBar
2007-10-18 16:07 --------- d-----w C:\Program Files\MeeSoft
2007-10-17 20:05 --------- d-----w C:\Program Files\Switch Off
2007-10-17 15:16 --------- d-----w C:\Program Files\CorresBurn
2007-10-17 14:26 --------- d-----w C:\Program Files\SiSoftware
2007-10-16 18:14 --------- d-----w C:\Program Files\Ahead
2007-10-16 12:33 --------- d-----w C:\Program Files\Common Files\Corel
2007-10-15 20:43 --------- d-----w C:\Program Files\Blaero Start Orb
2007-10-13 16:09 --------- d-----w C:\Program Files\securedie
2007-10-13 13:15 --------- d-----w C:\Program Files\ComponentAce
2007-10-13 12:22 --------- d-----w C:\Program Files\VUGames
2007-10-13 11:17 --------- d-----w C:\Program Files\Rockstar Games
2007-10-12 19:31 --------- d-----w C:\Program Files\Secured IE
2007-10-12 19:30 --------- d-----w C:\Program Files\Player Tool
2007-10-12 17:37 --------- d-----w C:\Program Files\Codemasters
2007-10-06 20:25 26,112 ----a-r C:\WINDOWS\LgUninst.exe
2007-10-06 20:25 --------- d-----w C:\Program Files\Lingea
2007-10-06 17:23 --------- d-----w C:\Program Files\VID_0E8F&PID_0012
2007-09-27 06:51 64,786 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2007-09-27 06:51 6,120 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2007-09-27 06:51 219,648 ----a-w C:\WINDOWS\system32\uxtheme.dll
2007-09-23 18:06 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
2007-09-23 18:06 249,856 ------w C:\WINDOWS\Setup1.exe
2007-09-14 13:31 558,142 ----a-w C:\WINDOWS\java\Packages\PVZVZVH3.ZIP
2007-09-14 13:31 155,995 ----a-w C:\WINDOWS\java\Packages\S82ET7DR.ZIP
2006-06-23 22:48 32,768 ----a-r C:\WINDOWS\inf\UpdateUSB.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}]
2007-11-18 11:10 66912 --a------ C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5EF40AC5-1BBE-4436-A9E3-F129C0D605D8}]
2007-12-01 16:05 307200 --a------ C:\WINDOWS\vipextoxn.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{cd36797a-70f3-4acd-8825-623d3b896881}]
2007-10-13 17:13 1453080 --a------ C:\Program Files\securedie\tbsec1.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]
2007-11-18 11:10 262144 --a------ C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CD36797A-70F3-4ACD-8825-623D3B896881}"= C:\Program Files\securedie\tbsec1.dll [2007-10-13 17:13 1453080]
"{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}"= C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2007-11-18 11:10 262144]
"{E75C0DB5-5DF7-4DF0-9761-8EFCD1783912}"= C:\WINDOWS\jokwmp.dll [ ]
"{D4170A6E-8CE3-444B-ACA4-B3A0AF12C55C}"= C:\WINDOWS\voipwet.dll [2007-12-01 16:05 192512]
[HKEY_CLASSES_ROOT\clsid\{cd36797a-70f3-4acd-8825-623d3b896881}]
[HKEY_CLASSES_ROOT\clsid\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa}]
[HKEY_CLASSES_ROOT\clsid\{e75c0db5-5df7-4df0-9761-8efcd1783912}]
[HKEY_CLASSES_ROOT\jokwmp.ToolBar.1]
[HKEY_CLASSES_ROOT\TypeLib\{4677D280-FF2B-48CD-9786-A4A2F5A3BFE3}]
[HKEY_CLASSES_ROOT\jokwmp.ToolBar]
[HKEY_CLASSES_ROOT\clsid\{d4170a6e-8ce3-444b-aca4-b3a0af12c55c}]
[HKEY_CLASSES_ROOT\voipwet.ToolBar.1]
[HKEY_CLASSES_ROOT\TypeLib\{3DD88B10-20E4-4085-BB2C-5A58B49910A9}]
[HKEY_CLASSES_ROOT\voipwet.ToolBar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{CD36797A-70F3-4ACD-8825-623D3B896881}"= C:\Program Files\securedie\tbsec1.dll [2007-10-13 17:13 1453080]
"{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}"= C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2007-11-18 11:10 262144]
[HKEY_CLASSES_ROOT\clsid\{cd36797a-70f3-4acd-8825-623d3b896881}]
[HKEY_CLASSES_ROOT\clsid\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 14:49]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 17:24]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-09-18 15:16]
"Steam"="C:\Program Files\Steam\Steam.exe" [2007-11-30 14:09]
"Free Uploader Oe Integration"="C:\Program Files\Free Download Manager\FUM\fumoei.exe" [2007-06-10 19:02]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-11-18 11:08]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 15:49 C:\WINDOWS\RTHDCPL.exe]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-01-09 22:59]
"Ai Nap"="C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" [2007-04-09 13:49]
"WorksFUD"="C:\Program Files\Microsoft Works\wkfud.exe" [2000-07-12 20:15]
"Microsoft Works Portfolio"="C:\Program Files\Microsoft Works\WksSb.exe" [2000-07-12 21:30]
"Microsoft Works Update Detection"="C:\Program Files\Microsoft Works\WkDetect.exe" [2000-07-21 23:55]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 01:41]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 14:57]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-10-25 20:52]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-08-07 01:05]
"OODefragTray"="C:\WINDOWS\system32\oodtray.exe" [2007-05-11 02:08]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-10-25 17:20]
"TrojanScanner"="C:\Program Files\Trojan Remover\Trjscan.exe" [2007-11-20 13:47]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20]
"COMODO Firewall Pro"="C:\Program Files\Comodo\Firewall\CPF.exe" [2007-11-23 16:20]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 11:35]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2007-12-02 12:29]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-12-03 19:12]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-17 14:49]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 15:58]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"jetctrl"= {959A824F-A1C8-4CA7-B9F4-B0FB113CAF66} - C:\WINDOWS\jetctrl.dll [2007-12-01 16:05 258048]
"kopmet"= {F1103943-53CE-4D27-B25A-902AC1C6A826} - C:\WINDOWS\kopmet.dll [ ]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Erinnerungen in Microsoft Works-Kalender.lnk]
path=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Erinnerungen in Microsoft Works-Kalender.lnk
backup=C:\WINDOWS\pss\Erinnerungen in Microsoft Works-Kalender.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^InterVideo WinCinema Manager.lnk]
path=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk
backup=C:\WINDOWS\pss\InterVideo WinCinema Manager.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS SmartDoctor]
C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-07-12 09:03 380928 --a------ C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GameFace Messenger]
2006-11-01 13:50 2154496 --a------ C:\Program Files\GameFace Messenger\GameFace.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ Lite]
C:\Program Files\ICQLite\ICQLite.exe -minimize
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe /background
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe /nosplash /minimized
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe -silent
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"O&O Defrag"=2 (0x2)
"mnmsrvc"=3 (0x3)
"LightScribeService"=2 (0x2)
"clr_optimization_v2.0.50727_32"=3 (0x3)
R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);C:\WINDOWS\system32\drivers\sfsync03.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 InterBaseGuardian;InterBase Guardian;C:\Program Files\Borland\InterBase\bin\ibguard.exe
R3 asusgsb;ASUS Virtual Video Capture Device Driver;C:\WINDOWS\system32\drivers\asusgsb.sys
R3 ASUSVRC;ASUSTeK Virtual Capture Device;C:\WINDOWS\system32\DRIVERS\AsusVRC.sys
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
R3 InterBaseServer;InterBase Server;C:\Program Files\Borland\InterBase\bin\ibserver.exe
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
R3 Video3D;ASUS Video3D Service;C:\WINDOWS\system32\Drivers\Video3D32.sys
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a7a6764d-cb12-11d6-ac68-001d600eaf72}]
\Shell\AutoRun\command - G:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ae40032c-6ad5-11dc-ac9a-001d600eaf72}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe
\Shell\Open(0)\command - Recycled\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
**************************************************************************
catchme 0.3.1318 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-12-04 14:18:17
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-12-04 14:21:33 - machine was rebooted
.
--- E O F ---
... neuveritelne...
