Prosim o kontrolu logu

[Blluemartin]

Prosim o kontrolu logu:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Lenovo at 2010-01-26 11:49:33
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 31 GB (75%) free of 41 GB
Total RAM: 1014 MB (55% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\firefox.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{695F01B1-5DF4-4A48-A411-74C692A807C6}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1935E690-1AC1-4AA5-BA23-3D9D0CEB3A00}]
lsk_WebBlk Class - C:\WINDOWS\system32\Lsk_iBlk.dll [2009-11-06 148784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-22 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-05-23 1146880]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2008-07-10 4456448]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2008-08-28 1283984]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-02-17 17508864]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"Teacher"=C:\Program Files\LanSchool\student.exe [2009-11-06 1041712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
[]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program files\superantispyware\SASWINLO.dll [2009-09-03 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\PicNotify]
C:\WINDOWS\system32\PicNotify.dll [2009-08-07 1167360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=D:\Program files\superantispyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LanSchoolStudent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanSchoolStudent]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoResolveSearch"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\LanSchool\student.exe"="C:\Program Files\LanSchool\student.exe:*:Enabled:LanSchool Student"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Total Commander\TOTALCMD.EXE"="C:\Program Files\Total Commander\TOTALCMD.EXE:*:Disabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\Program files\Warcraft III\Warcraft III.exe"="D:\Program files\Warcraft III\Warcraft III.exe:*:Disabled:Warcraft III"
"D:\Program files\ICQ6.5\ICQ.exe"="D:\Program files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"
"E:\OpenLieroX\OpenLieroX.exe"="E:\OpenLieroX\OpenLieroX.exe:*:Disabled:Extremely addictive realtime worms shoot-em-up game backed by an active gamers community"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\LanSchool\student.exe"="C:\Program Files\LanSchool\student.exe:*:Enabled:LanSchool Student"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"D:\Program files\ICQ6.5\ICQ.exe"="D:\Program files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"

======List of files/folders created in the last 1 months======

2010-01-25 16:21:43 ----HD---- C:\dvmexp
2010-01-25 14:25:21 ----D---- C:\Program Files\trend micro
2010-01-25 14:25:20 ----D---- C:\rsit
2010-01-25 09:52:51 ----D---- C:\Documents and Settings\Lenovo\Application Data\ArcSoft
2010-01-25 09:50:17 ----A---- C:\WINDOWS\PI_SETUP.ini
2010-01-25 09:50:17 ----A---- C:\WINDOWS\PCDLIB32.DLL
2010-01-24 19:43:48 ----D---- C:\Documents and Settings\Lenovo\Application Data\IObit
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\VACFix.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\swxcacls.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\swsc.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\swreg.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\Process.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\o4Patch.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\IEDFix.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\dumphive.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
2010-01-22 19:06:01 ----A---- C:\WINDOWS\system32\404Fix.exe
2010-01-22 09:50:29 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-01-22 09:50:26 ----D---- C:\Program Files\Common Files\Java
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\javaws.exe
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\javaw.exe
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\java.exe
2010-01-22 09:49:28 ----D---- C:\Program Files\Java
2010-01-21 19:33:39 ----A---- C:\WINDOWS\system32\pdfmonnt.dll
2010-01-21 19:22:40 ----A---- C:\WINDOWS\system32\ss2uinst.exe
2010-01-20 14:21:06 ----D---- C:\Documents and Settings\Lenovo\Application Data\TweakNow PowerPack 2009
2010-01-19 18:06:26 ----D---- C:\Documents and Settings\Lenovo\Application Data\ICQ
2010-01-18 15:06:10 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-01-18 08:39:10 ----D---- C:\Program Files\Google
2010-01-17 14:54:57 ----D---- C:\Documents and Settings\Lenovo\Application Data\iolo
2010-01-17 14:54:57 ----D---- C:\Documents and Settings\All Users\Application Data\iolo
2010-01-17 11:05:43 ----A---- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
2010-01-17 11:00:10 ----D---- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
2010-01-17 10:57:32 ----D---- C:\Documents and Settings\Lenovo\Application Data\NCH Swift Sound
2010-01-17 10:14:44 ----D---- C:\Program Files\Microsoft Office 2003 Developer Resources
2010-01-16 18:50:58 ----D---- C:\Program Files\MSXML 4.0
2010-01-16 15:58:47 ----D---- C:\WINDOWS\pss
2010-01-16 12:56:31 ----A---- C:\WINDOWS\system32\diarbp64.exe
2010-01-16 12:56:14 ----A---- C:\WINDOWS\system32\diarbp32.exe
2010-01-16 11:07:27 ----SHD---- C:\WINDOWS\ftpcache
2010-01-16 10:50:05 ----D---- C:\Program Files\MSSOAP
2010-01-16 10:49:22 ----D---- C:\Program Files\Webroot
2010-01-15 15:06:27 ----A---- C:\WINDOWS\War3Unin.exe
2010-01-15 14:49:15 ----D---- C:\Program Files\Adobe
2010-01-15 14:49:04 ----D---- C:\Config.Msi
2010-01-14 10:36:33 ----D---- C:\Program Files\Adobe(2)
2010-01-13 16:30:40 ----D---- C:\Documents and Settings\Lenovo\Application Data\SoftLogica
2010-01-13 08:22:09 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-12 17:51:19 ----N---- C:\WINDOWS\Setup1.exe
2010-01-12 17:51:17 ----A---- C:\WINDOWS\ST6UNST.EXE
2010-01-12 16:30:04 ----A---- C:\WINDOWS\iun6002.exe
2010-01-11 17:54:18 ----D---- C:\Documents and Settings\Lenovo\Application Data\Mozilla
2010-01-11 15:33:45 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-11 14:38:45 ----A---- C:\WINDOWS\didakta.ini
2010-01-10 10:35:04 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2010-01-10 10:34:54 ----D---- C:\Documents and Settings\Lenovo\Application Data\SUPERAntiSpyware.com
2010-01-10 10:16:51 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2010-01-10 09:35:16 ----D---- C:\Documents and Settings\Lenovo\Application Data\Sun
2010-01-09 17:38:08 ----D---- C:\TP
2010-01-08 16:45:00 ----ASH---- C:\WINDOWS\system32\decdbffce_d.dll
2010-01-08 14:13:45 ----ASH---- C:\WINDOWS\system32\cdcadfbada0_s.dll
2010-01-08 14:08:48 ----A---- C:\WINDOWS\system32\msvcr70.dll
2010-01-08 14:08:48 ----A---- C:\WINDOWS\system32\msvcp70.dll
2010-01-08 14:08:47 ----A---- C:\WINDOWS\system32\mfc70.dll
2010-01-07 13:55:01 ----A---- C:\WINDOWS\ARCHPR.INI
2010-01-05 06:49:32 ----D---- C:\WINDOWS\system32\Adobe
2010-01-03 11:01:36 ----A---- C:\WINDOWS\system32\uxtheme.dll
2010-01-02 19:08:15 ----A---- C:\WINDOWS\system32\uharc.exe
2010-01-02 17:56:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-02 17:17:25 ----A---- C:\WINDOWS\Eudcedit.ini
2010-01-02 17:01:48 ----D---- C:\WINDOWS\Downloaded Installations
2009-12-31 12:29:17 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-12-30 19:52:45 ----A---- C:\WINDOWS\system32\VB5DB.DLL
2009-12-30 19:22:15 ----D---- C:\Duplicate File Hunter - Removed files
2009-12-29 19:40:45 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-12-29 19:37:08 ----A---- C:\WINDOWS\system32\irmon.dll
2009-12-29 19:37:08 ----A---- C:\WINDOWS\system32\irftp.exe
2009-12-29 19:37:07 ----A---- C:\WINDOWS\system32\wshirda.dll
2009-12-27 14:45:52 ----D---- C:\WINDOWS\speech

======List of files/folders modified in the last 1 months======

2010-01-26 11:48:23 ----D---- C:\WINDOWS\Temp
2010-01-26 11:46:22 ----D---- C:\Program Files\LanSchool
2010-01-26 10:51:19 ----AD---- C:\WINDOWS
2010-01-26 10:51:08 ----AD---- C:\WINDOWS\system32
2010-01-25 18:29:31 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-25 18:24:24 ----HD---- C:\temp
2010-01-25 18:21:14 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-25 18:20:07 ----SHD---- C:\WINDOWS\Installer
2010-01-25 18:20:07 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2010-01-25 18:19:53 ----D---- C:\Program Files
2010-01-25 18:19:41 ----SD---- C:\WINDOWS\Tasks
2010-01-25 16:24:51 ----D---- C:\LanSchool Files
2010-01-25 16:20:36 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-01-25 16:13:35 ----ASHDC---- C:\WINDOWS\system32\dllcache
2010-01-25 09:49:42 ----D---- C:\Documents and Settings\Lenovo\Application Data\Skype
2010-01-25 08:49:48 ----D---- C:\Documents and Settings\Lenovo\Application Data\skypePM
2010-01-24 20:00:22 ----D---- C:\WINDOWS\system32\MsDtc
2010-01-24 20:00:22 ----D---- C:\WINDOWS\system32\config
2010-01-24 20:00:22 ----D---- C:\WINDOWS\system32\(null)
2010-01-24 20:00:22 ----D---- C:\Program Files\Windows Live Toolbar
2010-01-24 20:00:22 ----D---- C:\Program Files\K-Lite Codec Pack
2010-01-24 20:00:22 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2010-01-24 20:00:22 ----D---- C:\Documents and Settings
2010-01-24 19:57:32 ----D---- C:\WINDOWS\Prefetch
2010-01-24 15:28:00 ----D---- C:\WINDOWS\system32\drivers
2010-01-24 15:27:52 ----HD---- C:\WINDOWS\inf
2010-01-24 10:16:24 ----D---- C:\Documents and Settings\All Users\Application Data\VeriFace
2010-01-23 11:13:09 ----D---- C:\Documents and Settings\Lenovo\Application Data\Adobe
2010-01-22 19:53:45 ----D---- C:\WINDOWS\system32\CatRoot
2010-01-22 19:11:02 ----D---- C:\Program Files\Internet Explorer
2010-01-22 16:59:05 ----D---- C:\WINDOWS\system32\wbem
2010-01-22 16:59:04 ----D---- C:\WINDOWS\Registration
2010-01-22 16:36:10 ----A---- C:\WINDOWS\win.ini
2010-01-22 16:36:10 ----A---- C:\WINDOWS\system.ini
2010-01-22 14:12:09 ----D---- C:\Program Files\Common Files\Adobe
2010-01-22 13:58:24 ----D---- C:\WINDOWS\ie8updates
2010-01-22 13:58:08 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-22 09:50:26 ----D---- C:\Program Files\Common Files
2010-01-22 09:49:34 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-01-20 18:45:00 ----D---- C:\Program Files\Avast4
2010-01-20 09:44:23 ----D---- C:\Program Files\Microsoft Silverlight
2010-01-19 18:53:32 ----A---- C:\WINDOWS\wincmd.ini
2010-01-19 13:00:37 ----D---- C:\WINDOWS\Network Diagnostic
2010-01-17 19:48:45 ----SD---- C:\Documents and Settings\Lenovo\Application Data\Microsoft
2010-01-16 18:51:12 ----D---- C:\WINDOWS\WinSxS
2010-01-15 14:49:16 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-01-15 14:48:58 ----D---- C:\Program Files\Total Commander
2010-01-15 14:48:57 ----D---- C:\Program Files\WinRAR
2010-01-15 14:48:18 ----D---- C:\WINDOWS\system32\Restore
2010-01-13 16:09:56 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-01-13 16:08:29 ----D---- C:\WINDOWS\Debug
2010-01-13 14:33:05 ----D---- C:\WINDOWS\Help
2010-01-12 18:53:37 ----D---- C:\Documents and Settings\Lenovo\Application Data\Student dog
2010-01-12 17:42:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-12 16:30:04 ----RSD---- C:\WINDOWS\Fonts
2010-01-12 09:00:06 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-01-06 10:14:56 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-01-05 20:04:59 ----D---- C:\WINDOWS\addins
2010-01-05 06:52:20 ----D---- C:\WINDOWS\system32\Macromed
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-04 17:46:49 ----RSD---- C:\WINDOWS\assembly
2010-01-04 17:46:46 ----D---- C:\Program Files\OpenOffice.org 3
2010-01-03 10:54:55 ----D---- C:\WINDOWS\Minidump
2010-01-02 18:21:49 ----D---- C:\WINDOWS\AppPatch
2010-01-01 13:14:41 ----D---- C:\WINDOWS\system32\LogFiles
2009-12-31 11:59:14 ----D---- C:\WINDOWS\repair
2009-12-30 12:06:52 ----D---- C:\WINDOWS\SxsCaPendDel
2009-12-29 19:37:13 ----D---- C:\WINDOWS\Media

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SASDIFSV;SASDIFSV; \??\D:\Program files\superantispyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\D:\Program files\superantispyware\SASKUTIL.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-14 88192]
R2 PMEM;PMEM; \??\C:\WINDOWS\system32\drivers\PMEMNT.SYS []
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\WINDOWS\system32\DRIVERS\AcpiVpc.sys [2008-01-11 9472]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-06-20 176640]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2008-09-11 1386624]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-05-30 534568]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-01-07 991784]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-03-10 57384]
R3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2008-02-04 37032]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-10-30 47272]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-02-18 5028352]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\WINDOWS\system32\DRIVERS\psadd.sys [2007-02-19 21376]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys [2008-07-23 157696]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-05-23 225280]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\WINDOWS\system32\Drivers\eusk2par.sys []
S1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nhcDriverDevice;Notebook Hardware Control Driver; \??\C:\WINDOWS\system32\drivers\nhcDriver.sys []
S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\pcdrndisuio.sys []
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 SASENUM;SASENUM; \??\D:\Program files\superantispyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe [2009-01-17 346720]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\QSTART.SYS\config\DVMExportService.exe [2008-11-20 307200]
R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-01-22 153376]
R2 LanSchoolStudent;LanSchool Student Service; C:\Program Files\LanSchool\student.exe [2009-11-06 1041712]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 GoogleDesktopManager-110309-193829;Správca pre program Google Desktop 5.9.911.3589; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-01-18 30192]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]

-----------------EOF-----------------

[Roli]

Zdravím, stáhni a ulož na plochu ComboFix,

spusť aplikaci pod účtem s administrátorským oprávněním a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

[Blluemartin]

ComboFix 10-01-26.02 - Lenovo 27.01.2010 9:50.1.2 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1014.583 [GMT 1:00]
Running from: d:\moje dokumenty\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100126-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Start Menu\Programs\Internet Explorer.lnk
c:\documents and settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk
c:\recycler\S-1-5-21-1983641458-3548715834-4191437944-1003
c:\windows\system32\404Fix.exe
c:\windows\system32\Agent.OMZ.Fix.exe
c:\windows\system32\cdcadfbada0_s.dll
c:\windows\system32\decdbffce_d.dll
c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\o4Patch.exe
c:\windows\system32\Process.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\WS2Fix.exe

.
((((((((((((((((((((((((( Files Created from 2009-12-27 to 2010-01-27 )))))))))))))))))))))))))))))))
.

2010-01-27 08:59 . 2010-01-27 08:59 -------- d--h--w- c:\temp\dvmexp
2010-01-26 16:26 . 2010-01-26 16:26 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Malwarebytes
2010-01-26 16:26 . 2010-01-26 16:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-01-26 15:58 . 2010-01-26 15:58 -------- d-----w- c:\documents and settings\Lenovo\Application Data\RealWorld
2010-01-26 15:46 . 2010-01-26 15:46 -------- d-----w- C:\VundoFix Backups
2010-01-25 13:25 . 2010-01-26 10:49 -------- d-----w- c:\program files\trend micro
2010-01-25 13:25 . 2010-01-25 13:26 -------- d-----w- C:\rsit
2010-01-25 08:52 . 2010-01-25 08:52 -------- d-----w- c:\documents and settings\Lenovo\Application Data\ArcSoft
2010-01-25 08:50 . 2001-10-16 09:23 163840 ----a-w- c:\windows\system32\PhotoImpression Screen Saver.scr
2010-01-25 08:50 . 1995-07-31 12:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2010-01-24 18:43 . 2010-01-24 19:00 -------- d-----w- c:\documents and settings\Lenovo\Application Data\IObit
2010-01-24 16:58 . 2010-01-24 16:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací
2010-01-22 15:59 . 2010-01-22 15:59 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-22 08:50 . 2010-01-22 08:50 503808 ----a-w- c:\documents and settings\Lenovo\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-3df04d95-n\msvcp71.dll
2010-01-22 08:50 . 2010-01-22 08:50 348160 ----a-w- c:\documents and settings\Lenovo\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-3df04d95-n\msvcr71.dll
2010-01-22 08:50 . 2010-01-22 08:50 499712 ----a-w- c:\documents and settings\Lenovo\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-3df04d95-n\jmc.dll
2010-01-22 08:50 . 2010-01-22 08:50 61440 ----a-w- c:\documents and settings\Lenovo\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-52b7ae25-n\decora-sse.dll
2010-01-22 08:50 . 2010-01-22 08:50 12800 ----a-w- c:\documents and settings\Lenovo\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-52b7ae25-n\decora-d3d.dll
2010-01-22 08:50 . 2010-01-22 08:50 -------- d-----w- c:\program files\Common Files\Java
2010-01-22 08:49 . 2010-01-22 08:49 -------- d-----w- c:\program files\Java
2010-01-21 18:33 . 2001-10-29 00:42 116224 ----a-w- c:\windows\system32\pdfmonnt.dll
2010-01-21 18:22 . 2010-01-21 18:22 434688 ----a-w- c:\windows\system32\ss2uinst.exe
2010-01-20 13:21 . 2010-01-25 17:20 -------- d-----w- c:\documents and settings\Lenovo\Application Data\TweakNow PowerPack 2009
2010-01-19 17:06 . 2010-01-19 17:19 -------- d-----w- c:\documents and settings\Lenovo\Application Data\ICQ
2010-01-18 14:07 . 2010-01-18 14:07 52224 ----a-w- c:\documents and settings\Lenovo\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-01-18 14:07 . 2010-01-24 10:53 117760 ----a-w- c:\documents and settings\Lenovo\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-01-18 14:06 . 2010-01-18 14:06 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-01-18 07:39 . 2010-01-18 07:39 -------- d-----w- c:\program files\Google
2010-01-17 13:54 . 2010-01-17 13:54 -------- d-----w- c:\documents and settings\Lenovo\Application Data\iolo
2010-01-17 13:54 . 2010-01-17 13:54 -------- d-----w- c:\documents and settings\All Users\Application Data\iolo
2010-01-17 13:10 . 2010-01-17 13:10 -------- d-----w- c:\documents and settings\Lenovo\.thumbnails
2010-01-17 11:49 . 2010-01-17 11:56 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-01-17 10:00 . 2010-01-17 10:00 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Swift Sound
2010-01-17 09:57 . 2010-01-17 09:57 -------- d-----w- c:\documents and settings\Lenovo\Application Data\NCH Swift Sound
2010-01-17 09:14 . 2010-01-17 09:14 -------- d-----w- c:\program files\Microsoft Office 2003 Developer Resources
2010-01-16 17:50 . 2010-01-16 17:50 -------- d-----w- c:\program files\MSXML 4.0
2010-01-16 11:56 . 2007-06-20 11:12 394752 ----a-w- c:\windows\system32\diarbp64.exe
2010-01-16 11:56 . 2007-06-20 11:14 394752 ----a-w- c:\windows\system32\diarbp32.exe
2010-01-16 10:07 . 2010-01-16 10:07 -------- d-sh--w- c:\windows\ftpcache
2010-01-16 10:04 . 2010-01-16 10:04 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-01-16 09:50 . 2010-01-16 09:50 -------- d-----w- c:\program files\MSSOAP
2010-01-16 09:49 . 2010-01-16 09:49 -------- d-----w- c:\program files\Webroot
2010-01-16 09:46 . 2010-01-16 09:46 164 ----a-w- c:\windows\install.dat
2010-01-15 18:15 . 2010-01-15 18:15 -------- d-----w- c:\documents and settings\Lenovo\WINDOWSTEMPDIR_FONTCONFIG_CACHE
2010-01-15 14:06 . 2010-01-15 14:24 2829 ----a-w- c:\windows\War3Unin.pif
2010-01-15 14:06 . 2010-01-15 14:24 139264 ----a-w- c:\windows\War3Unin.exe
2010-01-14 14:44 . 2010-01-15 14:27 67520 ----a-w- c:\windows\War3Unin.dat
2010-01-14 09:36 . 2010-01-15 13:49 -------- d-----w- c:\program files\Adobe(2)
2010-01-13 15:30 . 2010-01-13 15:30 -------- d-----w- c:\documents and settings\Lenovo\Application Data\SoftLogica
2010-01-13 14:58 . 2009-12-17 14:02 123280 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2010-01-13 14:57 . 2009-12-17 14:02 41616 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2010-01-12 16:51 . 2010-01-12 16:51 253952 ------w- c:\windows\Setup1.exe
2010-01-12 16:51 . 2010-01-12 16:51 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-01-12 15:30 . 2010-01-12 15:29 720896 ----a-w- c:\windows\iun6002.exe
2010-01-11 18:18 . 2010-01-11 18:21 42 ----a-w- C:\notes.bin
2010-01-11 14:33 . 2010-01-11 17:46 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-10 09:35 . 2010-01-10 09:35 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2010-01-10 09:34 . 2010-01-18 14:07 -------- d-----w- c:\documents and settings\Lenovo\Application Data\SUPERAntiSpyware.com
2010-01-10 09:16 . 2010-01-10 10:56 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft
2010-01-10 07:13 . 2010-01-10 07:17 -------- d-----w- c:\documents and settings\Lenovo\Local Settings\Application Data\Temp
2010-01-09 16:38 . 2010-01-09 16:38 -------- d-----w- C:\TP
2010-01-08 13:08 . 2002-01-05 19:37 344064 ----a-w- c:\windows\system32\msvcr70.dll
2010-01-08 13:08 . 2002-01-05 13:40 487424 ----a-w- c:\windows\system32\msvcp70.dll
2010-01-08 13:08 . 2002-01-05 14:48 974848 ----a-w- c:\windows\system32\mfc70.dll
2010-01-05 05:49 . 2010-01-05 05:49 -------- d-----w- c:\windows\system32\Adobe
2010-01-03 10:01 . 2004-08-07 17:36 218624 ----a-w- c:\windows\system32\uxtheme.dll
2010-01-03 09:59 . 2010-01-04 16:01 0 ----a-w- c:\windows\IntIgn0xF28456.dat
2010-01-02 18:08 . 2003-12-12 23:40 202763 -c--a-w- c:\windows\system32\dllcache\uxtheme.dll
2010-01-02 18:08 . 2006-12-03 16:15 111104 ----a-w- c:\windows\system32\uharc.exe
2010-01-02 16:01 . 2010-01-13 13:33 -------- d-----w- c:\windows\Downloaded Installations
2009-12-31 11:29 . 1999-03-26 08:00 101888 ----a-w- c:\windows\system32\VB6STKIT.DLL
2009-12-30 18:52 . 1998-06-17 19:00 89360 ----a-w- c:\windows\system32\VB5DB.DLL
2009-12-30 18:22 . 2009-12-30 18:22 -------- d-----w- C:\Duplicate File Hunter - Removed files
2009-12-30 17:54 . 2009-12-30 17:54 -------- d-----w- c:\documents and settings\Lenovo\Bluetooth Software
2009-12-29 18:40 . 2010-01-17 12:21 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-12-29 18:37 . 2001-08-17 12:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2009-12-29 18:37 . 2001-08-17 12:51 19584 ----a-w- c:\windows\system32\drivers\rasirda.sys
2009-12-29 18:37 . 2008-04-14 04:42 151552 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2009-12-29 18:37 . 2008-04-14 04:42 151552 ----a-w- c:\windows\system32\irftp.exe
2009-12-29 18:37 . 2008-04-14 04:41 28160 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2009-12-29 18:37 . 2008-04-14 04:41 28160 ----a-w- c:\windows\system32\irmon.dll
2009-12-29 18:37 . 2008-04-13 23:24 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2009-12-29 18:37 . 2008-04-13 23:24 88192 ----a-w- c:\windows\system32\drivers\irda.sys
2009-12-29 18:37 . 2008-04-14 04:42 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2009-12-29 18:37 . 2008-04-14 04:42 8192 ----a-w- c:\windows\system32\wshirda.dll
2009-12-29 18:36 . 2001-08-17 12:51 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
2009-12-29 18:36 . 2001-08-17 12:51 18688 ----a-w- c:\windows\system32\drivers\irsir.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-27 08:59 . 2009-11-27 08:21 -------- d-----w- c:\program files\LanSchool
2010-01-25 17:21 . 2009-08-07 01:22 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-25 17:20 . 2009-12-15 15:16 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software
2010-01-25 08:49 . 2009-12-04 15:36 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Skype
2010-01-25 07:49 . 2009-12-04 15:44 -------- d-----w- c:\documents and settings\Lenovo\Application Data\skypePM
2010-01-24 19:00 . 2009-10-27 01:47 -------- d-----w- c:\program files\Windows Live Toolbar
2010-01-24 19:00 . 2009-10-26 15:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-01-24 19:00 . 2009-08-07 01:34 -------- d-----w- c:\documents and settings\All Users\Application Data\WLInstaller
2010-01-24 09:16 . 2009-08-07 01:29 -------- d-----w- c:\documents and settings\All Users\Application Data\VeriFace
2010-01-22 13:12 . 2009-10-26 15:07 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-22 08:49 . 2009-12-06 18:53 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-20 17:45 . 2009-10-26 15:21 -------- d-----w- c:\program files\Avast4
2010-01-20 08:44 . 2009-10-26 13:01 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-15 13:48 . 2009-10-26 15:03 -------- d-----w- c:\program files\Total Commander
2010-01-12 17:53 . 2009-12-23 18:34 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Student dog
2010-01-12 16:57 . 2009-10-27 01:46 105416 ----a-w- c:\documents and settings\Lenovo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-01-04 16:57 . 2009-12-15 15:11 549 ---ha-w- C:\os357577.bin
2010-01-04 16:46 . 2009-12-13 17:48 -------- d-----w- c:\program files\OpenOffice.org 3
2009-12-29 18:56 . 2009-12-13 18:35 401928 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-12-26 11:09 . 2009-12-26 11:09 -------- d-----w- c:\program files\Common Files\EverAd Shared
2009-12-25 15:47 . 2009-12-25 15:47 129 ----a-w- c:\documents and settings\Lenovo\Local Settings\Application Data\fusioncache.dat
2009-12-25 15:47 . 2009-12-25 15:47 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Windows Live Writer
2009-12-25 11:14 . 2009-12-25 11:14 22528 ----a-w- c:\windows\system32\drivers\nhcDriver.sys
2009-12-21 19:14 . 2008-07-21 20:04 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-21 17:49 . 2009-08-07 01:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-12-15 16:00 . 2009-12-15 16:00 -------- d-----w- c:\documents and settings\LocalService\Application Data\TuneUp Software
2009-12-15 15:17 . 2009-12-15 15:17 -------- d-----w- c:\documents and settings\Lenovo\Application Data\TuneUp Software
2009-12-14 17:32 . 2009-12-14 17:32 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2009-12-13 12:26 . 2009-12-12 11:30 -------- d-----w- c:\documents and settings\Lenovo\Application Data\LangSoft
2009-12-12 11:30 . 2009-12-12 11:30 -------- d-----w- c:\documents and settings\All Users\Application Data\LangSoft
2009-12-08 09:48 . 2009-12-05 18:01 3140 --sha-w- c:\documents and settings\All Users\Application Data\KGyGaAvL.sys
2009-12-08 09:48 . 2009-12-05 18:01 3140 --sha-w- c:\documents and settings\All Users\Application Data\KGyGaAvL.sys
2009-12-08 09:48 . 2009-12-05 18:01 88 --sh--r- c:\documents and settings\All Users\Application Data\87F9D435FF.sys
2009-12-08 09:48 . 2009-12-05 18:01 88 --sh--r- c:\documents and settings\All Users\Application Data\87F9D435FF.sys
2009-12-08 09:45 . 2009-12-08 09:45 -------- d-----w- c:\program files\Common Files\Totem Shared
2009-12-05 10:53 . 2009-12-05 10:53 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Software
2009-12-05 10:50 . 2009-12-05 10:50 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Windows Search
2009-12-05 08:34 . 2009-12-05 08:34 -------- d-----w- c:\documents and settings\Lenovo\Application Data\Media Player Classic
2009-12-04 18:14 . 2009-12-04 18:14 0 ----a-w- c:\windows\nsreg.dat
2009-12-04 15:44 . 2009-12-04 15:44 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-12-04 15:35 . 2009-12-04 15:35 -------- d-----r- c:\program files\Skype
2009-12-04 15:35 . 2009-12-04 15:35 -------- d-----w- c:\program files\Common Files\Skype
2009-12-04 15:35 . 2009-12-04 15:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2009-11-24 23:54 . 2009-10-26 15:21 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2009-10-26 15:21 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:49 . 2009-10-26 15:21 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-10-26 15:21 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-10-26 15:21 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2009-10-26 15:21 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-21 15:51 . 2008-07-21 20:04 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-06 13:36 . 2009-11-06 13:36 148784 ----a-w- c:\windows\system32\lsk_iblk.dll
2009-11-06 13:36 . 2009-11-06 13:36 66352 ----a-w- c:\windows\system32\lskhook64.dll
2009-11-06 13:36 . 2009-11-06 13:36 75056 ----a-w- c:\windows\system32\lskhook.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc]
@="{771C7324-DA80-49D3-8017-753B0AF60951}"
[HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}]
2009-08-07 01:29 241752 ----a-w- c:\windows\system32\IcnOvrly.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-05-23 1146880]
"EnergyUtility"="c:\program files\Lenovo\Energy Management\utility.exe" [2008-07-09 4456448]
"Energy Management"="c:\program files\Lenovo\Energy Management\Energy Management.exe" [2008-08-28 1283984]
"RTHDCPL"="RTHDCPL.EXE" [2009-02-17 17508864]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Teacher"="c:\program files\LanSchool\student.exe" [2009-11-06 1041712]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "d:\program files\superantispyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 13:21 548352 ----a-w- d:\program files\superantispyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PicNotify]
2009-08-07 01:29 1167360 ----a-w- c:\windows\system32\PicNotify.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LanSchoolStudent]
@="Service"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 12:42 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"StudentDOG"=d:\program files\Student DOG\StudentDOG.exe -h

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\LanSchool\\student.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Total Commander\\TOTALCMD.EXE"=
"d:\\Program files\\Warcraft III\\Warcraft III.exe"=
"d:\\Program files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [26.10.2009 16:21 114768]
R1 SASDIFSV;SASDIFSV;d:\program files\superantispyware\sasdifsv.sys [5.1.2010 7:56 9968]
R1 SASKUTIL;SASKUTIL;d:\program files\superantispyware\SASKUTIL.SYS [5.1.2010 7:56 74480]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [26.10.2009 16:21 20560]
R2 DvmMDES;DeviceVM Meta Data Export Service;c:\qstart.sys\config\DVMExportService.exe [20.11.2008 17:15 307200]
R2 LanSchoolStudent;LanSchool Student Service;c:\program files\LanSchool\student.exe [6.11.2009 14:38 1041712]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\drivers\AcpiVpc.sys [7.8.2009 2:22 9472]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RTS5121.sys [7.8.2009 2:27 157696]
S1 eusk2par;EUTRON SmartKey Parallel Driver;c:\windows\system32\drivers\eusk2par.sys [14.12.2009 14:56 24786]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [7.8.2009 2:22 1684736]
S3 GoogleDesktopManager-110309-193829;Správca pre program Google Desktop 5.9.911.3589;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [18.1.2010 8:39 30192]
S3 Rts516xIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys --> c:\windows\system32\DRIVERS\Rts516xIR.sys [?]
S3 SASENUM;SASENUM;d:\program files\superantispyware\SASENUM.SYS [5.1.2010 7:56 7408]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
.
Contents of the 'Scheduled Tasks' folder

2010-01-19 c:\windows\Tasks\firefox.job
- d:\program files\Mozilla Firefox\firefox.exe [2010-01-11 03:19]

2010-01-27 c:\windows\Tasks\User_Feed_Synchronization-{695F01B1-5DF4-4A48-A411-74C692A807C6}.job
- c:\windows\system32\msfeedssync.exe [2007-08-14 03:31]
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Google Sidewiki...
IE: Send to &Bluetooth Device... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\documents and settings\Lenovo\Application Data\Mozilla\Firefox\Profiles\o34pe17o.default\
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 4095
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 1000000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 1000000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 1000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
d:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
d:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
d:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
d:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-CTFMON - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-27 09:59
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1356)
d:\program files\superantispyware\SASWINLO.dll
c:\windows\system32\WININET.dll

- - - - - - - > 'explorer.exe'(3136)
c:\windows\system32\WININET.dll
c:\windows\system32\IcnOvrly.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\MSVCR80.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.SKY
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avast4\aswUpdSv.exe
c:\program files\Avast4\ashServ.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files\Lenovo\Bluetooth Software\bin\btwdins.exe
c:\program files\Avast4\ashMaiSv.exe
c:\program files\Avast4\ashWebSv.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2010-01-27 10:05:47 - machine was rebooted
ComboFix-quarantined-files.txt 2010-01-27 09:05

Pre-Run: 32 353 701 888 bytes free
Post-Run: 32 202 989 568 bytes free

- - End Of File - - 62E670AC96EBFD08A9677932151D95EB

[Roli]

Než budeme pokračovat, tohle :

c:\windows\system32\diarbp64.exe
c:\windows\system32\diarbp32.exe
C:\os357577.bin

postupně otestuj na VIRUSTOTAL

(po načtení stránky klikni na tlačítko Procházet, najdi cestu k výše zmíněnému souboru a klikni na tlačítko Odeslat soubor

trvá to okolo deseti minut pak mi sem zkopíruj link, to je ten řádek nahoře v prohlížeči)

[Blluemartin]

http://www.virustotal.com/analisis/b043 ... 1264662072

http://www.virustotal.com/analisis/fd6e ... 1264661965

http://www.virustotal.com/analisis/8f45 ... 1264664823
PS: pred tymto scano som si to uz raz prekontroloval a vysledky boli tie iste. (Tiezn sa mi zdali cudne)
nic mi nenaslo

[Roli]

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

Čištění registru je třeba několikrát zopakovat !


Pak dej vědět jaký je stav PC.

[Blluemartin]

pocitac je o 2% lepsie (nemysim tym ze pc je na 98% zle) o nieco sa zrychlila hibernacia ale stale mam problemy(neviem ci to suvisi s virusmi):
Mam problem zo zobudenim PC zo spanku a z hibenacie pred niekolkimi tyzdnami to zacalo, niekedy mi pri prebrati z hiber. ostane iba svietit obrazovka , niekedy pc prebudim ze mackam co sa da a je to ok skor to iste aje aj s uspornym reziom...
som bezradny......
skusim dat este log ci sa to vsetko precistilo:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Lenovo at 2010-01-29 13:44:29
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 31 GB (75%) free of 41 GB
Total RAM: 1014 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:45:12, on 29.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\QSTART.SYS\config\DVMExportService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LanSchool\student.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Avast4\ashMaiSv.exe
C:\Program Files\Avast4\ashWebSv.exe
D:\Program files\Mozilla Firefox\firefox.exe
D:\Moje dokumenty\Desktop\RSIT\RSIT.exe
C:\Program Files\trend micro\Lenovo.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Internet Explorer Web Blocker - {1935E690-1AC1-4AA5-BA23-3D9D0CEB3A00} - C:\WINDOWS\system32\Lsk_iBlk.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
O4 - HKLM\..\Run: [EnergyUtility] "C:\Program Files\Lenovo\Energy Management\utility.exe"
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [RTHDCPL] "RTHDCPL.EXE"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Teacher] "C:\Program Files\LanSchool\student.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6559585796
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9162241593
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - D:\Program files\superantispyware\SASWINLO.dll
O20 - Winlogon Notify: PicNotify - C:\WINDOWS\SYSTEM32\PicNotify.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM - C:\QSTART.SYS\config\DVMExportService.exe
O23 - Service: Správca pre program Google Desktop 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LanSchool Student Service (LanSchoolStudent) - LanSchool Technologies, llc - C:\Program Files\LanSchool\student.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Lenovo/LOCALS~1/Temp/msohtmlclip1/01/clip_image002.gif
O24 - Desktop Component 1: (no name) - file:///C:/DOCUME~1/Lenovo/LOCALS~1/Temp/msohtmlclip1/01/clip_image001.gif

--
End of file - 7666 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\firefox.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{695F01B1-5DF4-4A48-A411-74C692A807C6}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1935E690-1AC1-4AA5-BA23-3D9D0CEB3A00}]
lsk_WebBlk Class - C:\WINDOWS\system32\Lsk_iBlk.dll [2009-11-06 148784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-22 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-05-23 1146880]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2008-07-10 4456448]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2008-08-28 1283984]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-02-17 17508864]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"Teacher"=C:\Program Files\LanSchool\student.exe [2009-11-06 1041712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program files\superantispyware\SASWINLO.dll [2009-09-03 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\PicNotify]
C:\WINDOWS\system32\PicNotify.dll [2009-08-07 1167360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=D:\Program files\superantispyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LanSchoolStudent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanSchoolStudent]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoResolveSearch"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\LanSchool\student.exe"="C:\Program Files\LanSchool\student.exe:*:Enabled:LanSchool Student"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Total Commander\TOTALCMD.EXE"="C:\Program Files\Total Commander\TOTALCMD.EXE:*:Disabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\Program files\Warcraft III\Warcraft III.exe"="D:\Program files\Warcraft III\Warcraft III.exe:*:Disabled:Warcraft III"
"D:\Program files\ICQ6.5\ICQ.exe"="D:\Program files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\LanSchool\student.exe"="C:\Program Files\LanSchool\student.exe:*:Enabled:LanSchool Student"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"D:\Program files\ICQ6.5\ICQ.exe"="D:\Program files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"

======List of files/folders created in the last 1 months======

2010-01-29 12:52:45 ----HD---- C:\dvmexp
2010-01-28 18:11:42 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-01-27 13:13:57 ----SHD---- C:\RECYCLER
2010-01-27 10:05:48 ----A---- C:\ComboFix.txt
2010-01-27 09:48:28 ----D---- C:\WINDOWS\ERDNT
2010-01-26 17:26:36 ----D---- C:\Documents and Settings\Lenovo\Application Data\Malwarebytes
2010-01-26 17:26:28 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-01-26 16:58:34 ----D---- C:\Documents and Settings\Lenovo\Application Data\RealWorld
2010-01-25 14:25:21 ----D---- C:\Program Files\trend micro
2010-01-25 14:25:20 ----D---- C:\rsit
2010-01-25 09:52:51 ----D---- C:\Documents and Settings\Lenovo\Application Data\ArcSoft
2010-01-25 09:50:17 ----A---- C:\WINDOWS\PI_SETUP.ini
2010-01-25 09:50:17 ----A---- C:\WINDOWS\PCDLIB32.DLL
2010-01-24 19:43:48 ----D---- C:\Documents and Settings\Lenovo\Application Data\IObit
2010-01-22 09:50:29 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-01-22 09:50:26 ----D---- C:\Program Files\Common Files\Java
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\javaws.exe
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\javaw.exe
2010-01-22 09:50:04 ----A---- C:\WINDOWS\system32\java.exe
2010-01-22 09:49:28 ----D---- C:\Program Files\Java
2010-01-21 19:33:39 ----A---- C:\WINDOWS\system32\pdfmonnt.dll
2010-01-21 19:22:40 ----A---- C:\WINDOWS\system32\ss2uinst.exe
2010-01-20 14:21:06 ----D---- C:\Documents and Settings\Lenovo\Application Data\TweakNow PowerPack 2009
2010-01-19 18:06:26 ----D---- C:\Documents and Settings\Lenovo\Application Data\ICQ
2010-01-18 15:06:10 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-01-18 08:39:10 ----D---- C:\Program Files\Google
2010-01-17 14:54:57 ----D---- C:\Documents and Settings\Lenovo\Application Data\iolo
2010-01-17 14:54:57 ----D---- C:\Documents and Settings\All Users\Application Data\iolo
2010-01-17 11:05:43 ----A---- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
2010-01-17 11:00:10 ----D---- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
2010-01-17 10:57:32 ----D---- C:\Documents and Settings\Lenovo\Application Data\NCH Swift Sound
2010-01-17 10:14:44 ----D---- C:\Program Files\Microsoft Office 2003 Developer Resources
2010-01-16 18:50:58 ----D---- C:\Program Files\MSXML 4.0
2010-01-16 15:58:47 ----D---- C:\WINDOWS\pss
2010-01-16 12:56:31 ----A---- C:\WINDOWS\system32\diarbp64.exe
2010-01-16 12:56:14 ----A---- C:\WINDOWS\system32\diarbp32.exe
2010-01-16 11:07:27 ----SHD---- C:\WINDOWS\ftpcache
2010-01-16 10:50:05 ----D---- C:\Program Files\MSSOAP
2010-01-16 10:49:22 ----D---- C:\Program Files\Webroot
2010-01-15 15:06:27 ----A---- C:\WINDOWS\War3Unin.exe
2010-01-15 14:49:15 ----D---- C:\Program Files\Adobe
2010-01-15 14:49:04 ----D---- C:\Config.Msi
2010-01-14 10:36:33 ----D---- C:\Program Files\Adobe(2)
2010-01-13 16:30:40 ----D---- C:\Documents and Settings\Lenovo\Application Data\SoftLogica
2010-01-13 08:22:09 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-12 17:51:19 ----N---- C:\WINDOWS\Setup1.exe
2010-01-12 17:51:17 ----A---- C:\WINDOWS\ST6UNST.EXE
2010-01-12 16:30:04 ----A---- C:\WINDOWS\iun6002.exe
2010-01-11 17:54:18 ----D---- C:\Documents and Settings\Lenovo\Application Data\Mozilla
2010-01-11 15:33:45 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-11 14:38:45 ----A---- C:\WINDOWS\didakta.ini
2010-01-10 10:35:04 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2010-01-10 10:34:54 ----D---- C:\Documents and Settings\Lenovo\Application Data\SUPERAntiSpyware.com
2010-01-10 10:16:51 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2010-01-10 09:35:16 ----D---- C:\Documents and Settings\Lenovo\Application Data\Sun
2010-01-09 17:38:08 ----D---- C:\TP
2010-01-08 14:08:48 ----A---- C:\WINDOWS\system32\msvcr70.dll
2010-01-08 14:08:48 ----A---- C:\WINDOWS\system32\msvcp70.dll
2010-01-08 14:08:47 ----A---- C:\WINDOWS\system32\mfc70.dll
2010-01-07 13:55:01 ----A---- C:\WINDOWS\ARCHPR.INI
2010-01-05 06:49:32 ----D---- C:\WINDOWS\system32\Adobe
2010-01-03 11:01:36 ----A---- C:\WINDOWS\system32\uxtheme.dll
2010-01-02 19:08:15 ----A---- C:\WINDOWS\system32\uharc.exe
2010-01-02 17:56:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-02 17:17:25 ----A---- C:\WINDOWS\Eudcedit.ini
2010-01-02 17:01:48 ----D---- C:\WINDOWS\Downloaded Installations
2009-12-31 12:29:17 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-12-30 19:52:45 ----A---- C:\WINDOWS\system32\VB5DB.DLL
2009-12-30 19:22:15 ----D---- C:\Duplicate File Hunter - Removed files

======List of files/folders modified in the last 1 months======

2010-01-29 13:00:36 ----D---- C:\WINDOWS\Temp
2010-01-29 12:54:11 ----D---- C:\Program Files\LanSchool
2010-01-29 12:54:10 ----D---- C:\LanSchool Files
2010-01-29 12:52:45 ----D---- C:\temp
2010-01-29 12:52:20 ----AD---- C:\WINDOWS
2010-01-29 12:18:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-29 12:18:33 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-29 12:18:24 ----D---- C:\WINDOWS\Prefetch
2010-01-29 11:18:49 ----HD---- C:\WINDOWS\inf
2010-01-28 19:49:13 ----SHD---- C:\WINDOWS\Installer
2010-01-28 19:49:13 ----D---- C:\Program Files
2010-01-28 19:49:07 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-01-28 19:49:06 ----D---- C:\WINDOWS\system32\drivers
2010-01-28 19:49:01 ----SD---- C:\WINDOWS\Tasks
2010-01-28 18:11:42 ----AD---- C:\WINDOWS\system32
2010-01-27 15:41:43 ----D---- C:\WINDOWS\system32\config
2010-01-27 10:00:07 ----A---- C:\WINDOWS\system.ini
2010-01-27 09:54:20 ----D---- C:\WINDOWS\AppPatch
2010-01-27 09:54:14 ----D---- C:\Program Files\Common Files
2010-01-26 17:21:03 ----SD---- C:\Documents and Settings\Lenovo\Application Data\Microsoft
2010-01-25 18:21:14 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-25 18:20:07 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2010-01-25 16:13:35 ----ASHDC---- C:\WINDOWS\system32\dllcache
2010-01-25 09:49:42 ----D---- C:\Documents and Settings\Lenovo\Application Data\Skype
2010-01-25 08:49:48 ----D---- C:\Documents and Settings\Lenovo\Application Data\skypePM
2010-01-24 20:00:22 ----D---- C:\WINDOWS\system32\MsDtc
2010-01-24 20:00:22 ----D---- C:\WINDOWS\system32\(null)
2010-01-24 20:00:22 ----D---- C:\WINDOWS\repair
2010-01-24 20:00:22 ----D---- C:\Program Files\Windows Live Toolbar
2010-01-24 20:00:22 ----D---- C:\Program Files\K-Lite Codec Pack
2010-01-24 20:00:22 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2010-01-24 20:00:22 ----D---- C:\Documents and Settings
2010-01-24 10:16:24 ----D---- C:\Documents and Settings\All Users\Application Data\VeriFace
2010-01-23 11:13:09 ----D---- C:\Documents and Settings\Lenovo\Application Data\Adobe
2010-01-22 19:53:45 ----D---- C:\WINDOWS\system32\CatRoot
2010-01-22 19:11:02 ----D---- C:\Program Files\Internet Explorer
2010-01-22 16:59:05 ----D---- C:\WINDOWS\system32\wbem
2010-01-22 16:59:04 ----D---- C:\WINDOWS\Registration
2010-01-22 16:36:10 ----A---- C:\WINDOWS\win.ini
2010-01-22 14:12:09 ----D---- C:\Program Files\Common Files\Adobe
2010-01-22 13:58:24 ----D---- C:\WINDOWS\ie8updates
2010-01-22 13:58:08 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-22 09:49:34 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-01-20 18:45:00 ----D---- C:\Program Files\Avast4
2010-01-20 09:44:23 ----D---- C:\Program Files\Microsoft Silverlight
2010-01-19 18:53:32 ----A---- C:\WINDOWS\wincmd.ini
2010-01-19 13:00:37 ----D---- C:\WINDOWS\Network Diagnostic
2010-01-17 13:21:57 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-01-16 18:51:12 ----D---- C:\WINDOWS\WinSxS
2010-01-15 14:49:16 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-01-15 14:48:58 ----D---- C:\Program Files\Total Commander
2010-01-15 14:48:57 ----D---- C:\Program Files\WinRAR
2010-01-15 14:48:18 ----D---- C:\WINDOWS\system32\Restore
2010-01-13 16:09:56 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-01-13 16:08:29 ----D---- C:\WINDOWS\Debug
2010-01-13 14:33:05 ----D---- C:\WINDOWS\Help
2010-01-12 18:53:37 ----D---- C:\Documents and Settings\Lenovo\Application Data\Student dog
2010-01-12 17:42:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-12 16:30:04 ----RSD---- C:\WINDOWS\Fonts
2010-01-12 09:00:06 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-01-06 10:14:56 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-01-05 20:04:59 ----D---- C:\WINDOWS\addins
2010-01-05 06:52:20 ----D---- C:\WINDOWS\system32\Macromed
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-04 17:46:49 ----RSD---- C:\WINDOWS\assembly
2010-01-04 17:46:46 ----D---- C:\Program Files\OpenOffice.org 3
2010-01-03 10:54:55 ----D---- C:\WINDOWS\Minidump
2010-01-01 13:14:41 ----D---- C:\WINDOWS\system32\LogFiles
2009-12-30 12:06:52 ----D---- C:\WINDOWS\SxsCaPendDel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SASDIFSV;SASDIFSV; \??\D:\Program files\superantispyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\D:\Program files\superantispyware\SASKUTIL.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-14 88192]
R2 PMEM;PMEM; \??\C:\WINDOWS\system32\drivers\PMEMNT.SYS []
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\WINDOWS\system32\DRIVERS\AcpiVpc.sys [2008-01-11 9472]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-06-20 176640]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2008-09-11 1386624]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-05-30 534568]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-01-07 991784]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-03-10 57384]
R3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2008-02-04 37032]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-10-30 47272]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-02-18 5028352]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\WINDOWS\system32\DRIVERS\psadd.sys [2007-02-19 21376]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys [2008-07-23 157696]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-05-23 225280]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\WINDOWS\system32\Drivers\eusk2par.sys []
S1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nhcDriverDevice;Notebook Hardware Control Driver; \??\C:\WINDOWS\system32\drivers\nhcDriver.sys []
S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\pcdrndisuio.sys []
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 SASENUM;SASENUM; \??\D:\Program files\superantispyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe [2009-01-17 346720]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\QSTART.SYS\config\DVMExportService.exe [2008-11-20 307200]
R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-01-22 153376]
R2 LanSchoolStudent;LanSchool Student Service; C:\Program Files\LanSchool\student.exe [2009-11-06 1041712]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 GoogleDesktopManager-110309-193829;Správca pre program Google Desktop 5.9.911.3589; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-01-18 30192]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]

-----------------EOF-----------------

[Roli]

V HJT fixni :

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O20 - Winlogon Notify: PicNotify - C:\WINDOWS\SYSTEM32\PicNotify.dll

HJT najdeš zde :

C:\Program Files\trend micro\Lenovo

Fix znamená že spustíš HJT

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Zrychlení startu PC a programů pomůžeš také defragmentací disku buď integrovaným windows nástrojem,

nebo jinou aplikací, například Defragglerem


Přes Start >> Ovládací panely >> Možnosti napájení

karta Schémata napájení, u Vypnout pevné disky dej na Nikdy

karta Režim spánku, tam udělej zatržítko u Zapnout podporu režimu spánku.


Pak zase písni jaký je stav PC.

[Blluemartin]

S tym nastavenimm ze "vypnut pevne disky sa mi to chvili vrati naspäť
A preco mi a hibernacia tak blbne?
Inak a ma pc v poriadku dakujem

[Roli]

Když už změníš to nastavení, dáš Použít a OK ?

Není možné aby se nastavení změnilo samo, jedině se podívat do té utility od Lenova - Energy Management

co a jak je v ní nastaveno ZDE je popis funkcí.

[Blluemartin]

Nejako to tam uz nastavim maj sa!

[Roli]

I ty se měj a kdyby něco písni.