sam od seba mi restartuje noutbook poradte mi neco

[mirian]

info.txt logfile of random's system information tool 1.06 2010-01-30 20:49:03

======Uninstall list======

ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003}
AntikVirtualSTB 1.0.9-->"C:\Program Files\AntikVirtualSTB\unins000.exe"
AppCore-->MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
ArcSoft MediaConverter 2.5-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8D8B167A-ED0F-43F1-AC10-3F4379F7CBBB}\Setup.exe" -l0x19
AV-->MsiExec.exe /I{F4DB525F-A986-4249-B98B-42A8066251CA}
avast! Pro Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
ccCommon-->MsiExec.exe /I{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_HDAUDIO\UIU32a.exe -U -IQv30CFza.inf
ESU for Microsoft Vista-->MsiExec.exe /X{32F63023-1440-4946-9CD8-B365090C8410}
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7\UIU32m.EXE -U -IwqcVenz.inf
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Active Support Library 32 bit components-->MsiExec.exe /I{FAB0C302-CB18-4A7A-BA03-C3DC23101A68}
HP Active Support Library-->C:\Program Files\InstallShield Installation Information\{290B83AA-093A-45BF-A917-D1C4A1E8D917}\setup.exe -runfromtemp -l0x0409
HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly
HP Doc Viewer-->MsiExec.exe /I{082702D5-5DD8-4600-BCE5-48B15174687F}
HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40F7AED3-0C7D-4582-99F6-484A515C73F2}\setup.exe" -l0x9 -removeonly
HP Help and Support-->MsiExec.exe /I{9061CEF2-51F5-42C9-8A70-9ED351C6597A}
HP Photosmart Essential 2.0-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Quick Launch Buttons 6.20 B1-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x0005 uninst
HP QuickPlay 3.2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\setup.exe" -uninstall
HP Update-->MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}
HP User Guides 0057-->MsiExec.exe /I{DDFD9BA2-8E26-4E49-92AE-882424DAB1BC}
HP Wireless Assistant-->MsiExec.exe /I{D32067CD-7409-4792-BFA0-1469BCD8F0C8}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
McAfee Security Scan-->"C:\Program Files\McAfee Security Scan\uninstall.exe"
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Works-->MsiExec.exe /I{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}
MSCU for Microsoft Vista-->MsiExec.exe /I{F2620FDC-8D31-4BA3-B003-89B8FFE9EDCF}
MSRedist-->MsiExec.exe /I{B7C61755-DB48-4003-948F-3D34DB8EAF69}
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{C50EF365-2898-489A-B6C7-30DAA466E9A2}
Nokia Home Media Server-->MsiExec.exe /X{0EEB3C40-2A8C-4045-B3F9-13C4A5C490C0}
Nokia Map Loader-->MsiExec.exe /I{03528A01-7E5E-4C5F-94DF-1D8012E969EF}
Nokia Ovi Application Installer 6.85.3011-->msiexec /qn /x {42B74521-4706-412A-9A27-AED12B83E886}
Nokia Ovi Application Installer-->MsiExec.exe /I{42B74521-4706-412A-9A27-AED12B83E886}
Nokia Ovi Content Copier 6.85.3011-->msiexec /qn /x {6442DEDF-AC2F-4CBA-85DE-42E459C5006C}
Nokia Ovi Content Copier-->MsiExec.exe /X{6442DEDF-AC2F-4CBA-85DE-42E459C5006C}
Nokia Ovi One Touch Access 6.85.3019-->msiexec /qn /x {C4B045DB-C2C0-4A05-8DA5-754B4733EE31}
Nokia Ovi One Touch Access-->MsiExec.exe /I{C4B045DB-C2C0-4A05-8DA5-754B4733EE31}
Nokia Ovi Player-->MsiExec.exe /I{A528306A-C5EC-481C-A619-6106334E6800}
Nokia Ovi Suite Software Updater-->MsiExec.exe /X{564B16F4-6B5B-47B0-9AB6-FF2E943947F7}
Nokia Ovi Suite-->C:\ProgramData\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Nokia_Ovi_Suite_11_update.exe
Nokia Ovi Suite-->MsiExec.exe /X{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}
Nokia Ovi System Utilities 6.85.3018-->msiexec /qn /x {F9EA1C47-64A6-45E4-9A80-8CC1575B971D}
Nokia Ovi System Utilities-->MsiExec.exe /X{F9EA1C47-64A6-45E4-9A80-8CC1575B971D}
Nokia Photos-->MsiExec.exe /I{0EABFEF6-6D10-4C12-8667-3029C481D355}
Nokia Software Updater-->MsiExec.exe /X{9F59C3AE-81B0-4EF6-9762-D674BB079705}
Nokia_Multimedia_Common_Components_2_5-->MsiExec.exe /I{3762698E-E9DF-4DD8-99F1-8192D0F8EE06}
Norton AntiVirus-->MsiExec.exe /X{830D8CBD-C668-49e2-A969-C2C2106332E0}
Norton Confidential Browser Component-->MsiExec.exe /I{4843B611-8FCB-4428-8C23-31D0A5EAE164}
Norton Confidential Web Protection Component-->MsiExec.exe /I{D353CC51-430D-4C6F-9B7E-52003DA1E05A}
Norton Internet Security (Symantec Corporation)-->"C:\Program Files\Common Files\Symantec Shared\SymSetup\{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}_10_2_0_30\{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}.exe" /X
Norton Internet Security-->MsiExec.exe /I{3672B097-EA69-4bfe-B92F-29AE6D9D2B34}
Norton Internet Security-->MsiExec.exe /I{48185814-A224-447A-81DA-71BD20580E1B}
Norton Internet Security-->MsiExec.exe /I{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}
Norton Internet Security-->MsiExec.exe /I{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}
Norton Internet Security-->MsiExec.exe /I{E5EE9939-259F-4DE2-8023-5C49E16A4F43}
Norton Protection Center-->MsiExec.exe /I{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}
NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
Ovi Desktop Sync Engine-->MsiExec.exe /X{F1C3541D-5B93-4131-B440-692FBA3DD250}
OviMPlatform-->MsiExec.exe /I{8D100E0C-1A5A-43AD-93EF-76F94AE61C30}
PC Connectivity Solution-->MsiExec.exe /I{4CE6B3C4-D8E2-4A5D-BEF5-5B69AF843B0C}
Roxio Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}
Roxio Creator Basic v9-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}
Roxio Creator EasyArchive-->MsiExec.exe /I{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}
Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio MyDVD Basic v9-->MsiExec.exe /I{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}
SA32xx Device Manager-->C:\Program Files\InstallShield Installation Information\{7CDC26F7-D6BF-442A-B599-0075A48310F7}\setup.exe -runfromtemp -l0x0009 -removeonly
Skype web features-->MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SmartAudio-->C:\Program Files\Conexant\SmartAudio\SETUP.EXE -U -ISmartAudio /F1"C:\Program Files\InstallShield Installation Information\{E621DCAF-82F7-4F6D-B563-B6A4004B2397}\setup.iss" /S
Sony Ericsson PC Suite 1.10.36-->MsiExec.exe /I{EE28E1DC-A319-4DFE-B8ED-BEE329D377A4}
SPBBC 32bit-->MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VDownloader 1.12-->"C:\Program Files\VDOWNLOADER\unins000.exe"
VideoLAN VLC media player 0.8.6i-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Messenger-->MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F}

======Security center information======

AV: avast! Antivirus
AV: Norton Internet Security (outdated)
FW: Norton Internet Security
AS: Windows Defender
AS: Norton Internet Security (disabled) (outdated)
AS: avast! Antivirus

======System event log======

Computer Name: hp-PC
Event Code: 4201
Message: Systém zjistil, že síťový adaptér Připojení k místní síti byl připojen k síti a inicializoval normální činnost.
Record Number: 84571
Source Name: Tcpip
Time Written: 20100130193741.373600-000
Event Type: Informace
User:

Computer Name: hp-PC
Event Code: 104
Message: Služba provádí publikování v síti.
Record Number: 84572
Source Name: Microsoft-Windows-ResourcePublication
Time Written: 20100130193741.935200-000
Event Type: Informace
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: hp-PC
Event Code: 7036
Message: Stav služby Načítání obrázků (WIA) byl změněn na: Spuštěno
Record Number: 84573
Source Name: Service Control Manager
Time Written: 20100130193744.000000-000
Event Type: Informace
User:

Computer Name: hp-PC
Event Code: 1
Message: Systém byl obnoven z režimu spánku.

Doba režimu spánku: 2010-01-30T19:14:14.277Z
Čas probuzení: 2010-01-30T19:37:46.521Z

Prostředek probuzení: Není známo
Record Number: 84574
Source Name: Microsoft-Windows-Power-Troubleshooter
Time Written: 20100130193750.125200-000
Event Type: Informace
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: hp-PC
Event Code: 1103
Message: Počítači byla úspěšně přidělena adresa ze sítě, takže se nyní může připojovat k jiným počítačům.
Record Number: 84575
Source Name: Microsoft-Windows-Dhcp-Client
Time Written: 20100130193944.000000-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: hp-PC
Event Code: 101
Message: Úroveň informací: success

Automatická aktualizace LiveUpdate byla ukončena.
Record Number: 19326
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20100130191007.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: hp-PC
Event Code: 101
Message: Úroveň informací: success

Další spuštění proběhne dle plánu přibližně 9:02 PM.
Record Number: 19327
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20100130191008.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: hp-PC
Event Code: 1001
Message: Chybný blok 1667600343, typ 1
Název události: APPCRASH
Odpověď: Žádné
ID souboru CAB: 0

Podpis problému:
P1: iexplore.exe
P2: 8.0.6001.18882
P3: 4b3ed243
P4: mshtml.dll
P5: 8.0.6001.18882
P6: 4b3ee91c
P7: c0000005
P8: 00109189
P9:
P10:

Připojené soubory:
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportQueue\Report129727cb\WERB7EA.tmp.version.txt
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportQueue\Report129727cb\WERB7FA.tmp.appcompat.txt
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportQueue\Report129727cb\WERBD48.tmp.hdmp
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportQueue\Report129727cb\WER2252.tmp.mdmp

Tyto soubory mohou být k dispozici zde:
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportArchive\Report11c7404e
Record Number: 19328
Source Name: Windows Error Reporting
Time Written: 20100130191013.000000-000
Event Type: Informace
User:

Computer Name: hp-PC
Event Code: 1001
Message: Chybný blok 940597011, typ 5
Název události: WERCWEvent
Odpověď: Žádné
ID souboru CAB: 0

Podpis problému:
P1: iexplore.exe
P2: 8.0.6001.18882
P3: 4b3ed243
P4: 15
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:

Tyto soubory mohou být k dispozici zde:
C:\Users\hp\AppData\Local\Microsoft\Windows\WER\ReportArchive\Report151f44c0
Record Number: 19329
Source Name: Windows Error Reporting
Time Written: 20100130191014.000000-000
Event Type: Informace
User:

Computer Name: hp-PC
Event Code: 5
Message: Unsupported service control request (see data below)
Record Number: 19330
Source Name: LightScribeService
Time Written: 20100130194901.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: hp-PC
Event Code: 4634
Message: Účet byl odhlášen.

Předmět:
ID zabezpečení: S-1-5-21-1985438733-2559959647-296683050-1000
Název účtu: hp
Doména účtu: hp-PC
ID přihlášení: 0x4147b5

Typ přihlášení: 7

Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 12892
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100130193754.680400-000
Event Type: Úspěch auditu
User:

Computer Name: hp-PC
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: HP-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Typ přihlášení: 7

Nové přihlášení:
ID zabezpečení: S-1-5-21-1985438733-2559959647-296683050-1000
Název účtu: hp
Doména účtu: hp-PC
ID přihlášení: 0x41478f
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x2f0
Název procesu: C:\WINDOWS\System32\winlogon.exe

Informace o síti:
Název pracovní stanice: HP-PC
Adresa zdrojové sítě 127.0.0.1
Zdrojový port: 0

Podrobné informace o ověření:
Proces přihlášení: User32
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 12893
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100130193754.680400-000
Event Type: Úspěch auditu
User:

Computer Name: hp-PC
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: HP-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Typ přihlášení: 7

Nové přihlášení:
ID zabezpečení: S-1-5-21-1985438733-2559959647-296683050-1000
Název účtu: hp
Doména účtu: hp-PC
ID přihlášení: 0x4147b5
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x2f0
Název procesu: C:\WINDOWS\System32\winlogon.exe

Informace o síti:
Název pracovní stanice: HP-PC
Adresa zdrojové sítě 127.0.0.1
Zdrojový port: 0

Podrobné informace o ověření:
Proces přihlášení: User32
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 12894
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100130193754.680400-000
Event Type: Úspěch auditu
User:

Computer Name: hp-PC
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-21-1985438733-2559959647-296683050-1000
Název účtu: hp
Doména účtu: hp-PC
ID přihlášení: 0x41478f

Oprávnění: SeSecurityPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeTakeOwnershipPrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeLoadDriverPrivilege
SeImpersonatePrivilege
Record Number: 12895
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100130193754.680400-000
Event Type: Úspěch auditu
User:

Computer Name: hp-PC
Event Code: 4634
Message: Účet byl odhlášen.

Předmět:
ID zabezpečení: S-1-5-21-1985438733-2559959647-296683050-1000
Název účtu: hp
Doména účtu: hp-PC
ID přihlášení: 0x41478f

Typ přihlášení: 7

Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 12896
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100130193754.680400-000
Event Type: Úspěch auditu
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\PC Connectivity Solution\;C:\Program Files\Common Files\ArcSoft\Bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\Common Files\Teleca Shared
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 104 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=6801
"NUMBER_OF_PROCESSORS"=2
"PLATFORM"=MCD
"PCBRAND"=Pavilion
"OnlineServices"=Online Services
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
"DEFAULT_CA_NR"=CA6

-----------------EOF-----------

[motji]

Dobrý večer

Poprosím o druhý log ze Rsitu s názvem log.txt.
Jsou s počítačem nějaké problémy?

[mirian]

sam od seba sa mi restartuje pocitac.a je velmi spomaleni prosim poradte neco dakujem vopred.


Logfile of random's system information tool 1.06 (written by random/random)
Run by hp at 2010-01-30 20:46:13
Microsoft® Windows Vista™ Home Premium
System drive C: has 86 GB (59%) free of 146 GB
Total RAM: 1982 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:48:57, on 30.1.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\hp\Downloads\vir.exe
C:\Program Files\trend micro\hp.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.iptv.ge/en/rustavi-2-live-and-courier
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: UrlHelper Class - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - C:\Program Files\iMesh Applications\MediaBar\DataMngr\IEBHO.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /Minimized
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan.lnk = ?
O4 - Global Startup: Philips SA32XX Device Manager.lnk = ?
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O13 - Gopher Prefix:
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Plánovač automatické aktualizace LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 11859 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Norton Internet Security - Prověřit tento počítač - hp.job
C:\Windows\tasks\User_Feed_Synchronization-{2D6E96FC-951F-4BC4-9CB2-CB028EC9C550}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}]
c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll [2007-01-12 96936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]
UrlHelper Class - C:\Program Files\iMesh Applications\MediaBar\DataMngr\IEBHO.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{90222687-F593-4738-B738-FBEE9C7B26DF} - Show Norton Toolbar - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll [2007-01-12 607888]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2007-08-20 1006264]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-01-13 827392]
"ccApp"=c:\Program Files\Common Files\Symantec Shared\ccApp.exe [2007-01-10 115816]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-04-23 176128]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-02-13 159744]
"HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-03-12 50696]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-03-01 472776]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-25 149280]
"Symantec PIF AlertEng"=C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-12-04 13556256]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-12-04 92704]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-10-10 203264]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NokiaMusic FastStart"=C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe [2009-11-06 2090272]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-19 2743104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Windows\SMINST\launcher.exe [2006-11-07 44128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-11-07 1232896]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-04-19 484904]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]
""= []
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-08-09 155648]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2009-12-10 401728]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan.lnk - C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
Philips SA32XX Device Manager.lnk - C:\Philips\SA32xx Device Manager\SA32xx_DeviceManager.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-01-30 20:46:13 ----D---- C:\Program Files\trend micro
2010-01-30 20:46:12 ----D---- C:\rsit
2010-01-29 18:07:31 ----D---- C:\Program Files\AntikVirtualSTB
2010-01-28 08:57:18 ----A---- C:\Windows\system32\aswBoot.exe
2010-01-28 08:56:44 ----D---- C:\ProgramData\Alwil Software
2010-01-28 08:56:44 ----D---- C:\Program Files\Alwil Software
2010-01-23 15:13:58 ----D---- C:\Windows\Minidump
2010-01-22 16:43:00 ----D---- C:\ProgramData\011
2010-01-22 11:04:03 ----A---- C:\Windows\system32\mshtml.dll
2010-01-22 11:04:01 ----A---- C:\Windows\system32\ieframe.dll
2010-01-22 11:03:59 ----A---- C:\Windows\system32\iertutil.dll
2010-01-22 11:03:58 ----A---- C:\Windows\system32\wininet.dll
2010-01-22 11:03:58 ----A---- C:\Windows\system32\urlmon.dll
2010-01-22 11:03:57 ----A---- C:\Windows\system32\occache.dll
2010-01-22 11:03:57 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-22 11:03:57 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-22 11:03:56 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-22 11:03:56 ----A---- C:\Windows\system32\ieui.dll
2010-01-22 11:03:56 ----A---- C:\Windows\system32\iepeers.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-22 11:03:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\iesetup.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\iernonce.dll
2010-01-22 11:03:55 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-19 19:43:22 ----D---- C:\Program Files\iMesh Applications
2010-01-18 15:01:50 ----D---- C:\Users\hp\AppData\Roaming\FileZilla
2010-01-13 10:33:57 ----A---- C:\Windows\system32\t2embed.dll
2010-01-13 10:33:56 ----A---- C:\Windows\system32\lpk.dll
2010-01-13 10:33:56 ----A---- C:\Windows\system32\fontsub.dll
2010-01-13 10:33:56 ----A---- C:\Windows\system32\dciman32.dll
2010-01-13 10:33:56 ----A---- C:\Windows\system32\atmlib.dll
2010-01-13 10:33:56 ----A---- C:\Windows\system32\atmfd.dll
2010-01-10 10:03:37 ----D---- C:\Users\hp\AppData\Roaming\vlc
2010-01-10 10:03:03 ----D---- C:\Program Files\VideoLAN
2010-01-08 11:56:26 ----D---- C:\Program Files\DivX
2010-01-06 19:01:46 ----D---- C:\Program Files\EA SPORTS
2009-12-31 12:37:53 ----AD---- C:\ProgramData\TEMP

======List of files/folders modified in the last 1 months======

2010-01-30 20:46:29 ----D---- C:\Windows\Temp
2010-01-30 20:46:13 ----RD---- C:\Program Files
2010-01-30 20:39:00 ----D---- C:\Users\hp\AppData\Roaming\Skype
2010-01-30 16:38:23 ----D---- C:\Windows\SMINST
2010-01-30 16:05:57 ----D---- C:\Users\hp\AppData\Roaming\skypePM
2010-01-30 13:51:11 ----D---- C:\WINDOWS
2010-01-30 12:45:52 ----D---- C:\Windows\system32\catroot
2010-01-30 12:45:48 ----D---- C:\Windows\system32\catroot2
2010-01-30 12:45:42 ----D---- C:\Windows\winsxs
2010-01-29 16:36:05 ----D---- C:\Windows\Prefetch
2010-01-29 13:05:46 ----SHD---- C:\System Volume Information
2010-01-28 22:08:07 ----D---- C:\Windows\System32
2010-01-28 22:08:07 ----D---- C:\Windows\inf
2010-01-28 22:08:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-01-28 15:36:00 ----D---- C:\Program Files\Google
2010-01-28 15:33:24 ----D---- C:\ProgramData\Google
2010-01-28 15:33:16 ----SHD---- C:\Windows\Installer
2010-01-28 15:32:52 ----D---- C:\Windows\Tasks
2010-01-28 15:22:17 ----D---- C:\Program Files\Common Files
2010-01-28 08:58:37 ----D---- C:\Windows\system32\drivers
2010-01-28 08:56:44 ----HD---- C:\ProgramData
2010-01-28 08:50:45 ----D---- C:\Program Files\Internet Explorer
2010-01-24 18:59:15 ----D---- C:\Windows\system32\WDI
2010-01-23 08:24:33 ----D---- C:\Windows\system32\migration
2010-01-18 21:10:35 ----SD---- C:\Users\hp\AppData\Roaming\Microsoft
2010-01-18 21:10:33 ----SD---- C:\ProgramData\Microsoft
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-01-13 15:14:20 ----D---- C:\Program Files\Windows Mail
2010-01-08 12:08:47 ----D---- C:\Windows\system32\Tasks
2010-01-08 11:58:20 ----SD---- C:\Windows\Downloaded Program Files
2010-01-05 01:17:46 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-01-19 23248]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2010-01-19 269904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-01-19 162640]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-01-19 46544]
R1 eabfiltr;eabfiltr; C:\Windows\system32\DRIVERS\eabfiltr.sys [2006-11-30 8192]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-10-19 371248]
R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20091230.002\IDSvix86.sys [2009-11-20 286768]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2007-04-14 418104]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-11-30 43696]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2009-08-03 188080]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-01-19 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-01-19 51792]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-01-23 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-11-28 8192]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2009-11-07 14208]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-10-19 102448]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-04-12 160768]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-12-07 985600]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-12-07 207360]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100104.004\NAVENG.SYS [2009-10-19 84912]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100104.004\NAVEX15.SYS [2009-10-19 1323568]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-03-07 1059112]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-12-04 7606688]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-02-17 12032]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-11-07 82432]
R3 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-11-30 279088]
R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2009-08-03 12720]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-11-07 124464]
R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2009-08-03 145968]
R3 SYMIDS;SYMIDS; C:\Windows\System32\Drivers\SYMIDS.SYS [2009-08-03 39856]
R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2009-08-03 38448]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2009-08-03 26416]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-01-13 181432]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-12-07 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2009-11-07 11264]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2009-10-06 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2009-10-06 8320]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-11-30 317616]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbser;Nokia USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2006-11-02 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]
S3 w550bus;Sony Ericsson W550 driver (WDM); C:\Windows\system32\DRIVERS\w550bus.sys [2005-08-01 60928]
S3 w550mdfl;Sony Ericsson W550 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\w550mdfl.sys [2005-08-01 8336]
S3 w550mdm;Sony Ericsson W550 USB WMC Modem Drivers; C:\Windows\system32\DRIVERS\w550mdm.sys [2005-08-01 96672]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-03-26 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-19 40384]
R2 ccEvtMgr;Symantec Event Manager; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
R2 ccSetMgr;Symantec Settings Manager; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [2007-04-23 262243]
R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [2007-04-23 106593]
R2 CLTNetCnService;Symantec Lic NetConnect service; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-03-14 62984]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-04-19 75304]
R2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-12-04 203296]
R2 Plánovač automatické aktualizace LiveUpdate;Plánovač automatické aktualizace LiveUpdate; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-09-26 554352]
R2 SymAppCore;Symantec AppCore Service; c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe [2007-01-05 47712]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-11-28 386560]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-19 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-19 40384]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
R3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2009-11-07 1251720]
S2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
S2 TwonkyMedia;TwonkyMedia; C:\Program Files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe [2009-01-29 102400]
S3 comHost;COM Host; c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [2007-01-13 49248]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ISPwdSvc;Symantec IS Password Validation; c:\Program Files\Norton Internet Security\isPwdSvc.exe [2007-01-14 80504]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-26 2999664]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-02-12 880640]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-02-17 74656]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]

-----------------EOF-----------------

[motji]

tohle je přejmenovaný Rsit?
C:\Users\hp\Downloads\vir.exe

Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe


- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, skopírujte celý jeho obsah sem

[mirian]

ComboFix 10-01-30.05 - hp 31.01.2010 13:36:31.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1250.420.1029.18.1982.909 [GMT 1:00]
Spuštěný z: c:\users\hp\Downloads\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Norton Internet Security *On-access scanning disabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
SP: avast! Antivirus *disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Norton Internet Security *disabled* (Outdated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2160447165-2765696887-1696652389-500

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-31 )))))))))))))))))))))))))))))))
.

2010-01-31 12:47 . 2010-01-31 12:48 -------- d-----w- c:\users\hp\AppData\Local\temp
2010-01-31 12:47 . 2010-01-31 12:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-01-30 19:46 . 2010-01-30 19:48 -------- d-----w- c:\program files\trend micro
2010-01-30 19:46 . 2010-01-30 19:49 -------- d-----w- C:\rsit
2010-01-30 11:46 . 2009-06-15 15:23 494592 ----a-w- c:\windows\system32\kerberos.dll
2010-01-30 11:46 . 2009-06-15 15:28 272384 ----a-w- c:\windows\system32\schannel.dll
2010-01-29 17:08 . 2010-01-29 17:08 -------- d-----w- c:\users\hp\AppData\Local\images
2010-01-29 17:07 . 2010-01-29 17:07 3244 ----a-w- c:\users\hp\AppData\Local\config.dat
2010-01-29 17:07 . 2010-01-29 17:07 -------- d-----w- c:\program files\AntikVirtualSTB
2010-01-28 21:03 . 2010-01-28 21:03 680 ----a-w- c:\users\hp\AppData\Local\d3d9caps.dat
2010-01-28 07:58 . 2010-01-19 11:42 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-01-28 07:58 . 2010-01-19 13:13 162640 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-01-28 07:58 . 2010-01-19 11:48 269904 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2010-01-28 07:58 . 2010-01-19 11:43 23248 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-01-28 07:58 . 2010-01-19 11:46 46544 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-01-28 07:58 . 2010-01-19 11:43 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-01-28 07:57 . 2010-01-19 11:57 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-01-28 07:57 . 2010-01-19 11:57 152672 ----a-w- c:\windows\system32\aswBoot.exe
2010-01-28 07:56 . 2010-01-28 07:56 -------- d-----w- c:\programdata\Alwil Software
2010-01-28 07:56 . 2010-01-28 07:56 -------- d-----w- c:\program files\Alwil Software
2010-01-22 15:43 . 2010-01-22 15:43 -------- d-----w- c:\programdata\011
2010-01-19 18:43 . 2010-01-28 14:37 -------- d-----w- c:\program files\iMesh Applications
2010-01-18 14:01 . 2010-01-18 14:12 -------- d-----w- c:\users\hp\AppData\Roaming\FileZilla
2010-01-13 09:33 . 2009-10-19 14:42 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-01-13 09:33 . 2009-10-19 14:39 24064 ----a-w- c:\windows\system32\lpk.dll
2010-01-13 09:33 . 2009-10-19 14:37 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-01-13 09:33 . 2009-10-19 14:37 10240 ----a-w- c:\windows\system32\dciman32.dll
2010-01-13 09:33 . 2009-10-19 14:36 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-01-13 09:33 . 2009-10-19 11:45 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-01-10 09:03 . 2010-01-10 09:03 -------- d-----w- c:\users\hp\AppData\Roaming\vlc
2010-01-10 09:03 . 2010-01-10 09:03 -------- d-----w- c:\program files\VideoLAN
2010-01-08 10:56 . 2010-01-28 14:22 -------- d-----w- c:\program files\DivX
2010-01-06 18:01 . 2010-01-28 14:29 -------- d-----w- c:\program files\EA SPORTS
2010-01-05 16:30 . 2008-09-29 05:09 1290584 ----a-w- c:\programdata\Symantec\SyKnAppS\Freezer\CAV\SyKnAppS.dll
2010-01-05 13:27 . 2006-10-23 22:37 290 ----a-w- c:\programdata\Symantec\Definitions\SymcData\nco1.0defs\20100105.002\hub.scr
2010-01-05 08:18 . 2009-10-19 07:03 84912 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\NAVENG.SYS
2010-01-05 08:18 . 2009-10-19 07:03 177520 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\NAVENG32.DLL
2010-01-05 08:18 . 2009-10-19 07:03 1647984 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\NAVEX32A.DLL
2010-01-05 08:18 . 2009-10-19 07:03 1323568 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\NAVEX15.SYS
2010-01-05 08:18 . 2009-10-19 07:03 371248 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\EECTRL.SYS
2010-01-05 08:18 . 2009-10-19 07:03 259440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\ECMSVR32.DLL
2010-01-05 08:18 . 2009-10-19 07:03 102448 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\ERASER.SYS
2010-01-05 08:18 . 2009-12-10 09:00 2747440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100104.004\CCERASER.DLL
2010-01-05 08:17 . 2006-10-23 22:37 290 ----a-w- c:\programdata\Symantec\Definitions\SymcData\nco1.0defs\20100105.001\hub.scr
2010-01-05 08:16 . 2009-11-20 03:02 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\SymIDSCo.sys
2010-01-05 08:16 . 2009-11-20 03:02 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\IDSvix86.sys
2010-01-05 08:16 . 2009-11-20 03:02 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\SymIDSI.dll
2010-01-05 08:16 . 2009-11-20 03:02 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\IDSxpx86.dll
2010-01-05 08:16 . 2009-11-20 03:02 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\IDSviA64.sys
2010-01-05 08:16 . 2009-10-20 19:15 157120 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091230.002\IDS9xx86.dll
2010-01-04 08:58 . 2009-10-19 07:03 1647984 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\NAVEX32A.DLL
2010-01-04 08:58 . 2009-10-19 07:03 84912 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\NAVENG.SYS
2010-01-04 08:58 . 2009-10-19 07:03 371248 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\EECTRL.SYS
2010-01-04 08:58 . 2009-10-19 07:03 259440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\ECMSVR32.DLL
2010-01-04 08:58 . 2009-10-19 07:03 177520 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\NAVENG32.DLL
2010-01-04 08:58 . 2009-10-19 07:03 1323568 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\NAVEX15.SYS
2010-01-04 08:58 . 2009-10-19 07:03 102448 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\ERASER.SYS
2010-01-04 08:58 . 2009-12-10 09:00 2747440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100103.020\CCERASER.DLL

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-31 12:45 . 2009-11-06 16:16 -------- d-----w- c:\users\hp\AppData\Roaming\Skype
2010-01-31 12:33 . 2009-11-09 12:43 41666 ----a-w- c:\programdata\nvModes.dat
2010-01-31 08:28 . 2009-11-06 16:20 -------- d-----w- c:\users\hp\AppData\Roaming\skypePM
2010-01-28 21:08 . 2007-01-08 21:09 84794 ----a-w- c:\windows\system32\perfc005.dat
2010-01-28 21:08 . 2007-01-08 21:09 481924 ----a-w- c:\windows\system32\perfh005.dat
2010-01-28 14:36 . 2009-11-06 16:16 -------- d-----w- c:\program files\Google
2010-01-19 20:09 . 2010-01-19 20:09 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2010-01-14 10:12 . 2009-11-06 16:18 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-13 14:14 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-01-02 06:38 . 2010-01-22 10:03 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-22 10:03 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-01-22 10:03 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-01-22 10:03 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-25 10:32 . 2009-12-25 10:33 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-12-25 10:32 . 2007-08-20 08:46 -------- d-----w- c:\program files\Java
2009-12-25 10:26 . 2009-12-24 18:58 -------- d-----w- c:\programdata\PC Suite
2009-12-25 10:19 . 2009-12-25 10:19 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-12-25 10:19 . 2009-12-25 10:19 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-12-25 10:10 . 2009-10-26 14:17 89400 ----a-w- c:\users\hp\AppData\Local\GDIPFONTCACHEV1.DAT
2009-12-24 21:45 . 2009-12-24 21:45 -------- d-----w- c:\programdata\Nokia
2009-12-24 18:58 . 2009-12-24 18:45 -------- d-----w- c:\users\hp\AppData\Roaming\Nokia
2009-12-24 18:58 . 2009-12-24 18:58 -------- d-----w- c:\users\hp\AppData\Roaming\PC Suite
2009-12-24 18:38 . 2009-12-24 18:09 -------- d-----w- c:\program files\Nokia
2009-12-24 18:33 . 2009-12-24 18:33 52948 ----a-w- c:\windows\inf\Ovi Player\0009\tmpD029.tmp
2009-12-24 18:33 . 2009-12-24 18:33 52948 ----a-w- c:\windows\inf\Ovi Player\0005\tmpD029.tmp
2009-12-24 18:33 . 2009-12-24 18:33 52948 ----a-w- c:\windows\inf\Ovi Player\0000\tmpD029.tmp
2009-12-24 18:33 . 2009-12-24 18:33 1657 ----a-w- c:\windows\inf\Ovi Player\tmpD02A.tmp
2009-12-24 18:33 . 2009-12-24 18:33 -------- d-----w- c:\programdata\NokiaMusic
2009-12-24 18:31 . 2009-12-24 18:30 -------- d-----w- c:\program files\Common Files\muvee Technologies
2009-12-24 18:30 . 2009-12-24 18:25 -------- d-----w- c:\program files\Common Files\Nokia
2009-12-24 18:24 . 2009-12-24 18:24 -------- d-----w- c:\program files\DIFX
2009-12-24 18:21 . 2009-12-24 18:21 -------- d-----w- c:\program files\PC Connectivity Solution
2009-12-24 18:10 . 2009-12-24 18:10 12212040 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
2009-12-24 18:10 . 2009-12-24 18:10 13930312 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
2009-12-24 18:10 . 2009-12-24 18:10 61440 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx86.exe
2009-12-24 18:10 . 2009-12-24 18:10 77824 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2009-12-24 18:10 . 2009-12-24 18:10 58880 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx64.exe
2009-12-24 18:10 . 2009-12-24 18:10 50000 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\pcswpc.exe
2009-12-24 18:09 . 2009-12-24 18:09 -------- d-----w- c:\programdata\OviInstallerCache
2009-12-24 18:09 . 2009-12-24 18:09 95992424 ----a-w- c:\programdata\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Nokia_Ovi_Suite_11_update.exe
2009-12-19 15:49 . 2009-11-09 14:11 -------- d-----w- c:\programdata\NVIDIA
2009-12-18 16:20 . 2007-08-20 07:26 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-12-18 16:19 . 2009-12-18 16:19 -------- d-----w- c:\programdata\Trymedia
2009-12-12 16:08 . 2009-12-12 16:08 -------- d-----w- c:\programdata\McAfee
2009-12-10 16:08 . 2009-12-10 16:08 -------- d-----w- c:\programdata\McAfee Security Scan
2009-12-10 16:08 . 2009-12-10 16:08 -------- d-----w- c:\program files\McAfee Security Scan
2009-12-08 07:28 . 2009-12-08 07:28 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtbEDAA.tmp.exe
2009-12-05 18:36 . 2009-12-05 18:36 -------- d-----w- c:\program files\VDOWNLOADER
2009-12-02 14:24 . 2007-08-20 08:20 -------- d-----w- c:\program files\Common Files\Adobe
2009-11-20 03:02 . 2009-12-19 09:35 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091217.003\SymIDSCo.sys
2009-11-20 03:02 . 2009-11-20 03:02 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\BinHub\symidsco.sys
2009-11-20 03:02 . 2009-12-19 09:35 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091217.003\IDSvix86.sys
2009-11-20 03:02 . 2009-12-19 09:35 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091217.003\SymIDSI.dll
2009-11-20 03:02 . 2009-11-20 03:02 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\BinHub\IDSvix86.sys
2009-11-20 03:02 . 2009-11-20 03:02 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\BinHub\SymIDSI.dll
2009-11-20 03:02 . 2009-12-19 09:35 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091217.003\IDSxpx86.dll
2009-11-20 03:02 . 2009-12-19 09:35 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\20091217.003\IDSviA64.sys
2009-11-20 03:02 . 2009-11-20 03:02 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\BinHub\idsxpx86.dll
2009-11-20 03:02 . 2009-11-20 03:02 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\idsdefs\BinHub\IDSviA64.sys
2009-11-13 18:42 . 2009-11-13 18:42 5299337 ----a-w- c:\programdata\ArcSoft\Global Deploy\CheckUpdate\ArcConnect.exe
2009-11-12 16:01 . 2009-11-12 16:01 6176 ----a-w- c:\windows\system32\drivers\w550cm.sys
2009-11-12 16:01 . 2009-11-12 16:01 5808 ----a-w- c:\windows\system32\drivers\w550wh.sys
2009-11-09 14:03 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-11-09 13:34 . 2009-12-10 16:03 24064 ----a-w- c:\windows\system32\nshhttp.dll
2009-11-09 13:30 . 2009-12-10 16:03 31232 ----a-w- c:\windows\system32\httpapi.dll
2009-11-09 11:17 . 2009-12-10 16:03 396800 ----a-w- c:\windows\system32\drivers\http.sys
2009-11-09 09:57 . 2009-11-09 09:57 8192 ----a-w- c:\windows\system32\riched32.dll
2009-11-09 09:49 . 2009-11-09 09:49 8704 ----a-w- c:\windows\system32\hccoin.dll
2009-11-09 09:49 . 2009-11-09 09:49 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2009-11-09 09:49 . 2009-11-09 09:49 193536 ----a-w- c:\windows\system32\drivers\usbhub.sys
2009-11-09 09:49 . 2009-11-09 09:49 8704 ----a-w- c:\windows\system32\hcrstco.dll
2009-11-09 09:49 . 2009-11-09 09:49 38400 ----a-w- c:\windows\system32\drivers\usbehci.sys
2009-11-09 09:49 . 2009-11-09 09:49 224768 ----a-w- c:\windows\system32\drivers\usbport.sys
2009-11-09 09:49 . 2009-11-09 09:49 19456 ----a-w- c:\windows\system32\drivers\usbohci.sys
2009-11-09 09:49 . 2009-11-09 09:49 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-11-09 09:47 . 2009-11-09 09:47 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll
2009-11-09 09:46 . 2009-11-09 09:46 4493312 ----a-w- c:\windows\system32\NlsData0416.dll
2009-11-09 09:46 . 2009-11-09 09:46 797696 ----a-w- c:\windows\system32\NaturalLanguage6.dll
2009-11-09 09:46 . 2009-11-09 09:46 4493312 ----a-w- c:\windows\system32\NlsData0816.dll
2009-11-09 09:46 . 2009-11-09 09:46 1963520 ----a-w- c:\windows\system32\NlsData081a.dll
2009-11-09 09:46 . 2009-11-09 09:46 6917120 ----a-w- c:\windows\system32\NlsLexicons0c1a.dll
2009-11-09 09:46 . 2009-11-09 09:46 1963520 ----a-w- c:\windows\system32\NlsData0c1a.dll
2009-11-09 09:43 . 2009-11-09 09:43 61440 ----a-w- c:\windows\system32\ntprint.exe
2009-11-09 09:43 . 2009-11-09 09:43 220160 ----a-w- c:\windows\system32\ntprint.dll
2009-11-09 09:43 . 2009-11-09 09:43 10240 ----a-w- c:\windows\system32\dhcpcmonitor.dll
2009-11-09 09:43 . 2009-11-09 09:43 1984512 ----a-w- c:\windows\system32\authui.dll
2009-11-09 09:43 . 2009-11-09 09:43 120320 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2009-11-09 09:43 . 2009-11-09 09:43 69632 ----a-w- c:\windows\system32\sendmail.dll
2009-11-09 09:43 . 2009-11-09 09:43 8138240 ----a-w- c:\windows\system32\ssBranded.scr
2009-11-09 09:32 . 2009-11-09 09:32 97800 ----a-w- c:\windows\system32\infocardapi.dll
2009-11-09 09:32 . 2009-11-09 09:32 622080 ----a-w- c:\windows\system32\icardagt.exe
2009-11-09 09:32 . 2009-11-09 09:32 11264 ----a-w- c:\windows\system32\icardres.dll
2009-11-09 09:32 . 2009-11-09 09:32 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-11-09 09:32 . 2009-11-09 09:32 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2009-11-09 09:32 . 2009-11-09 09:32 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2009-11-09 09:32 . 2009-11-09 09:32 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2009-11-09 09:00 . 2009-11-09 09:00 96760 ----a-w- c:\windows\system32\dfshim.dll
2009-11-09 09:00 . 2009-11-09 09:00 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-11-09 09:00 . 2009-11-09 09:00 282112 ----a-w- c:\windows\system32\mscoree.dll
2009-11-09 09:00 . 2009-11-09 09:00 83968 ----a-w- c:\windows\system32\mscories.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell]
@="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}"
[HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}]
2010-01-19 11:45 135168 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-11-07 1232896]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-04-19 484904]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-08-09 155648]
"NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2009-12-10 401728]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2007-08-20 1006264]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-01-13 827392]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-01-10 115816]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-23 176128]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-02-13 159744]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776]
"WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-12-25 149280]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-04 13556256]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-04 92704]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2009-10-10 203264]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2009-11-06 2090272]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-01-19 2743104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-07 44128]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan.lnk - c:\program files\McAfee Security Scan\1.0.150\SSScheduler.exe [2009-7-28 199184]
Philips SA32XX Device Manager.lnk - c:\philips\SA32xx Device Manager\SA32xx_DeviceManager.exe [2009-11-12 1615200]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

R1 aswSnx;aswSnx;c:\windows\System32\drivers\aswSnx.sys [28.1.2010 8:58 269904]
R1 aswSP;aswSP;c:\windows\System32\drivers\aswSP.sys [28.1.2010 8:58 162640]
R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20091230.002\IDSvix86.sys [5.1.2010 9:16 286768]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [28.1.2010 8:58 19024]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [28.1.2010 8:58 51792]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.11.2009 17:01 102448]
R3 SYMNDISV;SYMNDISV;c:\windows\System32\drivers\symndisv.sys [3.8.2009 19:07 38448]
S2 TwonkyMedia;TwonkyMedia;c:\program files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe -serviceversion 0 --> c:\program files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe -serviceversion 0 [?]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [6.10.2009 11:56 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [6.10.2009 11:56 8320]

--- Ostatní služby/ovladače v paměti ---

*NewlyCreated* - COMHOST

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-04-19 11:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2010-01-25 c:\windows\Tasks\Norton Internet Security - Prověřit tento počítač - hp.job
- c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 07:09]

2010-01-31 c:\windows\Tasks\User_Feed_Synchronization-{2D6E96FC-951F-4BC4-9CB2-CB028EC9C550}.job
- c:\windows\system32\msfeedssync.exe [2010-01-22 04:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.iptv.ge/en/rustavi-2-live-and-courier
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

BHO-{474597C5-AB09-49d6-A4D5-2E8D7341384E} - c:\program files\iMesh Applications\MediaBar\DataMngr\IEBHO.dll
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-31 13:48
Windows 6.0.6000 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(5720)
c:\program files\Sony Ericsson\Mobile2\File Manager\fmgrgui.dll
c:\program files\Sony Ericsson\Mobile2\File Manager\fmgrguil.dll
.
Celkový čas: 2010-01-31 13:52:05
ComboFix-quarantined-files.txt 2010-01-31 12:51

Před spuštěním: Volných bajtů: 93 689 462 784
Po spuštění: Volných bajtů: 94 660 603 904

Current=1 Default=1 Failed=0 LastKnownGood=5 Sets=1,2,3,4,5
- - End Of File - - F23472E36D32D535444EA5E4866DAD07

[motji]

Nortona v pc máte nainstalovaného nebo to jsou jen nějaké zbytky?

[motji]

Je tu někdo?

[mirian]

dobry den ano norton mam e nainstalovani.podla vasej rady som urobil combofix potom pc isel dobre teras zase ma problemi je velmi spomal a dakedy aj zamrzne prosim poradte mi neco dakujem vopred

[motji]

Poprosím o nový log ze Rsitu