Zdravím, poprosím preventivku - podozrenie

[cappie]

Na tetinom NB od skype pýtal povolenie SkypeName2.exe Vopred Ďakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by elen at 2010-08-19 23:29:07
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 96 GB (68%) free of 142 GB
Total RAM: 764 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:29:11, on 19. 8. 2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\MSTMON_N.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe
C:\Windows\System32\javaw.exe
C:\Users\elen\Desktop\RSIT\RSIT.exe
C:\Program Files\trend micro\elen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Update ESET's license.lnk = C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: McAfee Application Installer Cleanup (0220271250167671) (0220271250167671mcinstcleanup) - Unknown owner - C:\Users\elen\AppData\Local\Temp\022027~1.EXE (file missing)
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

--
End of file - 8143 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-19 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
""= []
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-27 1721640]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-05-24 197904]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\windows\system32\MSTMON_N.EXE [2004-04-13 151552]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"PMBVolumeWatcher"=C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [2009-11-04 597792]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.2\ICQ.exe [2010-08-19 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\\Phone\Skype.exe [2010-05-13 26192168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^elen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk]
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [2009-02-23 576000]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
Update ESET's license.lnk - C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\wpdshserviceobj.dll [2009-10-01 87552]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-08-19 22:26:16 ----A---- C:\windows\ODBCINST.INI
2010-08-19 22:13:28 ----D---- C:\Program Files\Yamicsoft
2010-08-19 19:38:52 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2010-08-19 19:38:51 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2010-08-19 19:24:49 ----A---- C:\windows\system32\occache.dll
2010-08-19 19:24:49 ----A---- C:\windows\system32\mstime.dll
2010-08-19 19:24:48 ----A---- C:\windows\system32\jsproxy.dll
2010-08-19 19:24:47 ----A---- C:\windows\system32\iepeers.dll
2010-08-19 19:24:46 ----A---- C:\windows\system32\msfeedsbs.dll
2010-08-19 19:24:46 ----A---- C:\windows\system32\msfeeds.dll
2010-08-19 19:24:45 ----A---- C:\windows\system32\ieui.dll
2010-08-19 19:24:45 ----A---- C:\windows\system32\iesetup.dll
2010-08-19 19:24:44 ----A---- C:\windows\system32\wininet.dll
2010-08-19 19:24:44 ----A---- C:\windows\system32\iernonce.dll
2010-08-19 19:24:41 ----A---- C:\windows\system32\iedkcs32.dll
2010-08-19 19:24:40 ----A---- C:\windows\system32\msfeedssync.exe
2010-08-19 19:24:39 ----A---- C:\windows\system32\ie4uinit.exe
2010-08-19 19:24:38 ----A---- C:\windows\system32\iertutil.dll
2010-08-19 19:24:37 ----A---- C:\windows\system32\ieUnatt.exe
2010-08-19 19:24:36 ----A---- C:\windows\system32\iesysprep.dll
2010-08-19 19:24:31 ----A---- C:\windows\system32\urlmon.dll
2010-08-19 19:24:27 ----A---- C:\windows\system32\ieframe.dll
2010-08-19 19:24:22 ----A---- C:\windows\system32\mshtml.dll
2010-08-19 19:18:51 ----A---- C:\windows\system32\mshtmled.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\mshtmler.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\icardie.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\admparse.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\msls31.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\imgutil.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\ieakeng.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\dxtmsft.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\corpol.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\licmgr10.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\inseng.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\dxtrans.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\WinFXDocObj.exe
2010-08-19 19:18:47 ----A---- C:\windows\system32\wextract.exe
2010-08-19 19:18:47 ----A---- C:\windows\system32\webcheck.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\msrating.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\ieakui.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\ieaksie.dll
2010-08-19 19:18:45 ----A---- C:\windows\system32\pngfilt.dll
2010-08-19 19:18:45 ----A---- C:\windows\system32\advpack.dll
2010-08-19 19:18:44 ----A---- C:\windows\system32\vbscript.dll
2010-08-19 19:18:44 ----A---- C:\windows\system32\jscript.dll
2010-08-19 19:18:44 ----A---- C:\windows\system32\ieapfltr.dll
2010-08-19 19:18:43 ----A---- C:\windows\system32\url.dll
2010-08-19 19:18:39 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\SetDepNx.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\mshta.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\iexpress.exe
2010-08-19 19:18:38 ----A---- C:\windows\system32\PDMSetup.exe
2010-08-19 19:09:21 ----D---- C:\Program Files\Microsoft Silverlight
2010-08-19 18:19:55 ----D---- C:\Program Files\LSI SoftModem
2010-08-19 18:08:43 ----D---- C:\Users\elen\AppData\Roaming\ESET
2010-08-19 18:06:06 ----D---- C:\Program Files\ESET
2010-08-19 17:20:43 ----D---- C:\ProgramData\WindowsSearch
2010-08-19 15:48:14 ----D---- C:\Program Files\Common Files\Adobe
2010-08-19 15:37:16 ----D---- C:\Program Files\Common Files\Protexis
2010-08-19 15:36:17 ----D---- C:\ProgramData\Corel
2010-08-19 15:36:17 ----D---- C:\Program Files\Corel
2010-08-19 15:31:09 ----A---- C:\windows\system32\d3dx9_29.dll
2010-08-19 15:20:11 ----D---- C:\Program Files\Adobe
2010-08-19 15:06:25 ----D---- C:\Program Files\ICQ7.2
2010-08-19 14:55:45 ----D---- C:\Users\elen\AppData\Roaming\IrfanView
2010-08-19 14:53:09 ----D---- C:\Program Files\CCleaner
2010-08-19 14:39:14 ----D---- C:\Program Files\Microsoft
2010-08-19 14:38:47 ----D---- C:\Program Files\Windows Live SkyDrive
2010-08-19 14:38:14 ----D---- C:\Program Files\Windows Live
2010-08-19 14:31:45 ----D---- C:\Program Files\Common Files\Windows Live
2010-08-19 14:30:54 ----D---- C:\ProgramData\Sun
2010-08-19 14:30:17 ----A---- C:\windows\system32\javaws.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\javaw.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\java.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\deployJava1.dll
2010-08-19 13:16:50 ----D---- C:\Program Files\FileHippo.com
2010-08-19 11:58:15 ----D---- C:\Program Files\trend micro
2010-08-19 11:58:14 ----D---- C:\rsit
2010-08-19 11:21:16 ----D---- C:\windows\pss
2010-08-15 15:58:46 ----A---- C:\windows\system32\schannel.dll
2010-08-15 15:54:04 ----A---- C:\windows\system32\drivers\tcpip.sys
2010-08-15 15:53:59 ----A---- C:\windows\system32\rtutils.dll
2010-08-15 15:53:52 ----A---- C:\windows\system32\msxml3.dll
2010-08-15 15:53:47 ----A---- C:\windows\system32\iccvid.dll
2010-08-15 15:51:10 ----A---- C:\windows\system32\win32k.sys
2010-08-15 15:50:40 ----A---- C:\windows\system32\ntkrnlpa.exe
2010-08-15 15:50:36 ----A---- C:\windows\system32\ntoskrnl.exe
2010-08-15 15:49:50 ----A---- C:\windows\system32\drivers\srv.sys
2010-08-15 15:49:48 ----A---- C:\windows\system32\drivers\srv2.sys
2010-08-06 18:23:35 ----A---- C:\windows\system32\shell32.dll
2010-07-29 13:31:26 ----A---- C:\windows\system32\drivers\epfwwfp.sys
2010-07-29 13:31:26 ----A---- C:\windows\system32\drivers\epfwndis.sys
2010-07-29 13:31:26 ----A---- C:\windows\system32\drivers\epfw.sys
2010-07-29 13:31:26 ----A---- C:\windows\system32\drivers\ehdrv.sys
2010-07-29 13:31:26 ----A---- C:\windows\system32\drivers\eamonm.sys

======List of files/folders modified in the last 1 months======

2010-08-19 23:29:08 ----D---- C:\windows\Temp
2010-08-19 23:13:29 ----D---- C:\windows\System32
2010-08-19 23:13:29 ----A---- C:\windows\system32\PerfStringBackup.INI
2010-08-19 23:13:28 ----D---- C:\windows\inf
2010-08-19 22:26:16 ----D---- C:\Windows
2010-08-19 22:25:35 ----D---- C:\windows\Prefetch
2010-08-19 22:18:00 ----RD---- C:\Program Files
2010-08-19 22:17:40 ----D---- C:\Program Files\WinRAR
2010-08-19 22:17:40 ----D---- C:\Program Files\Mozilla Firefox
2010-08-19 22:14:36 ----SHD---- C:\System Volume Information
2010-08-19 22:13:47 ----SHD---- C:\windows\Installer
2010-08-19 22:13:45 ----SD---- C:\Users\elen\AppData\Roaming\Microsoft
2010-08-19 20:54:43 ----D---- C:\windows\rescache
2010-08-19 20:36:36 ----D---- C:\Program Files\Google
2010-08-19 20:34:30 ----D---- C:\windows\system32\drivers
2010-08-19 20:33:14 ----D---- C:\ProgramData\Microsoft Help
2010-08-19 20:29:58 ----RSD---- C:\windows\assembly
2010-08-19 20:01:36 ----D---- C:\windows\system32\wbem
2010-08-19 20:01:36 ----D---- C:\windows\system32\drivers\en-US
2010-08-19 20:01:36 ----D---- C:\Program Files\Internet Explorer
2010-08-19 20:01:35 ----D---- C:\windows\system32\migration
2010-08-19 20:01:34 ----AD---- C:\windows\system32\sk-SK
2010-08-19 20:01:30 ----D---- C:\windows\system32\en-US
2010-08-19 20:01:30 ----D---- C:\windows\PolicyDefinitions
2010-08-19 19:59:19 ----D---- C:\windows\system32\catroot
2010-08-19 19:58:33 ----D---- C:\ProgramData\ESET
2010-08-19 19:39:43 ----D---- C:\windows\winsxs
2010-08-19 19:39:39 ----D---- C:\windows\system32\catroot2
2010-08-19 19:30:30 ----D---- C:\windows\SoftwareDistribution
2010-08-19 19:10:30 ----SD---- C:\ProgramData\Microsoft
2010-08-19 19:05:37 ----RSD---- C:\windows\Fonts
2010-08-19 19:05:18 ----D---- C:\Program Files\Common Files\microsoft shared
2010-08-19 19:04:33 ----D---- C:\Program Files\Microsoft Works
2010-08-19 18:26:05 ----A---- C:\windows\win.ini
2010-08-19 18:25:59 ----D---- C:\Program Files\Common Files\System
2010-08-19 17:20:43 ----HD---- C:\ProgramData
2010-08-19 17:05:12 ----D---- C:\windows\Debug
2010-08-19 16:57:48 ----D---- C:\Users\elen\AppData\Roaming\ICQ
2010-08-19 16:46:58 ----D---- C:\ProgramData\Adobe
2010-08-19 15:48:14 ----D---- C:\Program Files\Common Files
2010-08-19 15:07:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-19 14:46:51 ----D---- C:\Users\elen\AppData\Roaming\WinRAR
2010-08-19 14:30:49 ----D---- C:\Program Files\Common Files\Java
2010-08-19 14:29:51 ----D---- C:\Program Files\Java
2010-08-19 11:38:27 ----D---- C:\Users\elen\AppData\Roaming\Skype
2010-08-19 11:20:03 ----D---- C:\windows\system32\Tasks
2010-08-19 11:17:33 ----D---- C:\Users\elen\AppData\Roaming\skypePM
2010-08-16 16:57:37 ----D---- C:\windows\Microsoft.NET
2010-08-16 13:48:07 ----D---- C:\Program Files\Movie Maker
2010-08-16 13:40:36 ----D---- C:\Program Files\Windows Mail
2010-08-15 15:24:40 ----D---- C:\windows\system32\WDI
2010-08-03 20:09:31 ----A---- C:\windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2008-04-28 14352]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R2 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R2 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 41336]
R2 regi;regi; \??\C:\windows\system32\drivers\regi.sys [2007-04-17 11032]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2008-05-21 3552768]
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\windows\system32\DRIVERS\bcmwl6.sys [2008-03-21 1207288]
R3 Epfwndis;Eset Personal Firewall; C:\windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-03-27 1810992]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-05-27 245936]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-04-03 310272]
S2 MLPTDR_N;MLPTDR_N; \??\C:\windows\system32\MLPTDR_N.sys [2003-07-17 18848]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 eabfiltr;eabfiltr; C:\windows\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
S3 eabusb;eabusb; C:\windows\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 TF1D091010;TF1D091010; C:\windows\system32\DRIVERS\TF1D091010.sys [2008-02-01 99968]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
S3 usbvideo;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 Ati External Event Utility;Ati External Event Utility; C:\windows\system32\Ati2evxx.exe [2008-05-21 671744]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
S2 0220271250167671mcinstcleanup;McAfee Application Installer Cleanup (0220271250167671); C:\Users\elen\AppData\Local\Temp\022027~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-09 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

[motji]

Hezký večer

Podle pravidel fora se zde nelegálními programy nezabýváme. Proto odinstalujte ten nelegální Eset, nainstalujte nějaký free antivir a pak můžeme pokračovat.

[cappie]

Ok, ako som písal notebook nie je môj, len ho trochu čistím a vymeniť antivír za nejaký free nie je problém, zachvíľku tu máte nový log.

Tak tu je ten nový log, za ochotu vopred Ďakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by elen at 2010-08-21 20:35:19
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 95 GB (67%) free of 142 GB
Total RAM: 764 MB (16% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:36:11, on 21. 8. 2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\MSTMON_N.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files\Windows Sidebar\sidebar.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Users\elen\Desktop\RSIT.exe
C:\Program Files\trend micro\elen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: McAfee Application Installer Cleanup (0220271250167671) (0220271250167671mcinstcleanup) - Unknown owner - C:\Users\elen\AppData\Local\Temp\022027~1.EXE (file missing)
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 7151 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-19 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
""= []
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-27 1721640]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-05-24 197904]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\windows\system32\MSTMON_N.EXE [2004-04-13 151552]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"PMBVolumeWatcher"=C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [2009-11-04 597792]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.2\ICQ.exe [2010-08-19 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\\Phone\Skype.exe [2010-05-13 26192168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^elen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk]
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [2009-02-23 576000]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\wpdshserviceobj.dll [2009-10-01 87552]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-08-21 20:31:24 ----A---- C:\windows\system32\drivers\aswSP.sys
2010-08-21 20:31:24 ----A---- C:\windows\system32\drivers\aswFsBlk.sys
2010-08-21 20:31:23 ----A---- C:\windows\system32\drivers\aswRdr.sys
2010-08-21 20:31:21 ----A---- C:\windows\system32\drivers\aswTdi.sys
2010-08-21 20:31:20 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2010-08-21 20:30:32 ----A---- C:\windows\system32\aswBoot.exe
2010-08-21 20:30:17 ----D---- C:\ProgramData\Alwil Software
2010-08-21 17:24:41 ----A---- C:\windows\system32\TURegOpt.exe
2010-08-21 17:24:38 ----A---- C:\windows\system32\uxtuneup.dll
2010-08-21 17:24:38 ----A---- C:\windows\system32\authuitu.dll
2010-08-21 17:24:11 ----D---- C:\Users\elen\AppData\Roaming\TuneUp Software
2010-08-21 17:23:50 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-08-21 17:21:40 ----D---- C:\ProgramData\TuneUp Software
2010-08-21 17:20:54 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-08-20 00:44:58 ----A---- C:\windows\system32\jscript.dll
2010-08-20 00:44:54 ----A---- C:\windows\system32\vbscript.dll
2010-08-19 23:36:26 ----D---- C:\Users\elen\AppData\Roaming\Malwarebytes
2010-08-19 23:36:14 ----D---- C:\ProgramData\Malwarebytes
2010-08-19 23:36:13 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-08-19 22:26:16 ----A---- C:\windows\ODBCINST.INI
2010-08-19 22:13:28 ----D---- C:\Program Files\Yamicsoft
2010-08-19 19:38:52 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2010-08-19 19:38:51 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2010-08-19 19:24:49 ----A---- C:\windows\system32\occache.dll
2010-08-19 19:24:49 ----A---- C:\windows\system32\mstime.dll
2010-08-19 19:24:48 ----A---- C:\windows\system32\jsproxy.dll
2010-08-19 19:24:47 ----A---- C:\windows\system32\iepeers.dll
2010-08-19 19:24:46 ----A---- C:\windows\system32\msfeedsbs.dll
2010-08-19 19:24:46 ----A---- C:\windows\system32\msfeeds.dll
2010-08-19 19:24:45 ----A---- C:\windows\system32\ieui.dll
2010-08-19 19:24:45 ----A---- C:\windows\system32\iesetup.dll
2010-08-19 19:24:44 ----A---- C:\windows\system32\wininet.dll
2010-08-19 19:24:44 ----A---- C:\windows\system32\iernonce.dll
2010-08-19 19:24:41 ----A---- C:\windows\system32\iedkcs32.dll
2010-08-19 19:24:40 ----A---- C:\windows\system32\msfeedssync.exe
2010-08-19 19:24:39 ----A---- C:\windows\system32\ie4uinit.exe
2010-08-19 19:24:38 ----A---- C:\windows\system32\iertutil.dll
2010-08-19 19:24:37 ----A---- C:\windows\system32\ieUnatt.exe
2010-08-19 19:24:36 ----A---- C:\windows\system32\iesysprep.dll
2010-08-19 19:24:31 ----A---- C:\windows\system32\urlmon.dll
2010-08-19 19:24:27 ----A---- C:\windows\system32\ieframe.dll
2010-08-19 19:24:22 ----A---- C:\windows\system32\mshtml.dll
2010-08-19 19:18:51 ----A---- C:\windows\system32\mshtmled.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\mshtmler.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\icardie.dll
2010-08-19 19:18:50 ----A---- C:\windows\system32\admparse.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\msls31.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\imgutil.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\ieakeng.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\dxtmsft.dll
2010-08-19 19:18:49 ----A---- C:\windows\system32\corpol.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\licmgr10.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\inseng.dll
2010-08-19 19:18:48 ----A---- C:\windows\system32\dxtrans.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\WinFXDocObj.exe
2010-08-19 19:18:47 ----A---- C:\windows\system32\wextract.exe
2010-08-19 19:18:47 ----A---- C:\windows\system32\webcheck.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\msrating.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\ieakui.dll
2010-08-19 19:18:47 ----A---- C:\windows\system32\ieaksie.dll
2010-08-19 19:18:45 ----A---- C:\windows\system32\pngfilt.dll
2010-08-19 19:18:45 ----A---- C:\windows\system32\advpack.dll
2010-08-19 19:18:44 ----A---- C:\windows\system32\ieapfltr.dll
2010-08-19 19:18:43 ----A---- C:\windows\system32\url.dll
2010-08-19 19:18:39 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\SetDepNx.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\mshta.exe
2010-08-19 19:18:39 ----A---- C:\windows\system32\iexpress.exe
2010-08-19 19:18:38 ----A---- C:\windows\system32\PDMSetup.exe
2010-08-19 19:09:21 ----D---- C:\Program Files\Microsoft Silverlight
2010-08-19 18:19:55 ----D---- C:\Program Files\LSI SoftModem
2010-08-19 18:08:43 ----D---- C:\Users\elen\AppData\Roaming\ESET
2010-08-19 17:20:43 ----D---- C:\ProgramData\WindowsSearch
2010-08-19 15:48:14 ----D---- C:\Program Files\Common Files\Adobe
2010-08-19 15:37:16 ----D---- C:\Program Files\Common Files\Protexis
2010-08-19 15:36:17 ----D---- C:\ProgramData\Corel
2010-08-19 15:36:17 ----D---- C:\Program Files\Corel
2010-08-19 15:31:09 ----A---- C:\windows\system32\d3dx9_29.dll
2010-08-19 15:20:11 ----D---- C:\Program Files\Adobe
2010-08-19 15:06:25 ----D---- C:\Program Files\ICQ7.2
2010-08-19 14:55:45 ----D---- C:\Users\elen\AppData\Roaming\IrfanView
2010-08-19 14:53:09 ----D---- C:\Program Files\CCleaner
2010-08-19 14:39:14 ----D---- C:\Program Files\Microsoft
2010-08-19 14:38:47 ----D---- C:\Program Files\Windows Live SkyDrive
2010-08-19 14:38:14 ----D---- C:\Program Files\Windows Live
2010-08-19 14:31:45 ----D---- C:\Program Files\Common Files\Windows Live
2010-08-19 14:30:54 ----D---- C:\ProgramData\Sun
2010-08-19 14:30:17 ----A---- C:\windows\system32\javaws.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\javaw.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\java.exe
2010-08-19 14:30:17 ----A---- C:\windows\system32\deployJava1.dll
2010-08-19 13:16:50 ----D---- C:\Program Files\FileHippo.com
2010-08-19 11:58:15 ----D---- C:\Program Files\trend micro
2010-08-19 11:58:14 ----D---- C:\rsit
2010-08-19 11:21:16 ----D---- C:\windows\pss
2010-08-15 15:58:46 ----A---- C:\windows\system32\schannel.dll
2010-08-15 15:54:04 ----A---- C:\windows\system32\drivers\tcpip.sys
2010-08-15 15:53:59 ----A---- C:\windows\system32\rtutils.dll
2010-08-15 15:53:52 ----A---- C:\windows\system32\msxml3.dll
2010-08-15 15:53:47 ----A---- C:\windows\system32\iccvid.dll
2010-08-15 15:51:10 ----A---- C:\windows\system32\win32k.sys
2010-08-15 15:50:40 ----A---- C:\windows\system32\ntkrnlpa.exe
2010-08-15 15:50:36 ----A---- C:\windows\system32\ntoskrnl.exe
2010-08-15 15:49:50 ----A---- C:\windows\system32\drivers\srv.sys
2010-08-15 15:49:48 ----A---- C:\windows\system32\drivers\srv2.sys
2010-08-06 18:23:35 ----A---- C:\windows\system32\shell32.dll

======List of files/folders modified in the last 1 months======

2010-08-21 20:35:16 ----D---- C:\windows\Temp
2010-08-21 20:31:24 ----D---- C:\windows\system32\drivers
2010-08-21 20:31:14 ----SHD---- C:\windows\Installer
2010-08-21 20:31:13 ----D---- C:\windows\winsxs
2010-08-21 20:30:32 ----D---- C:\windows\System32
2010-08-21 20:30:32 ----D---- C:\Windows
2010-08-21 20:30:17 ----HD---- C:\ProgramData
2010-08-21 20:30:17 ----D---- C:\Program Files\Alwil Software
2010-08-21 20:30:12 ----SHD---- C:\System Volume Information
2010-08-21 20:24:54 ----D---- C:\ProgramData\ESET
2010-08-21 20:24:51 ----RD---- C:\Program Files
2010-08-21 20:24:48 ----D---- C:\windows\system32\catroot
2010-08-21 20:24:47 ----D---- C:\windows\inf
2010-08-21 20:11:43 ----A---- C:\windows\system32\PerfStringBackup.INI
2010-08-21 17:56:21 ----D---- C:\windows\system32\Tasks
2010-08-21 17:12:30 ----D---- C:\Program Files\Google
2010-08-21 16:53:39 ----SD---- C:\Users\elen\AppData\Roaming\Microsoft
2010-08-21 16:53:37 ----D---- C:\ProgramData\Microsoft Help
2010-08-20 00:02:01 ----RSD---- C:\windows\Fonts
2010-08-19 22:25:35 ----D---- C:\windows\Prefetch
2010-08-19 22:17:40 ----D---- C:\Program Files\WinRAR
2010-08-19 22:17:40 ----D---- C:\Program Files\Mozilla Firefox
2010-08-19 20:54:43 ----D---- C:\windows\rescache
2010-08-19 20:29:58 ----RSD---- C:\windows\assembly
2010-08-19 20:01:36 ----D---- C:\windows\system32\wbem
2010-08-19 20:01:36 ----D---- C:\windows\system32\drivers\en-US
2010-08-19 20:01:36 ----D---- C:\Program Files\Internet Explorer
2010-08-19 20:01:35 ----D---- C:\windows\system32\migration
2010-08-19 20:01:34 ----AD---- C:\windows\system32\sk-SK
2010-08-19 20:01:30 ----D---- C:\windows\system32\en-US
2010-08-19 20:01:30 ----D---- C:\windows\PolicyDefinitions
2010-08-19 19:39:39 ----D---- C:\windows\system32\catroot2
2010-08-19 19:30:30 ----D---- C:\windows\SoftwareDistribution
2010-08-19 19:10:30 ----SD---- C:\ProgramData\Microsoft
2010-08-19 19:05:18 ----D---- C:\Program Files\Common Files\microsoft shared
2010-08-19 19:04:33 ----D---- C:\Program Files\Microsoft Works
2010-08-19 18:26:05 ----A---- C:\windows\win.ini
2010-08-19 18:25:59 ----D---- C:\Program Files\Common Files\System
2010-08-19 17:05:12 ----D---- C:\windows\Debug
2010-08-19 16:57:48 ----D---- C:\Users\elen\AppData\Roaming\ICQ
2010-08-19 16:46:58 ----D---- C:\ProgramData\Adobe
2010-08-19 15:48:14 ----D---- C:\Program Files\Common Files
2010-08-19 15:07:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-19 14:46:51 ----D---- C:\Users\elen\AppData\Roaming\WinRAR
2010-08-19 14:30:49 ----D---- C:\Program Files\Common Files\Java
2010-08-19 14:29:51 ----D---- C:\Program Files\Java
2010-08-19 11:38:27 ----D---- C:\Users\elen\AppData\Roaming\Skype
2010-08-19 11:17:33 ----D---- C:\Users\elen\AppData\Roaming\skypePM
2010-08-16 16:57:37 ----D---- C:\windows\Microsoft.NET
2010-08-16 13:48:07 ----D---- C:\Program Files\Movie Maker
2010-08-16 13:40:36 ----D---- C:\Program Files\Windows Mail
2010-08-15 15:24:40 ----D---- C:\windows\system32\WDI
2010-08-03 20:09:31 ----A---- C:\windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2008-04-28 14352]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2010-06-28 23376]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2010-06-28 46672]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2010-06-28 50256]
R2 regi;regi; \??\C:\windows\system32\drivers\regi.sys [2007-04-17 11032]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2008-05-21 3552768]
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\windows\system32\DRIVERS\bcmwl6.sys [2008-03-21 1207288]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-03-27 1810992]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-05-27 245936]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-25 10064]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-04-03 310272]
R4 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys []
R4 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys []
R4 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys []
S2 MLPTDR_N;MLPTDR_N; \??\C:\windows\system32\MLPTDR_N.sys [2003-07-17 18848]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 eabfiltr;eabfiltr; C:\windows\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
S3 eabusb;eabusb; C:\windows\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 TF1D091010;TF1D091010; C:\windows\system32\DRIVERS\TF1D091010.sys [2008-02-01 99968]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
S3 usbvideo;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 Ati External Event Utility;Ati External Event Utility; C:\windows\system32\Ati2evxx.exe [2008-05-21 671744]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-05-07 1051976]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\windows\System32\svchost.exe [2008-01-21 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
S2 0220271250167671mcinstcleanup;McAfee Application Installer Cleanup (0220271250167671); C:\Users\elen\AppData\Local\Temp\022027~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-09 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-08-21 435016]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

[motji]

Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe

- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem

[cappie]

"Systém Windows sa spustil po neočakávanom vypnutí" alebo také niečo vyskočilo po reštarte, nejak som ten error nezachytil lebo keď som dal podrobnosti tak zmizol,mám to spustiť v safe mode?

[motji]

Zkuste znovu v normálním, pokud nepůjde, zkuste poslední známou konfiguraci nebo safemode

[cappie]

V safe mode to krachne po pár minutách, ešte skúsim posl. znám. konfig.

[cappie]

Normálne, safe mode, ani posledná známa konfigurácia nejde vždy to krajcne ale po troch minutách

[motji]

A spustí se Vám znovu combofix nebo ne?
Můžete během těch tří minut něco s pc dělat?

[cappie]

No combofix vypne čo sa dá a aj keď niečo spustím tak to vzápätí vypne a po reštarte sa nezapol Tu je popísaný ten problém:
Popis problému:
Názov problémovej udalosti: BlueScreen
Verzia OS: 6.0.6002.2.2.0.768.2
Identifikácia miestneho nastavenia: 1051

Ďalšie informácie o probléme:
BCCode: 77
BCP1: C0000185
BCP2: C0000185
BCP3: 00000000
BCP4: 03667000
OS Version: 6_0_6002
Service Pack: 2_0
Product: 768_1

Súbory, ktoré pomáhajú popísať problém:
C:\Windows\Minidump\Mini082210-01.dmp
C:\Users\elen\AppData\Local\Temp\WER-51995-0.sysdata.xml
C:\Users\elen\AppData\Local\Temp\WERB605.tmp.version.txt

Prečítajte si prehlásenie o používaní osobných údajov:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x041b

[motji]

Máte instalační cd?

[cappie]

Opýtam sa mala by mať..

[motji]

Než ho budete hledat, tak mi vysvětlete, jak jste to myslela.
Restartujete pc, naběhne systém a combofix naběhne a vše ukončí?

Myslíte, že by jste stihla provést obnovu systému?

[cappie]

Combofix nenabehne iba keď ja ho spustím tak sa nič nedá robiť, spustiť pc ide normálne, takže aké sú návrhy

[motji]

Poprosím o nový log ze rasitu, ale mrknu na něj až ráno