avast! nejde spustit ani odinstalovat, pomalý PC

[ivop]

Zdravím
prosím o pomoc: při instalaci avast! se mi objevila modrá obrazovka, po restartu PC jsem provedl opětovnou instalaci již bez zjevných problémů. Avast! ale nejde spustit, hlásí to: Failed to load language dll... a nedá se avast! ani odinstalovat, nic
Prosím o pomoc, děkuji!

[JaRon]

ahoj
skus pouzit odinstalator http://idoc.vsb.cz/cit/pc/bezpecnost/antivir/avast_off/
prip. pridaj log RSIT

[ivop]

Ahojka,
děkuji za odpověď, ale tímto způsobem to taky nejde, po spuštění programu to hlásí zase nějakou chybu...
The avast! self protection module is enabled. For this reason, the operation cannot be completed...

Připojuji log:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Ivo at 2010-10-07 20:01:07
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 71 GB (66%) free of 107 GB
Total RAM: 479 MB (18% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:01:13, on 7.10.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
C:\WINDOWS\V0220Mon.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Jabbim\jabbim.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclBCBTSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Crawler\CToolbar.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ivo\Local Settings\Temporary Internet Files\Content.IE5\BO3V025B\RSIT[1].exe
C:\Program Files\trend micro\Ivo.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://rybareni.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [AVFX Engine] C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
O4 - HKLM\..\Run: [V0220Mon.exe] C:\WINDOWS\V0220Mon.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [PrintPack dispatcher] "C:\Program Files\Software602\Print2PDF\PrnPack.exe" /server
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Jabbim.lnk = C:\Program Files\Jabbim\jabbim.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra 'Tools' menuitem: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.cz/s/v/56.20/uploader2.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour ... se2895.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2441440031
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 8209 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\ctbr.dll [2008-08-05 1190912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\ctbr.dll [2008-08-05 1190912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StatusClient"=C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe [2002-12-16 36864]
"TomcatStartup"=C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe [2003-03-31 155648]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-06-10 55296]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2003-05-07 36864]
"AVFX Engine"=C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe [2006-06-09 24576]
"V0220Mon.exe"=C:\WINDOWS\V0220Mon.exe [2006-06-28 32768]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2008-09-30 1783808]
"PrintPack dispatcher"=C:\Program Files\Software602\Print2PDF\PrnPack.exe [2007-06-11 2756608]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Creative Live! Cam Manager"=C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe [2006-05-31 143360]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Documents and Settings\Ivo\Nabídka Start\Programy\Po spuštění
Jabbim.lnk - C:\Program Files\Jabbim\jabbim.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-17 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=255
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe"="C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe:*:Enabled:javaw"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Průvodce přenesením souborů a nastavení"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Download\StrongDC++\sdc230\StrongDC.exe"="C:\Download\StrongDC++\sdc230\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Program Files\Jabbim\jabbim.exe"="C:\Program Files\Jabbim\jabbim.exe:*:Enabled:Jabbim XMPP client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\system32\winav.exe"="%windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-10-03 13:42:37 ----D---- C:\Documents and Settings\Ivo\Data aplikací\jabbim
2010-10-03 13:41:48 ----D---- C:\Program Files\Jabbim
2010-09-28 15:18:53 ----SHD---- C:\Config.Msi
2010-09-28 15:12:26 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2010-09-28 15:12:25 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2010-09-28 15:12:24 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2010-09-28 15:12:24 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2010-09-28 15:12:21 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2010-09-28 15:12:21 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2010-09-28 15:12:20 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2010-09-28 15:11:49 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-09-28 15:11:28 ----D---- C:\Program Files\Alwil Software
2010-09-28 15:11:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software

======List of files/folders modified in the last 1 months======

2010-10-07 20:01:13 ----D---- C:\WINDOWS\Prefetch
2010-10-07 20:01:10 ----D---- C:\Program Files\trend micro
2010-10-07 19:59:12 ----D---- C:\Program Files\Crawler
2010-10-07 19:54:07 ----D---- C:\Program Files\Spyware Terminator
2010-10-07 19:54:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-10-07 11:00:33 ----D---- C:\Documents and Settings\Ivo\Data aplikací\Spyware Terminator
2010-10-07 09:29:08 ----D---- C:\WINDOWS\Temp
2010-10-07 09:14:31 ----A---- C:\WINDOWS\ppdrv.ini
2010-10-03 17:50:30 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-10-03 13:41:48 ----RD---- C:\Program Files
2010-09-30 17:38:32 ----SHD---- C:\WINDOWS\Installer
2010-09-30 17:38:30 ----D---- C:\WINDOWS\WinSxS
2010-09-30 17:38:19 ----D---- C:\WINDOWS
2010-09-30 17:38:18 ----D---- C:\WINDOWS\system32
2010-09-30 17:22:43 ----D---- C:\Download
2010-09-28 15:26:40 ----D---- C:\Program Files\CCleaner
2010-09-28 15:12:25 ----D---- C:\WINDOWS\system32\drivers
2010-09-28 15:03:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2010-09-25 18:07:49 ----D---- C:\WINDOWS\system32\CatRoot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2004-08-04 44672]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-09-07 28880]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-17 41216]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-09-07 100176]
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys []
R2 UMAXPCLS;Ovladač skeneru na portu tiskárny; C:\WINDOWS\system32\DRIVERS\umaxpcls.sys [2001-08-17 22912]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-06-19 752764]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2006-05-12 401664]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-05-12 30363]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-05-12 1342602]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-05-12 148168]
R3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2006-05-12 30189]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-05-12 57320]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2001-08-17 19200]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 V0220Dev;Live! Cam Video IM; C:\WINDOWS\system32\DRIVERS\V0220Dev.sys [2006-06-29 146112]
R3 V0220Vfx;V0220VFX; C:\WINDOWS\system32\DRIVERS\V0220Vfx.sys [2006-06-08 6272]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2003-06-07 258944]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S2 aswFsBlk;aswFsBlk; aswFsBlk.sys []
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-09-07 23376]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2004-08-04 207360]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 gmer;gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [2008-09-05 85969]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 Ser2pl;Prolific Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-01-02 41088]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-05-12 258103]
R2 SimpTcp;Jednoduché služby TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-25 19456]
R2 SNMP;SNMP; C:\WINDOWS\System32\snmp.exe [2006-11-21 32768]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2008-09-30 570880]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-02 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 LPDSVC;Tiskový server TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-25 19456]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 p2pgasvc;Ověřování v síti skupiny rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 p2psvc;Síť rovnocenných počítačů; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2002-08-01 65536]
S3 PNRPSvc;Protokol PNRP; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINDOWS\System32\snmptrap.exe [2004-08-17 8704]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------

[JaRon]

tak ho skusime odstranit nasilim
Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:

Kód: Vybrat vše

Folder::
C:\Program Files\Alwil Software

Driver::
avast! Antivirus
avast! Mail Scanner
avast! Web Scanner 
Aavmker4
aswTdi
aswFsBlk

File::
C:\WINDOWS\system32\drivers\aswFsBlk.sys
C:\WINDOWS\system32\drivers\aswSP.sys
C:\WINDOWS\system32\drivers\aswTdi.sys
C:\WINDOWS\system32\drivers\aswRdr.sys
C:\WINDOWS\system32\drivers\aswmon2.sys
C:\WINDOWS\system32\drivers\aswmon.sys
C:\WINDOWS\system32\drivers\aavmker4.sys
C:\WINDOWS\system32\aswBoot.exe

uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:



po aplikacii by mal vzniknut dalsi log, ten vloz sem

[ivop]

Ahoj,

děkuji moc za radu, povedlo se, Avast! odstraněn...

Prosím o kontrolu logu a zároveň o doporučení, jaký antivir (nejlépe zdarma) nainstalovat, aby mi nezpomaloval PC...

Vkládám log:

ComboFix 10-10-07.02 - Ivo 08.10.2010 13:26:02.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.479.139 [GMT 2:00]
Spuštěný z: c:\documents and settings\Ivo\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Ivo\Plocha\CFScript.txt

FILE ::
"c:\windows\system32\aswBoot.exe"
"c:\windows\system32\drivers\aavmker4.sys"
"c:\windows\system32\drivers\aswFsBlk.sys"
"c:\windows\system32\drivers\aswmon.sys"
"c:\windows\system32\drivers\aswmon2.sys"
"c:\windows\system32\drivers\aswRdr.sys"
"c:\windows\system32\drivers\aswSP.sys"
"c:\windows\system32\drivers\aswTdi.sys"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Alwil Software
c:\program files\Alwil Software\Avast5\1029\1029\aswClnTg.htm
c:\program files\Alwil Software\Avast5\1029\1029\aswClnTg.txt
c:\program files\Alwil Software\Avast5\1029\1029\aswInfTg.htm
c:\program files\Alwil Software\Avast5\1029\1029\aswInfTg.txt
c:\program files\Alwil Software\Avast5\1029\1029\Avast5_1029.chm
c:\program files\Alwil Software\Avast5\1029\1029\Base.dll
c:\program files\Alwil Software\Avast5\1029\1029\Boot.dll
c:\program files\Alwil Software\Avast5\1029\1029\uiLangRes.dll
c:\program files\Alwil Software\Avast5\1029\aswClnTg.htm
c:\program files\Alwil Software\Avast5\1029\aswClnTg.txt
c:\program files\Alwil Software\Avast5\1029\aswInfTg.htm
c:\program files\Alwil Software\Avast5\1029\aswInfTg.txt
c:\program files\Alwil Software\Avast5\1029\Avast5_1029.chm
c:\program files\Alwil Software\Avast5\1029\Bas13.tmp
c:\program files\Alwil Software\Avast5\1029\Bas1C.tmp
c:\program files\Alwil Software\Avast5\1029\Bas25.tmp
c:\program files\Alwil Software\Avast5\1029\Bas2E.tmp
c:\program files\Alwil Software\Avast5\1029\Bas4E.tmp
c:\program files\Alwil Software\Avast5\1029\Base.dll
c:\program files\Alwil Software\Avast5\1029\Boot.dll
c:\program files\Alwil Software\Avast5\1029\uiLangRes.dll
c:\program files\Alwil Software\Avast5\Aav3.tmp
c:\program files\Alwil Software\Avast5\Aav3E.tmp
c:\program files\Alwil Software\Avast5\Aav3F.tmp
c:\program files\Alwil Software\Avast5\Aav4.tmp
c:\program files\Alwil Software\Avast5\Aav5.tmp
c:\program files\Alwil Software\Avast5\Aav6.tmp
c:\program files\Alwil Software\Avast5\Aav7.tmp
c:\program files\Alwil Software\Avast5\Aav8.tmp
c:\program files\Alwil Software\Avast5\Aav9.tmp
c:\program files\Alwil Software\Avast5\AavA.tmp
c:\program files\Alwil Software\Avast5\Aavm4h.dll
c:\program files\Alwil Software\Avast5\AavmRpch.dll
c:\program files\Alwil Software\Avast5\AhR14.tmp
c:\program files\Alwil Software\Avast5\AhR15.tmp
c:\program files\Alwil Software\Avast5\ahR16.tmp
c:\program files\Alwil Software\Avast5\AhR17.tmp
c:\program files\Alwil Software\Avast5\ahR18.tmp
c:\program files\Alwil Software\Avast5\AhR19.tmp
c:\program files\Alwil Software\Avast5\AhR1A.tmp
c:\program files\Alwil Software\Avast5\AhR1D.tmp
c:\program files\Alwil Software\Avast5\AhR1E.tmp
c:\program files\Alwil Software\Avast5\ahR1F.tmp
c:\program files\Alwil Software\Avast5\AhR20.tmp
c:\program files\Alwil Software\Avast5\ahR21.tmp
c:\program files\Alwil Software\Avast5\AhR22.tmp
c:\program files\Alwil Software\Avast5\AhR23.tmp
c:\program files\Alwil Software\Avast5\AhR26.tmp
c:\program files\Alwil Software\Avast5\AhR27.tmp
c:\program files\Alwil Software\Avast5\ahR28.tmp
c:\program files\Alwil Software\Avast5\AhR29.tmp
c:\program files\Alwil Software\Avast5\ahR2A.tmp
c:\program files\Alwil Software\Avast5\AhR2B.tmp
c:\program files\Alwil Software\Avast5\AhR2C.tmp
c:\program files\Alwil Software\Avast5\AhR2F.tmp
c:\program files\Alwil Software\Avast5\AhR30.tmp
c:\program files\Alwil Software\Avast5\ahR31.tmp
c:\program files\Alwil Software\Avast5\AhR32.tmp
c:\program files\Alwil Software\Avast5\ahR33.tmp
c:\program files\Alwil Software\Avast5\AhR34.tmp
c:\program files\Alwil Software\Avast5\AhR35.tmp
c:\program files\Alwil Software\Avast5\AhR4F.tmp
c:\program files\Alwil Software\Avast5\AhR50.tmp
c:\program files\Alwil Software\Avast5\ahR51.tmp
c:\program files\Alwil Software\Avast5\AhR52.tmp
c:\program files\Alwil Software\Avast5\ahR53.tmp
c:\program files\Alwil Software\Avast5\AhR54.tmp
c:\program files\Alwil Software\Avast5\AhR55.tmp
c:\program files\Alwil Software\Avast5\AhResBhv.dll
c:\program files\Alwil Software\Avast5\AhResMai.dll
c:\program files\Alwil Software\Avast5\ahResMes.dll
c:\program files\Alwil Software\Avast5\AhResNS.dll
c:\program files\Alwil Software\Avast5\ahResP2P.dll
c:\program files\Alwil Software\Avast5\AhResStd.dll
c:\program files\Alwil Software\Avast5\AhResWS.dll
c:\program files\Alwil Software\Avast5\ash10.tmp
c:\program files\Alwil Software\Avast5\ash11.tmp
c:\program files\Alwil Software\Avast5\ash12.tmp
c:\program files\Alwil Software\Avast5\ash13.tmp
c:\program files\Alwil Software\Avast5\ash14.tmp
c:\program files\Alwil Software\Avast5\ash40.tmp
c:\program files\Alwil Software\Avast5\ash41.tmp
c:\program files\Alwil Software\Avast5\ash42.tmp
c:\program files\Alwil Software\Avast5\ash43.tmp
c:\program files\Alwil Software\Avast5\ash5.tmp
c:\program files\Alwil Software\Avast5\ash6.tmp
c:\program files\Alwil Software\Avast5\ash7.tmp
c:\program files\Alwil Software\Avast5\ash8.tmp
c:\program files\Alwil Software\Avast5\ash9.tmp
c:\program files\Alwil Software\Avast5\ashA.tmp
c:\program files\Alwil Software\Avast5\ashB.tmp
c:\program files\Alwil Software\Avast5\ashBase.dll
c:\program files\Alwil Software\Avast5\ashC.tmp
c:\program files\Alwil Software\Avast5\ashD.tmp
c:\program files\Alwil Software\Avast5\ashE.tmp
c:\program files\Alwil Software\Avast5\ashF.tmp
c:\program files\Alwil Software\Avast5\ashMaiSv.dll
c:\program files\Alwil Software\Avast5\ashOutXt.dll
c:\program files\Alwil Software\Avast5\ashQuick.exe
c:\program files\Alwil Software\Avast5\ashServ.dll
c:\program files\Alwil Software\Avast5\ashShell.dll
c:\program files\Alwil Software\Avast5\ashTask.dll
c:\program files\Alwil Software\Avast5\ashTaskEx.dll
c:\program files\Alwil Software\Avast5\ashUpd.exe
c:\program files\Alwil Software\Avast5\ashWebSv.dll
c:\program files\Alwil Software\Avast5\ashWsFtr.dll
c:\program files\Alwil Software\Avast5\asw10.tmp
c:\program files\Alwil Software\Avast5\asw11.tmp
c:\program files\Alwil Software\Avast5\asw12.tmp
c:\program files\Alwil Software\Avast5\asw13.tmp
c:\program files\Alwil Software\Avast5\asw14.tmp
c:\program files\Alwil Software\Avast5\asw15.tmp
c:\program files\Alwil Software\Avast5\asw16.tmp
c:\program files\Alwil Software\Avast5\asw17.tmp
c:\program files\Alwil Software\Avast5\asw18.tmp
c:\program files\Alwil Software\Avast5\asw19.tmp
c:\program files\Alwil Software\Avast5\asw1A.tmp
c:\program files\Alwil Software\Avast5\asw1B.tmp
c:\program files\Alwil Software\Avast5\asw1C.tmp
c:\program files\Alwil Software\Avast5\asw1D.tmp
c:\program files\Alwil Software\Avast5\asw1E.tmp
c:\program files\Alwil Software\Avast5\asw1F.tmp
c:\program files\Alwil Software\Avast5\asw20.tmp
c:\program files\Alwil Software\Avast5\asw21.tmp
c:\program files\Alwil Software\Avast5\asw22.tmp
c:\program files\Alwil Software\Avast5\asw23.tmp
c:\program files\Alwil Software\Avast5\asw24.tmp
c:\program files\Alwil Software\Avast5\asw25.tmp
c:\program files\Alwil Software\Avast5\asw26.tmp
c:\program files\Alwil Software\Avast5\asw27.tmp
c:\program files\Alwil Software\Avast5\asw28.tmp
c:\program files\Alwil Software\Avast5\asw29.tmp
c:\program files\Alwil Software\Avast5\asw2A.tmp
c:\program files\Alwil Software\Avast5\asw2B.tmp
c:\program files\Alwil Software\Avast5\asw2C.tmp
c:\program files\Alwil Software\Avast5\asw44.tmp
c:\program files\Alwil Software\Avast5\asw45.tmp
c:\program files\Alwil Software\Avast5\asw46.tmp
c:\program files\Alwil Software\Avast5\asw47.tmp
c:\program files\Alwil Software\Avast5\asw48.tmp
c:\program files\Alwil Software\Avast5\asw49.tmp
c:\program files\Alwil Software\Avast5\asw4A.tmp
c:\program files\Alwil Software\Avast5\asw4B.tmp
c:\program files\Alwil Software\Avast5\asw4C.tmp
c:\program files\Alwil Software\Avast5\asw9.tmp
c:\program files\Alwil Software\Avast5\aswA.tmp
c:\program files\Alwil Software\Avast5\aswAux.dll
c:\program files\Alwil Software\Avast5\aswB.tmp
c:\program files\Alwil Software\Avast5\aswC.tmp
c:\program files\Alwil Software\Avast5\aswCmnBS.dll
c:\program files\Alwil Software\Avast5\aswCmnIS.dll
c:\program files\Alwil Software\Avast5\aswCmnOS.dll
c:\program files\Alwil Software\Avast5\aswD.tmp
c:\program files\Alwil Software\Avast5\aswData.dll
c:\program files\Alwil Software\Avast5\aswDld.dll
c:\program files\Alwil Software\Avast5\aswE.tmp
c:\program files\Alwil Software\Avast5\aswEngLdr.dll
c:\program files\Alwil Software\Avast5\aswF.tmp
c:\program files\Alwil Software\Avast5\aswChLic.exe
c:\program files\Alwil Software\Avast5\aswIdle.dll
c:\program files\Alwil Software\Avast5\aswLog.dll
c:\program files\Alwil Software\Avast5\aswMonDS.sys
c:\program files\Alwil Software\Avast5\aswMonVD.dll
c:\program files\Alwil Software\Avast5\aswProperty.dll
c:\program files\Alwil Software\Avast5\aswRegSvr.exe
c:\program files\Alwil Software\Avast5\aswRegSvr64.exe
c:\program files\Alwil Software\Avast5\aswRunDll.exe
c:\program files\Alwil Software\Avast5\aswSqLt.dll
c:\program files\Alwil Software\Avast5\aswUtil.dll
c:\program files\Alwil Software\Avast5\Ava12.tmp
c:\program files\Alwil Software\Avast5\Ava1B.tmp
c:\program files\Alwil Software\Avast5\Ava24.tmp
c:\program files\Alwil Software\Avast5\Ava2D.tmp
c:\program files\Alwil Software\Avast5\Ava4D.tmp
c:\program files\Alwil Software\Avast5\avastSS.dll
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\program files\Alwil Software\Avast5\AvSSHook.dll
c:\program files\Alwil Software\Avast5\CommonRes.dll
c:\program files\Alwil Software\Avast5\DATA\aswResp.dat
c:\program files\Alwil Software\Avast5\DATA\Avast5.ini
c:\program files\Alwil Software\Avast5\DATA\chest\index.xml
c:\program files\Alwil Software\Avast5\DATA\Log.db
c:\program files\Alwil Software\Avast5\DATA\log\Chest.log
c:\program files\Alwil Software\Avast5\DATA\log\nshield.log
c:\program files\Alwil Software\Avast5\DATA\log\selfdef.log
c:\program files\Alwil Software\Avast5\defs\10092400\acshort.map
c:\program files\Alwil Software\Avast5\defs\10092400\algo.dll
c:\program files\Alwil Software\Avast5\defs\10092400\ArPot.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswAR.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswBoot.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswCleanerDLL.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswCmnBS.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswCmnIS.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswCmnOS.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswEngin.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswRawFS.dll
c:\program files\Alwil Software\Avast5\defs\10092400\aswScan.dll
c:\program files\Alwil Software\Avast5\defs\10092400\certs.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_el.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_java.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_java.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_js.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_js.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_mx4.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_mx4.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_mx95.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_mx95.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_o7.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_o7.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_ob.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_pe2.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_swf.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_swf.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_tx.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_u.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_w6.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_w6.map
c:\program files\Alwil Software\Avast5\defs\10092400\db_wh.dat
c:\program files\Alwil Software\Avast5\defs\10092400\db_xtn.map
c:\program files\Alwil Software\Avast5\defs\10092400\def.ini
c:\program files\Alwil Software\Avast5\defs\10092400\dllcc.dat
c:\program files\Alwil Software\Avast5\defs\10092400\exts.dll
c:\program files\Alwil Software\Avast5\defs\10092400\fwAux.dll
c:\program files\Alwil Software\Avast5\defs\10092400\l_idx.map
c:\program files\Alwil Software\Avast5\defs\10092400\l_nmp.map
c:\program files\Alwil Software\Avast5\defs\10092400\list_d.txt
c:\program files\Alwil Software\Avast5\defs\10092400\list_i.txt
c:\program files\Alwil Software\Avast5\defs\10092400\lshe3.map
c:\program files\Alwil Software\Avast5\defs\10092400\s_idx.map
c:\program files\Alwil Software\Avast5\defs\10092400\s_nmp.map
c:\program files\Alwil Software\Avast5\defs\10092400\Sf.bin
c:\program files\Alwil Software\Avast5\defs\10092400\sl_idx.map
c:\program files\Alwil Software\Avast5\defs\10092400\sl_nmp.map
c:\program files\Alwil Software\Avast5\defs\10092400\whitelist.db
c:\program files\Alwil Software\Avast5\defs\aswdefs.ini
c:\program files\Alwil Software\Avast5\flash\amcharts_key.txt
c:\program files\Alwil Software\Avast5\flash\amline.swf
c:\program files\Alwil Software\Avast5\flash\ammap\ammap.swf
c:\program files\Alwil Software\Avast5\flash\ammap\ammap_key.txt
c:\program files\Alwil Software\Avast5\flash\ammap\ammap_settings_summary.xml
c:\program files\Alwil Software\Avast5\flash\ammap\ammap_settings_tracert.xml
c:\program files\Alwil Software\Avast5\flash\ammap\empty_map.xml
c:\program files\Alwil Software\Avast5\flash\ammap\icons\arrow.swf
c:\program files\Alwil Software\Avast5\flash\ammap\icons\bubble.swf
c:\program files\Alwil Software\Avast5\flash\ammap\icons\cross.swf
c:\program files\Alwil Software\Avast5\flash\ammap\icons\flag.swf
c:\program files\Alwil Software\Avast5\flash\ammap\icons\pin.swf
c:\program files\Alwil Software\Avast5\flash\ammap\icons\zoom_out.swf
c:\program files\Alwil Software\Avast5\flash\ammap\maps\world.swf
c:\program files\Alwil Software\Avast5\Setup\ais_core-21d.vpx
c:\program files\Alwil Software\Avast5\Setup\ais_dll_cze-1f3.vpx
c:\program files\Alwil Software\Avast5\Setup\ais_res-15f.vpx
c:\program files\Alwil Software\Avast5\Setup\avast.setup
c:\program files\Alwil Software\Avast5\Setup\Components.ini
c:\program files\Alwil Software\Avast5\Setup\INF\Aavmker4.sys
c:\program files\Alwil Software\Avast5\Setup\INF\aswFsBlk.sys
c:\program files\Alwil Software\Avast5\Setup\INF\aswMon.sys
c:\program files\Alwil Software\Avast5\Setup\INF\aswMon2.sys
c:\program files\Alwil Software\Avast5\Setup\INF\aswMonFlt.sys
c:\program files\Alwil Software\Avast5\Setup\INF\AswRdr.sys
c:\program files\Alwil Software\Avast5\Setup\INF\aswSP.sys
c:\program files\Alwil Software\Avast5\Setup\INF\AswTdi.sys
c:\program files\Alwil Software\Avast5\Setup\jrog-a7.vpx
c:\program files\Alwil Software\Avast5\Setup\jrog2-1d.vpx
c:\program files\Alwil Software\Avast5\Setup\jrog2-3a.vpx
c:\program files\Alwil Software\Avast5\Setup\part-jrog-a7.vpx
c:\program files\Alwil Software\Avast5\Setup\part-jrog2-1d.vpx
c:\program files\Alwil Software\Avast5\Setup\part-jrog2-3a.vpx
c:\program files\Alwil Software\Avast5\Setup\part-prg_ais-2a5.vpx
c:\program files\Alwil Software\Avast5\Setup\part-setup_ais-2a5.vpx
c:\program files\Alwil Software\Avast5\Setup\part-vps_win32-10090701.vpx
c:\program files\Alwil Software\Avast5\Setup\part-vps_win32-10092400.vpx
c:\program files\Alwil Software\Avast5\Setup\prod-ais.vpx
c:\program files\Alwil Software\Avast5\Setup\reboot.txt
c:\program files\Alwil Software\Avast5\Setup\servers.def
c:\program files\Alwil Software\Avast5\Setup\servers.def.vpx
c:\program files\Alwil Software\Avast5\Setup\setif_ais-2a5.vpx
c:\program files\Alwil Software\Avast5\Setup\setiface.dll
c:\program files\Alwil Software\Avast5\Setup\setiface.ovr
c:\program files\Alwil Software\Avast5\Setup\setup.ini
c:\program files\Alwil Software\Avast5\Setup\setup.log
c:\program files\Alwil Software\Avast5\Setup\setup.ovr
c:\program files\Alwil Software\Avast5\Setup\setup_ais-2a5.vpx
c:\program files\Alwil Software\Avast5\Setup\vps_32-2aa.vpx
c:\program files\Alwil Software\Avast5\Setup\vps_32-2cc.vpx
c:\program files\Alwil Software\Avast5\Setup\vps_win32-2be.vpx
c:\program files\Alwil Software\Avast5\Setup\vps_win32-2e0.vpx
c:\program files\Alwil Software\Avast5\Setup\winsys-3.vpx
c:\program files\Alwil Software\Avast5\sched.exe
c:\program files\Alwil Software\Avast5\VisthAux.exe
C:\Thumbs.db
c:\windows\system32\aswBoot.exe
c:\windows\system32\drivers\aavmker4.sys
c:\windows\system32\drivers\aswFsBlk.sys
c:\windows\system32\drivers\aswmon.sys
c:\windows\system32\drivers\aswmon2.sys
c:\windows\system32\drivers\aswRdr.sys
c:\windows\system32\drivers\aswSP.sys
c:\windows\system32\drivers\aswTdi.sys

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_AAVMKER4
-------\Legacy_ASWTDI
-------\Legacy_AVAST!_ANTIVIRUS
-------\Service_Aavmker4
-------\Service_aswFsBlk
-------\Service_aswTdi
-------\Service_avast! Antivirus
-------\Service_avast! Mail Scanner
-------\Service_avast! Web Scanner
-------\Legacy_aswSP
-------\Service_aswSP


((((((((((((((((((((((((( Soubory vytvořené od 2010-09-08 do 2010-10-08 )))))))))))))))))))))))))))))))
.

2010-10-03 11:41 . 2010-10-03 11:42 -------- d-----w- c:\program files\Jabbim
2010-09-28 13:11 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr
2010-09-28 12:49 . 2010-09-28 12:49 4093792 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgui.exe
2010-09-28 12:49 . 2010-09-28 12:49 620896 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgnsx.exe
2010-09-28 12:49 . 2010-09-28 12:49 3586912 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\setup.exe
2010-09-28 12:49 . 2010-09-28 12:49 1619296 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgssie.dll
2010-09-28 12:49 . 2010-09-28 12:49 942432 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgcfgx.dll
2010-09-28 12:49 . 2010-09-28 12:49 598368 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgsrmx.dll
2010-09-28 12:49 . 2010-09-28 12:49 300896 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgchclx.dll
2010-09-28 12:49 . 2010-09-28 12:49 4371296 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgcorex.dll
2010-09-28 12:48 . 2010-09-28 12:48 1690952 ----a-w- c:\documents and settings\All Users\Data aplikací\avg9\update\backup\avgupd.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-08 11:18 . 2008-08-14 03:11 -------- d-----w- c:\program files\Crawler
2010-10-07 18:01 . 2009-06-17 14:24 -------- d-----w- c:\program files\trend micro
2010-10-07 17:54 . 2007-10-22 14:30 -------- d-----w- c:\program files\Spyware Terminator
2010-09-28 13:26 . 2007-10-23 11:10 -------- d-----w- c:\program files\CCleaner
2010-08-17 18:22 . 2007-10-23 17:49 -------- d-----w- c:\program files\Mozilla Thunderbird
2009-08-22 20:24 . 2009-08-22 20:24 993 ----a-w- c:\program files\CzDC.xml
2009-08-22 20:24 . 2009-08-22 20:24 101 ----a-w- c:\program files\ADLSearch.xml
2009-08-22 20:24 . 2009-08-22 20:24 100 ----a-w- c:\program files\Queue.xml
2009-08-22 20:24 . 2009-08-22 20:24 88 ----a-w- c:\program files\Users.xml
2009-08-22 20:24 . 2009-08-22 20:24 1048576 ----a-w- c:\program files\HashData.dat
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Creative Live! Cam Manager"="c:\program files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe" [2006-05-31 143360]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StatusClient"="c:\program files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe" [2002-12-16 36864]
"TomcatStartup"="c:\program files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe" [2003-03-31 155648]
"SoundMan"="SOUNDMAN.EXE" [2003-06-10 55296]
"VTTimer"="VTTimer.exe" [2003-05-07 36864]
"AVFX Engine"="c:\program files\Creative\Creative Live! Cam\VideoFX\StartFX.exe" [2006-06-08 24576]
"V0220Mon.exe"="c:\windows\V0220Mon.exe" [2006-06-28 32768]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-09-30 1783808]
"PrintPack dispatcher"="c:\program files\Software602\Print2PDF\PrnPack.exe" [2007-06-11 2756608]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-06-29 286720]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-17 110592]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

c:\documents and settings\Ivo\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Jabbim.lnk - c:\program files\Jabbim\jabbim.exe [2010-3-9 211968]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-5-12 581693]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Download\\StrongDC++\\sdc230\\StrongDC.exe"=
"c:\\Program Files\\Jabbim\\jabbim.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Skupiny sítě Peer-to-Peer
"3540:UDP"= 3540:UDP:Protokol PNRP (Peer Name Resolution Protocol)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [22.10.2007 16:34 141312]
R3 V0220Dev;Live! Cam Video IM;c:\windows\system32\drivers\V0220Dev.sys [30.3.2007 20:30 146112]
R3 V0220Vfx;V0220VFX;c:\windows\system32\drivers\V0220Vfx.sys [30.3.2007 20:30 6272]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://rybareni.cz/
uInternet Settings,ProxyOverride = <local>;*.local
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Send To &Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-avast5 - c:\program files\Alwil Software\Avast5\aswRunDll.exe


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\tcpsvcs.exe
c:\windows\System32\snmp.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\rundll32.exe
c:\windows\system32\wscntfy.exe
c:\program files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclBCBTSrv.exe
.
**************************************************************************
.
Celkový čas: 2010-10-08 13:40:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-10-08 11:40
ComboFix2.txt 2008-09-05 21:12
ComboFix3.txt 2008-09-05 19:11

Před spuštěním: Volných bajtů: 74 265 436 160
Po spuštění: Volných bajtů: 74 271 006 720

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 6DE035F99168C0D2DD93F52D83163C37

[JaRon]

z FREE AV jednoznacne doporucujem Aviru