Security tool - jak ho odstranit?

[vyosek]

Omlouvam se, zustalo mi to tam jakou kousek navodu

Pokracujte T-Cleanerem

[paLee]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Honza at 2010-11-04 12:50:43
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 18 GB (24%) free of 76 GB
Total RAM: 2047 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:51:05, on 4.11.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18975)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe
C:\Users\Honza\AppData\Roaming\LangSoft\OETRN.EXE
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Windows\explorer.exe
C:\Users\Honza\Downloads\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\Honza.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [razertra] C:\Program Files\Razer\razertra.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\Users\Honza\AppData\Roaming\LangSoft\OETRN.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Translator Settings - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Dictionary - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Translate Marked Text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Translate Web Page - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: avgrsstx.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

--
End of file - 9085 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll [2009-10-18 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-10-04 341600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-12-12 1111320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2010-10-06 2475336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2010-10-06 2475336]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Users\Honza\AppData\Roaming\LangSoft\WebIE.dll [2009-10-18 520192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-02-15 4390912]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-11-22 815104]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2008-10-11 37232]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2008-10-11 33136]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2010-08-20 2048352]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"SafeQ Client"=C:\Program Files\Y Soft\SafeQ Client\Client\SafeQ Client.exe [2008-07-14 188416]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-11-07 111936]
"razertra"=C:\Program Files\Razer\razertra.exe [2004-10-10 208896]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-04-29 1090952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"OEXPRESS"=C:\Users\Honza\AppData\Roaming\LangSoft\OETRN.EXE [2009-10-18 26624]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-11-04 12:50:43 ----D---- C:\rsit
2010-11-04 12:39:43 ----SHD---- C:\Config.Msi
2010-11-04 12:30:38 ----D---- C:\Program Files\CCleaner
2010-11-04 11:54:20 ----ASH---- C:\hiberfil.sys
2010-11-04 11:29:13 ----D---- C:\Users\Honza\AppData\Roaming\Malwarebytes
2010-11-04 11:28:25 ----D---- C:\ProgramData\Malwarebytes
2010-11-04 11:28:25 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-11-04 11:28:24 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-11-04 11:28:24 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-11-04 10:26:53 ----D---- C:\Program Files\trend micro
2010-11-04 10:21:55 ----A---- C:\Windows\NeroDigital.ini
2010-10-27 06:16:26 ----A---- C:\Windows\system32\gameux.dll
2010-10-27 06:16:24 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-10-27 06:16:24 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-10-15 07:14:54 ----A---- C:\Windows\system32\javaws.exe
2010-10-15 07:14:53 ----A---- C:\Windows\system32\javaw.exe
2010-10-15 07:14:53 ----A---- C:\Windows\system32\java.exe
2010-10-15 07:11:32 ----D---- C:\Program Files\Common Files\Adobe
2010-10-14 05:57:33 ----A---- C:\Windows\system32\win32k.sys
2010-10-14 05:57:06 ----A---- C:\Windows\system32\wmp.dll
2010-10-14 05:57:02 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-14 05:56:46 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-14 05:56:46 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-14 05:56:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-14 05:56:46 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-14 05:56:45 ----A---- C:\Windows\system32\netevent.dll
2010-10-14 05:56:24 ----A---- C:\Windows\system32\schannel.dll
2010-10-14 05:56:20 ----A---- C:\Windows\system32\ole32.dll
2010-10-14 05:56:17 ----A---- C:\Windows\system32\t2embed.dll
2010-10-14 05:56:13 ----A---- C:\Windows\system32\mshtml.dll
2010-10-14 05:56:12 ----A---- C:\Windows\system32\ieframe.dll
2010-10-14 05:56:10 ----A---- C:\Windows\system32\urlmon.dll
2010-10-14 05:56:10 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-14 05:56:10 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-14 05:56:09 ----A---- C:\Windows\system32\wininet.dll
2010-10-14 05:56:09 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-14 05:56:08 ----A---- C:\Windows\system32\mstime.dll
2010-10-14 05:56:07 ----A---- C:\Windows\system32\iertutil.dll
2010-10-14 05:56:06 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-14 05:56:05 ----A---- C:\Windows\system32\occache.dll
2010-10-14 05:56:05 ----A---- C:\Windows\system32\ieUnatt.exe
2010-10-14 05:56:05 ----A---- C:\Windows\system32\ieui.dll
2010-10-14 05:56:05 ----A---- C:\Windows\system32\iepeers.dll
2010-10-14 05:56:04 ----A---- C:\Windows\system32\iesysprep.dll
2010-10-14 05:56:04 ----A---- C:\Windows\system32\iesetup.dll
2010-10-14 05:56:04 ----A---- C:\Windows\system32\iernonce.dll
2010-10-14 05:56:03 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-14 05:56:03 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-14 05:56:03 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-14 05:56:03 ----A---- C:\Windows\system32\ie4uinit.exe
2010-10-14 05:55:57 ----A---- C:\Windows\system32\mfc40.dll
2010-10-14 05:55:56 ----A---- C:\Windows\system32\mfc40u.dll
2010-10-14 05:55:50 ----A---- C:\Windows\system32\msshsq.dll
2010-10-14 05:55:44 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-14 05:55:39 ----A---- C:\Windows\system32\comctl32.dll

======List of files/folders modified in the last 1 months======

2010-11-04 12:50:55 ----D---- C:\Windows\Temp
2010-11-04 12:45:24 ----D---- C:\Windows\system32\drivers
2010-11-04 12:44:46 ----A---- C:\Windows\system32\acovcnt.exe
2010-11-04 12:42:52 ----SHD---- C:\Windows\Installer
2010-11-04 12:41:56 ----RD---- C:\Program Files
2010-11-04 12:41:56 ----HD---- C:\ProgramData
2010-11-04 12:41:55 ----D---- C:\Program Files\Common Files\Apple
2010-11-04 12:41:45 ----DC---- C:\Windows\system32\DRVSTORE
2010-11-04 12:41:45 ----D---- C:\Windows\System32
2010-11-04 12:40:27 ----SHD---- C:\System Volume Information
2010-11-04 12:39:02 ----D---- C:\Windows\system32\catroot
2010-11-04 12:39:02 ----D---- C:\Windows\inf
2010-11-04 12:32:26 ----D---- C:\Program Files\Mozilla Firefox
2010-11-04 12:31:50 ----D---- C:\Windows\Minidump
2010-11-04 12:31:50 ----D---- C:\Windows\Debug
2010-11-04 12:31:50 ----D---- C:\Windows
2010-11-04 12:31:29 ----D---- C:\Windows\system32\Tasks
2010-11-04 11:47:30 ----D---- C:\Windows\SchCache
2010-11-04 11:07:44 ----D---- C:\Windows\system32\drivers\etc
2010-11-04 11:05:16 ----D---- C:\Windows\Tasks
2010-11-04 10:53:11 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-11-04 07:09:11 ----D---- C:\Windows\Prefetch
2010-11-04 06:44:12 ----D---- C:\Windows\system32\drivers\Avg
2010-10-28 02:04:02 ----D---- C:\Windows\winsxs
2010-10-28 02:03:55 ----D---- C:\Windows\AppPatch
2010-10-27 07:08:06 ----D---- C:\ProgramData\AVG Security Toolbar
2010-10-27 06:11:22 ----D---- C:\Windows\system32\catroot2
2010-10-19 10:41:44 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-15 07:15:47 ----D---- C:\Program Files\Common Files\Java
2010-10-15 07:14:50 ----D---- C:\Program Files\Java
2010-10-15 07:11:41 ----D---- C:\ProgramData\Adobe
2010-10-15 07:11:32 ----D---- C:\Program Files\Common Files
2010-10-15 02:58:50 ----D---- C:\Windows\rescache
2010-10-15 02:38:53 ----D---- C:\Windows\system32\cs-CZ
2010-10-15 02:38:27 ----D---- C:\Program Files\Windows Media Player
2010-10-15 02:38:25 ----D---- C:\Program Files\Internet Explorer
2010-10-15 02:38:24 ----D---- C:\Windows\system32\migration
2010-10-15 02:14:38 ----D---- C:\ProgramData\Microsoft Help
2010-10-15 02:04:38 ----A---- C:\Windows\system32\mrt.exe
2010-10-11 21:21:47 ----D---- C:\Users\Honza\AppData\Roaming\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2009-08-19 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2009-08-19 27784]
R1 AvgTdiX;AVG8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2009-05-06 108552]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-02 64896]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-01-23 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-02-14 1740904]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw3v32;Ovladač adaptéru Intel(R) PRO/Wireless 3945ABG pro Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-12-19 1786880]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-12-20 2305536]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-01-15 70144]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-11-22 181304]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-11 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2006-12-01 113792]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-21 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2006-10-06 73600]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2006-10-28 40960]
R3 WCPU;WCPU; \??\C:\Program Files\P4G\WCPU.sys [2007-01-02 11120]
S3 AF15BDA;AF9015 BDA Filter; C:\Windows\System32\Drivers\AF15BDA.sys [2006-09-28 283776]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2006-11-02 19456]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2006-11-02 92160]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2006-11-02 220160]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2006-11-02 29184]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2006-11-02 49664]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys []
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2006-12-20 557056]
R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-08-19 908056]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-08-19 297752]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-06-28 79136]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2006-11-01 77824]
S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe [2010-10-06 517448]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-01 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

[vyosek]

Doporucuji zmenit zabezpeceni PC: AVG nepatri mezi oblibence zdejsiho fora a verte ze vime o cem mluvime. Pokud nepouzivate mailove aplikace(thunderbird, outlook) tak dejte Aviru (anglicka), v opacnem pripade Avast (cesky) - je vice narocny na system nez Avira. Clanek o doporucen zabezpeceni mate zde http://www.viry.cz/forum/viewtopic.php?f=29&t=6152

Jinak log vypada OK, jak se chova PC

[paLee]

Vypada to, ze je vse v poradku. Pokud bych nosil klobouk, smekl bych pred Vami. Mnohokrat diky! Je senzacni, ze se najde nekdo takovy, kdo dokaze v problematice pocitacovych viru pomoci.

[vyosek]

"Praci" zde na foru mam stejne jako vetsina kolegu jako konicek - jsme zde ve svem volnem case a zadarmo - proste zabava pro nas, pitvat se v te zmeti pismenek

Nemate zac, rad jsem pomohl Zase nekdy

[paLee]

Jeste doplnujici dotaz. Programky, ktere jste mi doporucil nesmazat muzu pouzivat jako doplnkovy software na boj proti virum?

[vyosek]

MBAM muzete odinstalovat nebo nechat na obcasny sken - v pripade nalezu velmi doporucuji dat sem log na posouzeni, at si neodstrelite neco legitimniho

V boji proti virum doporucuji zminenou zmenu antiviru, ale nejdulezitejsi v boji proti haveti je pouzivani rozumu = neklikat na kdejakou blbinu, nenavstevovat sede kouty webu (porno, warez), samozrejmosti je nepouzivani cracku (nejen ze porusujete autorsky zakon, ale vetsinou v sobe maji i darecek v podobe trojskeho konicka)

RKill je pro Vas zbytecny - jen ukoncuje vsechny ne-systemove procesy a vse na co staci jeho sila

TFC Vam procistuje tempy

CCleaner udrzuje PC v docela svezi kondici - velmi doporucuji nechat a pouzivat

[paLee]

Vrele diky jeste jednou!!!

[vyosek]

Jeste jednou, nemate zac