Prosím o kontrolu,asi vir - smazala se řada ikon,PC pomalý

[misut]

Prosím o kontrolu a pomoc. Zmizely mi ikony např Aviry,Mozilly, dále různých programů,které se i smazaly a složky jsou prázdné.Chtěl jsem projít spybotem,ale vždy se PC sekne ,Aviru jsem znovu naistaloval - nic nenašla, dále Firefox ,kde se smazaly všechny záložky a vymázlo to i jejich zálohu , prostě většina v p.....Nejhorší je ,že tam byla fota a videa ze svatby.Díval jsem se na programy k obnovení,ale nevím si rady.Lepší to dát firmě k obnově,nebo je nějaký dobrý program???A nejdřív obnovit nebo odvirovat??
přikládám log
Děkuji moc


Logfile of random's system information tool 1.08 (written by random/random)
Run by PC at 2011-04-03 17:00:08
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 57 GB (74%) free of 76 GB
Total RAM: 1982 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:00, on 2011-04-03
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\Explorer.EXE
C:\windows\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\windows\system32\tcpsvcs.exe
C:\windows\System32\snmp.exe
C:\windows\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\windows\System32\svchost.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\PC\Plocha\RSIT.exe
C:\Program Files\trend micro\PC.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{F05B655F-DD1B-414B-B6AA-D0447548F817}: NameServer = 62.129.50.20,85.135.32.100
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate1cabee622e6b642) (gupdate1cabee622e6b642) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 8789 bytes

======Scheduled tasks folder======

C:\windows\tasks\RealUpgradeLogonTaskS-1-5-21-1202660629-1715567821-839522115-1003.job
C:\windows\tasks\RealUpgradeScheduledTaskS-1-5-21-1202660629-1715567821-839522115-1003.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-04-03 381656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"=C:\program files\real\realplayer\update\realsched.exe [2011-04-03 273544]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-12-13 281768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\windows\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe"="C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe:*:Enabled:VoipDiscount"
"C:\Documents and Settings\PC\Dokumenty\eMule\emule.exe"="C:\Documents and Settings\PC\Dokumenty\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe"="C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:CyberLink PowerDVD"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\PC\Plocha\Az\DCC.version2.80\DCC.exe"="C:\Documents and Settings\PC\Plocha\Az\DCC.version2.80\DCC.exe:*:Enabled:Dreambox Control Center"
"C:\Documents and Settings\PC\Plocha\Az\misut\test loga\TuneAZbox\TuneAZbox.exe"="C:\Documents and Settings\PC\Plocha\Az\misut\test loga\TuneAZbox\TuneAZbox.exe:*:Disabled: "
"C:\Program Files\telesat\CAM Wizard\AZBox CAM Wizard.exe"="C:\Program Files\telesat\CAM Wizard\AZBox CAM Wizard.exe:*:Enabled:AZBox CAM Wizard"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\real\realplayer\realplay.exe"="C:\Program Files\real\realplayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Documents and Settings\PC\Plocha\Az\MaZ_3,0\MaZ.exe"="C:\Documents and Settings\PC\Plocha\Az\MaZ_3,0\MaZ.exe:*:Enabled:Manager For AzboxHD"
"C:\Documents and Settings\PC\Dokumenty\share\Sharemax\ShareMax.exe"="C:\Documents and Settings\PC\Dokumenty\share\Sharemax\ShareMax.exe:*:Enabled:www.mohtarefen.com"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\telesat\ACC\ACC.exe"="C:\Program Files\telesat\ACC\ACC.exe:*:Enabled:ACC"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\wmsrvc.exe"="C:\WINDOWS\system32\wmsrvc.exe:*:Enabled:DHCP Router"

======List of files/folders created in the last 1 months======

2011-04-03 17:00:08 ----DC---- C:\rsit
2011-04-03 13:57:17 ----D---- C:\Program Files\fdrlab
2011-04-03 11:45:51 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-04-03 11:12:22 ----D---- C:\Program Files\eSupport.com
2011-04-03 10:40:48 ----D---- C:\Program Files\Common Files\xing shared
2011-03-24 06:50:11 ----HDC---- C:\windows\$NtUninstallKB2524375$
2011-03-09 08:15:11 ----HDC---- C:\windows\$NtUninstallKB2479943$
2011-03-09 08:12:09 ----HDC---- C:\windows\$NtUninstallKB2481109$

======List of files/folders modified in the last 1 months======

2011-04-03 17:00:18 ----D---- C:\windows\Prefetch
2011-04-03 17:00:10 ----D---- C:\Program Files\Trend Micro
2011-04-03 16:56:20 ----D---- C:\Documents and Settings\PC\Data aplikací\Skype
2011-04-03 16:27:06 ----D---- C:\Program Files\Mozilla Firefox
2011-04-03 16:21:30 ----SD---- C:\windows\Tasks
2011-04-03 16:05:48 ----D---- C:\Documents and Settings\PC\Data aplikací\skypePM
2011-04-03 16:00:14 ----D---- C:\windows\temp
2011-04-03 15:33:07 ----SHD---- C:\windows\Installer
2011-04-03 13:57:17 ----RD---- C:\Program Files
2011-04-03 12:48:39 ----D---- C:\windows\system32\CatRoot2
2011-04-03 12:40:22 ----A---- C:\windows\SchedLgU.Txt
2011-04-03 12:35:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-04-03 12:10:27 ----DC---- C:\Config.Msi
2011-04-03 11:32:58 ----D---- C:\windows\system32\NtmsData
2011-04-03 11:26:46 ----D---- C:\windows\Registration
2011-04-03 10:40:53 ----D---- C:\Program Files\real
2011-04-03 10:40:48 ----D---- C:\Program Files\Common Files
2011-04-03 10:40:37 ----D---- C:\windows\system32
2011-04-03 10:40:37 ----A---- C:\windows\system32\rmoc3260.dll
2011-04-03 10:40:25 ----A---- C:\windows\system32\pndx5032.dll
2011-04-03 10:40:25 ----A---- C:\windows\system32\pndx5016.dll
2011-04-03 10:40:22 ----A---- C:\windows\system32\pncrt.dll
2011-04-03 10:40:18 ----A---- C:\windows\system32\msvcr71.dll
2011-04-03 10:40:18 ----A---- C:\windows\system32\msvcp71.dll
2011-04-03 10:32:49 ----SHD---- C:\System Volume Information
2011-04-03 10:32:49 ----D---- C:\windows\system32\Restore
2011-04-03 10:10:14 ----D---- C:\Documents and Settings\PC\Data aplikací\Vso
2011-04-03 10:10:14 ----D---- C:\Documents and Settings\PC\Data aplikací\VoipDiscount
2011-04-03 10:10:14 ----D---- C:\Documents and Settings\PC\Data aplikací\vlc
2011-04-03 10:10:14 ----D---- C:\Documents and Settings\PC\Data aplikací\VideoReDoPlus
2011-04-03 10:10:12 ----D---- C:\Documents and Settings\PC\Data aplikací\TeamViewer
2011-04-03 10:07:42 ----D---- C:\Documents and Settings\PC\Data aplikací\SatChannelListEditor
2011-04-03 10:07:42 ----D---- C:\Documents and Settings\PC\Data aplikací\RipIt4Me
2011-04-03 10:07:24 ----D---- C:\Documents and Settings\PC\Data aplikací\PSpad
2011-04-03 10:07:23 ----D---- C:\Documents and Settings\PC\Data aplikací\MSN6
2011-04-03 10:07:16 ----SD---- C:\Documents and Settings\PC\Data aplikací\Microsoft
2011-04-03 10:07:03 ----D---- C:\Documents and Settings\PC\Data aplikací\LangSoft
2011-04-03 10:07:03 ----D---- C:\Documents and Settings\PC\Data aplikací\install_4876_MHw0MXwxMDAwMDAwMDAwfHx8fHx8fHw_
2011-04-03 10:07:02 ----D---- C:\Documents and Settings\PC\Data aplikací\IcoFX
2011-04-03 10:07:02 ----D---- C:\Documents and Settings\PC\Data aplikací\Help
2011-04-03 10:07:02 ----D---- C:\Documents and Settings\PC\Data aplikací\Hamachi
2011-04-03 10:07:02 ----D---- C:\Documents and Settings\PC\Data aplikací\DNA
2011-04-03 10:07:02 ----D---- C:\Documents and Settings\PC\Data aplikací\DBF Comparer
2011-04-03 10:07:01 ----D---- C:\Documents and Settings\PC\Data aplikací\Ahead
2011-04-03 10:06:42 ----SHDC---- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2011-04-03 10:06:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ulead Systems
2011-04-03 10:06:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\QuickTime
2011-04-03 10:06:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\MSN6
2011-04-03 10:06:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-04-03 10:06:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2011-04-03 10:06:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2011-04-03 10:06:11 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Avira(3)
2011-04-03 10:06:08 ----DC---- C:\cs_files
2011-04-03 10:06:07 ----DC---- C:\audiograbber
2011-03-29 17:31:43 ----AC---- C:\windows\NeroDigital.ini
2011-03-27 10:15:12 ----AC---- C:\windows\system32\PerfStringBackup.INI
2011-03-24 17:10:42 ----AD---- C:\WINDOWS
2011-03-24 06:50:24 ----HD---- C:\windows\inf
2011-03-24 06:49:58 ----HD---- C:\windows\$hf_mig$
2011-03-19 11:05:26 ----D---- C:\Program Files\SetEdit918
2011-03-16 14:10:30 ----D---- C:\instalace
2011-03-16 13:40:18 ----D---- C:\Documents and Settings\PC\Data aplikací\Samsung
2011-03-16 13:31:11 ----D---- C:\windows\system32\drivers
2011-03-16 13:30:59 ----HD---- C:\Program Files\InstallShield Installation Information
2011-03-11 18:05:26 ----D---- C:\Program Files\Zrychleni Pocitace
2011-03-09 08:15:14 ----A---- C:\windows\imsins.BAK
2011-03-09 08:15:13 ----RSHDC---- C:\windows\system32\dllcache
2011-03-09 08:12:25 ----D---- C:\windows\Debug
2011-03-09 08:12:20 ----AC---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\windows\System32\DRIVERS\gagp30kx.sys [2008-04-13 46464]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2005-04-25 20640]
R0 videX32;videX32; C:\windows\system32\DRIVERS\videX32.sys [2006-02-23 9728]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\windows\system32\DRIVERS\xfilt.sys [2006-02-23 11264]
R1 AmdK8;Ovladač procesoru AMD; C:\windows\system32\DRIVERS\AmdK8.sys [2006-05-10 43008]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2011-04-03 137656]
R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 ElbyCDIO;ElbyCDIO Driver; C:\windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 ssmdrv;ssmdrv; C:\windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 StarOpen;StarOpen; C:\windows\system32\drivers\StarOpen.sys [2011-03-16 5632]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\windows\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 VRVD302;VRVD302; C:\windows\system32\DRIVERS\VRVD302.sys [2008-07-16 11296]
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys [2010-12-13 61960]
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\windows\system32\drivers\ALCXWDM.SYS [2006-08-11 4015680]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\windows\system32\DRIVERS\btkrnl.sys [2006-05-12 1342602]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\windows\System32\Drivers\btwusb.sys [2006-05-12 57320]
R3 ElbyCDFL;ElbyCDFL; C:\windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\windows\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 pfc;Padus ASPI Shell; C:\windows\system32\drivers\pfc.sys [2009-06-30 10368]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\windows\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 snpstd2;VideoCAM Look; C:\windows\system32\DRIVERS\snpstd2.sys [2004-07-28 334080]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\windows\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\windows\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; C:\windows\system32\DRIVERS\vtmini.sys [2006-04-13 252416]
R3 WinDriver6;WinDriver6; C:\windows\system32\drivers\windrvr6.sys [2007-06-17 186592]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B}; C:\windows\system32\drivers\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.sys []
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 btaudio;Bluetooth Audio Device; C:\windows\system32\drivers\btaudio.sys [2006-05-12 401664]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\windows\system32\DRIVERS\btport.sys [2006-05-12 30363]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\windows\system32\DRIVERS\btwdndis.sys [2006-05-12 148168]
S3 btwhid;btwhid; C:\windows\system32\DRIVERS\btwhid.sys []
S3 btwmodem;Bluetooth Modem; C:\windows\system32\DRIVERS\btwmodem.sys [2006-05-12 30189]
S3 CCDECODE;Dekodér Closed Caption; C:\windows\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2009-01-25 25280]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\windows\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\windows\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\windows\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\windows\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\windows\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Ovladač programu Sledování sítě; C:\windows\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 Pcouffin;VSO Software pcouffin; C:\windows\System32\Drivers\Pcouffin.sys [2010-03-31 47360]
S3 PSSDK42;PSSDK42; \??\C:\WINDOWS\system32\Drivers\pssdk42.sys []
S3 Revoflt;Revoflt; C:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 sermouse;Ovladač sériové myši; C:\windows\system32\DRIVERS\sermouse.sys [2001-10-25 17664]
S3 SLIP;BDA Slip De-Framer; C:\windows\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\windows\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\windows\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\windows\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; C:\windows\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usb_rndis;USB Remote NDIS Device Driver; C:\windows\system32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 USBBOX;Settop Box USB driver; C:\windows\System32\Drivers\USBBOX.sys [2003-12-22 16640]
S3 usbprint;Třída USB Printer; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\windows\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\windows\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\windows\system32\svchost.exe [2008-04-14 14336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-04-03 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-12-13 135336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-05-12 258103]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2007-05-14 272024]
R2 SimpTcp;Jednoduché služby TCP/IP; C:\windows\system32\tcpsvcs.exe [2001-10-25 19456]
R2 SNMP;SNMP; C:\windows\System32\snmp.exe [2008-04-14 32768]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
S2 gupdate1cabee622e6b642;Služba Google Update (gupdate1cabee622e6b642); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-21 135664]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-02-10 183280]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LPDSVC;Tiskový server TCP/IP; C:\windows\system32\tcpsvcs.exe [2001-10-25 19456]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-02-10 145696]
S3 p2pgasvc;Ověřování v síti skupiny rovnocenných počítačů; C:\windows\system32\svchost.exe [2008-04-14 14336]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů; C:\windows\system32\svchost.exe [2008-04-14 14336]
S3 p2psvc;Síť rovnocenných počítačů; C:\windows\system32\svchost.exe [2008-04-14 14336]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 PNRPSvc;Protokol PNRP; C:\windows\system32\svchost.exe [2008-04-14 14336]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\windows\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------


dotaz jsem zadal i na PC help ale bez odezvy

[Rudy]

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

[misut]

ComboFix 11-04-03.01 - PC 2011-04-03 19:32:33.34.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.1.1029.18.1982.1363 [GMT 2:00]
Spuštěný z: c:\documents and settings\PC\Plocha\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_WMPNetworkSvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-03 do 2011-04-03 )))))))))))))))))))))))))))))))
.
.
2011-04-03 16:02 . 2011-04-03 16:02 -------- d-----w- c:\program files\Recuva
2011-04-03 15:00 . 2011-04-03 15:00 -------- dc----w- C:\rsit
2011-04-03 11:57 . 2011-04-03 11:57 -------- d-----w- c:\program files\fdrlab
2011-04-03 10:10 . 2011-04-03 10:10 388096 ----a-r- c:\documents and settings\PC\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-03 09:45 . 2011-04-03 09:55 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-04-03 09:12 . 2011-04-03 09:12 -------- d-----w- c:\program files\eSupport.com
2011-04-03 08:40 . 2011-04-03 08:40 -------- d-----w- c:\program files\Common Files\xing shared
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-03 09:25 . 2011-01-22 12:56 137656 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-04-03 08:40 . 2006-12-11 04:32 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-04-03 08:40 . 2006-12-11 04:32 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-03-16 11:38 . 2007-12-21 11:46 5632 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2011-02-26 12:30 . 2011-02-26 12:30 38976 ----a-w- c:\windows\system32\drivers\pssdk42.sys
2011-02-19 09:00 . 2000-12-06 18:02 224016 -c--a-w- c:\windows\system32\TABCTL32.OCX
2011-02-09 13:53 . 2004-08-17 13:49 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2004-08-17 13:49 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2007-03-01 11:18 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2007-03-01 11:18 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2004-08-17 13:49 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-17 13:48 290048 ----a-w- c:\windows\system32\atmfd.dll
2009-06-28 18:02 . 2009-06-28 18:02 23510720 -c--a-w- c:\program files\dotnetfx.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2011-04-03 273544]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-12-13 281768]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Documents and Settings\\PC\\Plocha\\Az\\DCC.version2.80\\DCC.exe"=
"c:\\Documents and Settings\\PC\\Plocha\\Az\\misut\\test loga\\TuneAZbox\\TuneAZbox.exe"=
"c:\\Program Files\\telesat\\CAM Wizard\\AZBox CAM Wizard.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\real\\realplayer\\realplay.exe"=
"c:\\Documents and Settings\\PC\\Plocha\\Az\\MaZ_3,0\\MaZ.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\telesat\\ACC\\ACC.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Skupiny sítě Peer-to-Peer
"3540:UDP"= 3540:UDP:Protokol PNRP (Peer Name Resolution Protocol)
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [2007-03-01 13696]
R1 VRVD302;VRVD302;c:\windows\system32\drivers\VRVD302.sys [2008-07-16 11296]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-01-22 135336]
S2 gupdate1cabee622e6b642;Služba Google Update (gupdate1cabee622e6b642);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-21 135664]
S3 PSSDK42;PSSDK42;c:\windows\system32\drivers\pssdk42.sys [2011-02-26 38976]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-02-23 27192]
S3 USBBOX;Settop Box USB driver;c:\windows\system32\drivers\USBBOX.sys [2007-03-13 16640]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
.
Obsah adresáře 'Naplánované úlohy'
.
2011-04-03 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1202660629-1715567821-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-01-24 12:25]
.
2011-04-03 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1202660629-1715567821-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-01-24 12:25]
.
.
------- Doplňkový sken -------
.
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Send To &Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: {F05B655F-DD1B-414B-B6AA-D0447548F817} = 62.129.50.20,85.135.32.100
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\PC\Data aplikací\Mozilla\Firefox\Profiles\60ig1qpk.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-DVD Shrink_is1 - z:\dvd shrink\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-03 19:38
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3804)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\system32\tcpsvcs.exe
c:\windows\System32\snmp.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
.
**************************************************************************
.
Celkový čas: 2011-04-03 19:44:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-04-03 17:44
.
Před spuštěním: Volných bajtů: 59,160,965,120
Po spuštění: Volných bajtů: 59,107,975,168
.
Current=4 Default=4 Failed=1 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - 36D6E77A181AE826E6B29234DCBCACF0

[Rudy]

1 položku CF smazal, zbytek logu vypadá čistý. Nastala nějaká změna?

[misut]

Vrátily se některé z ikon v hlavním panelu/odebrat hw,hlasitost ... ale disk má jen poloviční kapacitu co měl.Je dle Vás nějaký dobrý program k obnovení disku?? nebo je lépe o to někde ??? a kde dát a požádat o obnovu ?????. Jedná se mi o fotky,video .. nebo mě taky serou záložky v mozille ,kde jsem měl plno.... a nyní kliknu a prd...

[Rudy]

Patrně se jedná o hardwarovou chybu. Urychleně udělejte zálohu dat, které jsou dostupná a zbytek se pokuste obnovit pomocí některé utility, např. Recuva.

[misut]

ale ve dvou hw??? disk bootovací a záložní- blbec jsem ho při stahování neodpojil a v obou data smazána

[Rudy]

Může jít o chybu řadiče disku. Chtělo by to disk připojit jako druhý do jiného PC a zkontrolovat checkdiskem.