prosím o preventivku

Zpráva

kubik0963 · #1 Příspěvek od **kubik0963** » 11 dub 2011 17:55

Logfile of random's system information tool 1.08 (written by random/random)
Run by Taťka at 2011-04-11 18:48:07
Microsoft Windows 7 Professional
System drive C: has 12 GB (11%) free of 107 GB
Total RAM: 4057 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:48:18, on 11.4.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe
C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files (x86)\CyberLink\Shared Files\brs.exe
C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files\trend micro\Taťka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DeskUpdateNotifier] "C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [InstallIQUpdater] "C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe" /silent /autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://fbcheatcodes.blogspot.com
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - http://158.64.62.234/activex/AxisCamControl.ocx
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\Google\GOOGLE~3\GO36F4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files (x86)\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\HaDTMan.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WMI Performance Adapter (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Služba Windows Media Player Network Sharing (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12143 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG10\avgchsva.exe /boot
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG10\avgfws.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
"C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe"
"C:\Program Files (x86)\AVG\AVG10\avgam.exe"
"C:\Program Files (x86)\AVG\AVG10\avgnsa.exe"
"taskhost.exe"
taskeng.exe {EF030A1E-5813-4733-A57C-3112D99D7C8C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe" -UseTray
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files (x86)\Launch Pad\LaunchPad.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Windows\System32\igfxtray.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
"C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe"
"C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe" /silent /autorun
"C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
"C:\Program Files (x86)\AVG\AVG10\avgtray.exe"
"C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
"C:\Program Files (x86)\CyberLink\Shared Files\brs.exe"
"GoogleDesktop.exe" /display
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"Apntex.exe"
"C:\Program Files\Apoint2K\HidFind.exe"
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe /pipeName=c30bc253-a4cd-4633-8970-3a003d90b251 /coreSdkOptions=18 /logConfFile="C:\ProgramData\AVG10\temp\2d28d133-6020-4649-a86a-0e39057c2f52-954-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG10\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg10" /tempPath="C:\ProgramData\AVG10\temp\"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe" /SILENT
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{FFA6E2C6-9DCE-4A93-8050-529F0B92A37F}
{1F0AE1B3-3D6B-4020-9F5A-3971EBC69BB6}
{25895B15-E085-4B8B-9773-3A67A9EE940D}
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe /pipeName=eb25792c-da16-4b23-9ae8-7b56c1273937 /coreSdkOptions=30 /logConfFile="C:\ProgramData\AVG10\temp\50492f46-fd37-4240-a25c-bc06d111c414-678-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG10\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg10" /tempPath="C:\ProgramData\AVG10\temp\"
"C:\Users\Taťka\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Free File Viewer Update Checker.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll [2011-03-25 3491168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-02-26 400560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll [2011-02-26 335928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG10\avgssie.dll [2011-03-25 2235232]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll [2011-03-18 2471240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-02-26 298160]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll [2011-02-26 848952]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} -
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-02-26 400560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll [2011-03-18 2471240]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-02-26 298160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2011-02-14 295936]
"LaunchPad"=C:\Program Files (x86)\Launch Pad\LaunchPad.exe [2009-02-20 2963456]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-20 7981088]
"PowerManager"=C:\Program Files (x86)\Power Manager\PM.exe [2009-08-25 2281472]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-08-21 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-08-21 387608]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-08-21 365592]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-08-20 535392]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-08-20 431456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-11-12 39408]
"TomTomHOME.exe"=C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2011-03-09 247728]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2011-03-01 16949128]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-12-21 1483264]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]
"InstallIQUpdater"=C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe [2011-02-02 1085952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DeskUpdateNotifier]
C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [2010-10-13 97560]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl8"=C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [2008-03-20 83240]
"PDVD8LanguageShortcut"=C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [2007-12-14 50472]
"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG10\avgtray.exe [2011-02-17 2190688]
"Google Desktop Search"=C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2011-01-09 30192]
"BDRegion"=C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [2008-10-07 75048]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"DeskUpdateNotifier"=C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [2010-10-13 97560]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-08-13 259584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-11 18:48:07 ----D---- C:\rsit
2011-04-11 18:48:07 ----D---- C:\Program Files\trend micro
2011-04-10 16:42:58 ----D---- C:\Program Files (x86)\SpeedFan
2011-04-07 21:51:20 ----D---- C:\Program Files (x86)\Cenega Czech
2011-04-07 20:59:09 ----D---- C:\Program Files (x86)\Alcohol Soft
2011-04-07 20:39:24 ----D---- C:\Program Files (x86)\Vypalovač
2011-04-04 19:27:50 ----D---- C:\Program Files (x86)\TomTom International B.V
2011-04-04 19:27:40 ----D---- C:\Program Files (x86)\TomTom HOME 2
2011-04-02 14:16:39 ----A---- C:\fftrlog.txt
2011-04-02 14:16:24 ----D---- C:\Program Files (x86)\Recepty doma
2011-04-01 20:28:24 ----D---- C:\Program Files (x86)\FunWebProducts
2011-04-01 18:52:22 ----D---- C:\Program Files (x86)\Cheat Engine 6
2011-03-31 17:23:01 ----D---- C:\Program Files\Microsoft Games
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-03-31 05:06:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\url.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-03-31 05:06:02 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-03-31 05:06:02 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-31 05:06:01 ----A---- C:\Windows\system32\wininet.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\urlmon.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\pngfilt.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\occache.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\msrating.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\msls31.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\mshtml.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\mshta.exe
2011-03-31 05:06:01 ----A---- C:\Windows\system32\jsproxy.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\jscript9.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\jscript.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\imgutil.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\ieUnatt.exe
2011-03-31 05:06:01 ----A---- C:\Windows\system32\iertutil.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\iepeers.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\ieakui.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\ieaksie.dll
2011-03-31 05:06:01 ----A---- C:\Windows\system32\admparse.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-03-31 05:06:00 ----A---- C:\Windows\system32\mshtmler.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\msfeedssync.exe
2011-03-31 05:06:00 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\ieui.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\iesysprep.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\ieframe.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\ieakeng.dll
2011-03-31 05:06:00 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\wextract.exe
2011-03-31 05:05:59 ----A---- C:\Windows\system32\webcheck.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\vbscript.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\url.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\mshtmled.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\inseng.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\iexpress.exe
2011-03-31 05:05:59 ----A---- C:\Windows\system32\iesetup.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\iernonce.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\ieapfltr.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\ie4uinit.exe
2011-03-31 05:05:59 ----A---- C:\Windows\system32\icardie.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\dxtrans.dll
2011-03-31 05:05:59 ----A---- C:\Windows\system32\dxtmsft.dll
2011-03-30 17:17:00 ----A---- C:\Windows\system32\drivers\AVGIDSDriver.sys
2011-03-29 16:21:45 ----D---- C:\Windows\system32\SPReview
2011-03-29 16:21:28 ----D---- C:\Windows\system32\EventProviders
2011-03-29 15:58:58 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-03-29 15:58:58 ----A---- C:\Windows\system32\d3d10_1.dll
2011-03-22 17:42:14 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-03-20 17:12:23 ----RD---- C:\Program Files (x86)\Skype
2011-03-19 22:20:36 ----D---- C:\Program Files\CSR
2011-03-19 22:01:35 ----A---- C:\Windows\system32\nvuninst.exe
2011-03-19 21:35:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2011-03-19 21:35:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2011-03-19 21:35:59 ----A---- C:\Windows\system32\nvudisp.exe
2011-03-19 21:35:58 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-03-19 21:35:58 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2011-03-19 21:35:58 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-03-19 21:35:58 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-03-19 21:35:58 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\nvoglv64.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\nvdecodemft.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\nvcuvid.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\nvcuda.dll
2011-03-19 21:35:58 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-03-19 21:35:56 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2011-03-19 21:35:56 ----A---- C:\Windows\system32\nvcod.dll
2011-03-19 21:35:56 ----A---- C:\Windows\system32\nvapi64.dll
2011-03-19 21:35:55 ----A---- C:\Windows\system32\igfxtray.exe
2011-03-19 21:35:55 ----A---- C:\Windows\system32\igfxTMM.dll
2011-03-19 21:35:55 ----A---- C:\Windows\system32\igfxsrvc.exe
2011-03-19 21:35:55 ----A---- C:\Windows\system32\igfxsrvc.dll
2011-03-19 21:35:55 ----A---- C:\Windows\system32\igfxress.dll
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxpph.dll
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxpers.exe
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxext.exe
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxexps.dll
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxdo.dll
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxdev.dll
2011-03-19 21:35:54 ----A---- C:\Windows\system32\igfxcfg.exe
2011-03-19 21:35:53 ----A---- C:\Windows\system32\hkcmd.exe
2011-03-19 21:35:53 ----A---- C:\Windows\system32\hccutils.dll
2011-03-19 13:36:28 ----D---- C:\Users\Taťka\AppData\Roaming\Valusoft
2011-03-15 20:43:43 ----D---- C:\ProgramData\vsosdk
2011-03-15 20:01:15 ----D---- C:\Users\Taťka\AppData\Roaming\Vso
2011-03-15 20:01:15 ----A---- C:\Windows\system32\drivers\pcouffin.sys
2011-03-15 20:01:15 ----A---- C:\Users\Taťka\AppData\Roaming\pcouffin.sys
2011-03-15 20:01:15 ----A---- C:\Users\Taťka\AppData\Roaming\inst.exe
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\wvc1dmod.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\vp7vfw.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\Pncrt.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\drv43260.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\drv33260.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\drv23260.dll
2011-03-15 20:01:09 ----A---- C:\Windows\SYSWOW64\cook3260.dll
2011-03-15 20:01:08 ----A---- C:\Windows\gdiplus.dll
2011-03-15 20:01:07 ----D---- C:\Program Files (x86)\VSO
2011-03-13 06:42:40 ----D---- C:\Program Files (x86)\Power Manager

======List of files/folders modified in the last 1 months======

2011-04-11 18:48:18 ----D---- C:\Windows\Prefetch
2011-04-11 18:48:14 ----D---- C:\Windows\Temp
2011-04-11 18:48:08 ----AD---- C:\ProgramData\Temp
2011-04-11 18:48:07 ----RD---- C:\Program Files
2011-04-11 18:33:20 ----D---- C:\Users\Taťka\AppData\Roaming\Skype
2011-04-11 16:20:29 ----D---- C:\Windows\system32\drivers\AVG
2011-04-11 16:17:58 ----D---- C:\Users\Taťka\AppData\Roaming\skypePM
2011-04-11 16:17:34 ----D---- C:\Windows\SysWOW64
2011-04-11 05:34:38 ----D---- C:\Windows\system32\config
2011-04-10 21:42:49 ----SHD---- C:\System Volume Information
2011-04-10 16:42:58 ----RD---- C:\Program Files (x86)
2011-04-10 09:31:26 ----SHD---- C:\Windows\Installer
2011-04-10 09:29:11 ----D---- C:\ProgramData\MFAData
2011-04-10 09:28:22 ----D---- C:\Windows\system32\Tasks
2011-04-10 09:27:53 ----D---- C:\Windows\system32\drivers
2011-04-08 22:05:30 ----D---- C:\Windows
2011-04-07 22:04:31 ----D---- C:\Users\Taťka\AppData\Roaming\Clickteam
2011-04-07 22:04:25 ----D---- C:\Program Files (x86)\The Games Factory 2
2011-04-07 20:59:17 ----D---- C:\Windows\System32
2011-04-07 20:54:41 ----D---- C:\Windows\system32\catroot2
2011-04-06 18:03:41 ----SHD---- C:\Boot
2011-04-05 16:17:46 ----D---- C:\Program Files (x86)\NosTale(CZ)
2011-04-02 07:02:14 ----D---- C:\Windows\inf
2011-04-02 07:02:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-01 04:56:21 ----HD---- C:\ProgramData
2011-04-01 04:56:20 ----D---- C:\Windows\Downloaded Program Files
2011-03-31 19:35:37 ----D---- C:\Windows\rescache
2011-03-31 18:21:25 ----D---- C:\Windows\winsxs
2011-03-31 18:21:18 ----D---- C:\Program Files\Internet Explorer
2011-03-31 18:21:18 ----D---- C:\Program Files (x86)\Internet Explorer
2011-03-31 17:20:00 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-03-31 16:23:03 ----D---- C:\Windows\system32\NDF
2011-03-31 05:10:01 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-03-31 05:10:01 ----D---- C:\Windows\system32\cs-CZ
2011-03-31 05:09:57 ----D---- C:\Windows\SYSWOW64\migration
2011-03-31 05:09:57 ----D---- C:\Windows\SYSWOW64\en-US
2011-03-31 05:09:56 ----D---- C:\Windows\system32\migration
2011-03-31 05:09:56 ----D---- C:\Windows\system32\en-US
2011-03-31 05:09:56 ----D---- C:\Windows\PolicyDefinitions
2011-03-31 05:07:37 ----D---- C:\Windows\Logs
2011-03-31 05:07:14 ----D---- C:\Windows\system32\catroot
2011-03-30 04:47:59 ----D---- C:\ProgramData\Adobe
2011-03-27 18:37:45 ----SD---- C:\Users\Taťka\AppData\Roaming\Microsoft
2011-03-27 18:37:45 ----D---- C:\Users\Taťka\AppData\Roaming\Adobe
2011-03-27 18:36:32 ----D---- C:\Program Files (x86)\Adobe
2011-03-27 13:36:08 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2011-03-27 13:35:39 ----D---- C:\TopCD
2011-03-22 17:42:56 ----D---- C:\Windows\system32\DriverStore
2011-03-22 17:42:42 ----D---- C:\Program Files (x86)\Nokia
2011-03-22 17:42:42 ----D---- C:\Program Files (x86)\Common Files
2011-03-22 17:42:14 ----DC---- C:\Windows\system32\DRVSTORE
2011-03-22 17:42:09 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-03-22 17:40:31 ----D---- C:\ProgramData\Installations
2011-03-21 17:43:20 ----D---- C:\Windows\system32\drivers\UMDF
2011-03-20 09:12:58 ----D---- C:\Windows\ModemLogs
2011-03-19 22:02:40 ----D---- C:\Windows\Help
2011-03-19 21:52:28 ----D---- C:\ProgramData\NVIDIA
2011-03-14 20:52:07 ----D---- C:\Stahování
2011-03-13 06:43:25 ----D---- C:\Program Files (x86)\Launch Pad
2011-03-12 12:07:54 ----D---- C:\Windows\debug

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 26704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2011-01-19 37456]
R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2010-12-18 25280]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-04-07 503352]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2010-07-12 57696]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2011-01-07 304720]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-03-01 41552]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2011-02-10 376400]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 66304]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 359552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; \??\C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [2008-10-07 32240]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2011-02-14 243760]
R3 athr;Extensible Wireless LAN device driver for Windows 7; C:\Windows\system32\DRIVERS\athrx.sys [2011-02-14 1584640]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-03-30 118352]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 29264]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y62x64.sys [2009-06-12 287960]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-07-20 1831968]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-03-15 82816]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2011-02-14 246376]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 187904]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 95232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 a9rtjnf7;a9rtjnf7; C:\Windows\system32\drivers\a9rtjnf7.sys []
S3 afnm718o;afnm718o; C:\Windows\system32\drivers\afnm718o.sys []
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-20 34656]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-11-14 7370176]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\drivers\RtsUIR.sys []
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\drivers\USBCCID.sys []
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG10\avgfws.exe [2011-02-08 2707512]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-02-15 7421280]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-08-22 382496]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-03-09 92592]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe [2009-08-20 145792]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-11-12 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-03-18 947528]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2011-01-09 30192]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-11-12 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files (x86)\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\HaDTMan.exe [2010-09-24 384792]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-12 1255736]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 11 dub 2011 21:07

Zdravím, tyhle zbytečnosti fixni v HJT :

O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DeskUpdateNotifier] "C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray

HJT najdeš zde :

C:\Program Files\trend micro\Taťka.exe

Fix znamená že spustíš HJT Obrázek

jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.

Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Google Desktop Manager 5.9.1005.12335

Služba Google Update

Google Software Updater

Nero BackItUp Scheduler 4.0

klikni na ni pravým myšítkem, zvol vlastnosti, na další kartě nejprve službu zastav tlačítkem Zastavit a u položky Typ spouštění zvol Zakázáno.

Jinak nic špatného nevidím.

kubik0963 · #3 Příspěvek od **kubik0963** » 12 dub 2011 12:12

Děkuji

#4 Příspěvek od **Roli** » 12 dub 2011 13:58

Není zač.

VIRY.CZ

prosím o preventivku

prosím o preventivku

Re: prosím o preventivku

Re: prosím o preventivku

Re: prosím o preventivku