Detekce viru od Aviry

[ninja_girl]

Zdravím,
nainstalovala jsem si Avira antivirus a ten mi našel nějakou havěť, konkrétně HTML/Infected.WebPage.Gen2 (záloha starých webových stránek) a TR/PSW.Trah.B.4 (našlo mi to nějaký soubor, který v dané složce vůbec není). Viry jsem dala do karantény. S PC nemám skoro žádné potíže, akorát od tohoto týdne se nemůžu dostat na jedny stránky (přes Firefox, Operu a IE, v Chrome mi stránka jede), které spravuji a ani přes FTP (Filezillu) se tam nedokážu napojit, i když všechna hesla a nastavení mám správně. (U poskytovatele webhostingu to není, zkoušela jsem to na různých počítačích a tam to šlapalo)

Tady je log z RSIT:

Logfile of random's system information tool 1.07 (written by random/random)
Run by Dana at 2011-04-25 21:32:27
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 108 GB (27%) free of 400 GB
Total RAM: 3327 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:40, on 25.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Aladdin\Aladdin SQL Server\AladdinSQL.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\ComplexWebServer\apache\bin\apache.exe
C:\ComplexWebServer\mysql\bin\mysqld.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\ComplexWebServer\apache\bin\apache.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\ComplexWebServer\bin\ServiceDirect.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\home\Local Settings\Data aplikací\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Digsby\lib\digsby-app.exe
C:\Program Files\Avira\AntiVir Desktop\avscan.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\home\Dokumenty\RSIT.exe
C:\Program Files\trend micro\Dana.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [LogonStudio] "C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ComplexWebServer] "C:\ComplexWebServer\bin\ServiceDirect.exe" /RUNHIDE /CONF="C:\ComplexWebServer\bin\ServiceDirect.conf"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-515967899-343818398-1801674531-1009\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Copy to Semagic - C:\Program Files\Semagic\copy.htm
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Semagic - C:\Program Files\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Aladdin SQL Server - Unknown owner - C:\Program Files\Aladdin\Aladdin SQL Server\AladdinSQL.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: CWS_Apache_80 - Apache Software Foundation - C:\ComplexWebServer\apache\bin\apache.exe
O23 - Service: CWS_MySQL_3306 - Unknown owner - C:\ComplexWebServer\mysql\bin\mysqld.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
O23 - Service: WTService - Unknown owner - C:\WINDOWS\system32\atwtusb.exe

--
End of file - 9671 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-515967899-343818398-1801674531-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-515967899-343818398-1801674531-1003UA.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-515967899-343818398-1801674531-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-515967899-343818398-1801674531-1003.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2010-11-03 109568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LogonStudio"=C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe [2002-09-03 987187]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2010-06-23 1043968]
"ComplexWebServer"=C:\ComplexWebServer\bin\ServiceDirect.exe [2006-09-17 686080]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2011-04-08 2216960]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-03-04 281768]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-04-07 13891176]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2011-02-24 1753192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5]
C:\Program Files\Alwil Software\Avast5\avastUI.exe /nogui []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivX Download Manager]
C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [2010-12-08 63360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-12-09 1226608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\home\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-01-09 135664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-03-28 1910152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2011-04-07 13891176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2011-04-07 111208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2011-04-08 2216960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2011-04-08 3318784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS10 Preload]
C:\Program Files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe [2006-08-09 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WD Button Manager]
C:\WINDOWS\system32\WDBtnMgr.exe [2010-01-12 364544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-01-02 210520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WDDMStatus.lnk]
C:\PROGRA~1\WESTER~1\WDSMAR~1\WDDRIV~1\WDDMST~1.EXE [2009-11-13 2057536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WDSmartWare.lnk]
C:\PROGRA~1\WESTER~1\WDSMAR~1\FRONTP~1\WDSMAR~1.EXE [2009-11-13 9117504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\Ubisoft\Lost Via Domus\Yeti_Final_Win32.exe"="C:\Program Files\Ubisoft\Lost Via Domus\Yeti_Final_Win32.exe:*:Enabled:Lost Via Domus Game"
"C:\Program Files\Ubisoft\Lost Via Domus\gu.exe"="C:\Program Files\Ubisoft\Lost Via Domus\gu.exe:*:Enabled:Lost Via Domus Updater"
"C:\Program Files\Ubisoft\Lost Via Domus\detection\Launcher.exe"="C:\Program Files\Ubisoft\Lost Via Domus\detection\Launcher.exe:*:Enabled:Lost Via Domus Requirements Tool"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Yahoo!\Messenger\YServer.exe"="C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{01c00478-60dd-11de-8d76-00248c52f5aa}]
shell\AutoRun\command - J:\wd_windows_tools\WDEULA.exe


======List of files/folders created in the last 1 months======

2011-04-25 17:47:49 ----D---- C:\WINDOWS\system32\NtmsData
2011-04-24 14:11:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2011-04-24 14:09:44 ----A---- C:\WINDOWS\system32\nvgenco322060.dll
2011-04-24 14:09:44 ----A---- C:\WINDOWS\system32\nvdispco3220140.dll
2011-04-20 14:52:29 ----D---- C:\Documents and Settings\home\Data aplikací\Avira
2011-04-20 14:47:23 ----D---- C:\Program Files\Avira
2011-04-20 14:47:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2011-04-16 15:34:23 ----D---- C:\WINDOWS\system32\%USERPROFILE%
2011-04-16 15:34:23 ----D---- C:\Program Files\Jix
2011-04-16 09:35:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-04-16 09:34:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2506223$
2011-04-16 09:33:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-04-16 09:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-04-16 09:30:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2503658$
2011-04-16 09:29:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-04-16 09:29:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-04-16 09:29:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2511455$
2011-04-16 09:28:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-04-16 09:17:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-04-15 22:47:40 ----D---- C:\Program Files\Youtube Downloader
2011-04-15 18:15:01 ----D---- C:\WINDOWS\solcache
2011-04-15 18:15:01 ----A---- C:\WINDOWS\system32\SNWValid.dll
2011-04-15 18:15:01 ----A---- C:\WINDOWS\system32\SierraNW.dll
2011-04-15 18:13:26 ----D---- C:\SIERRA
2011-04-15 18:13:26 ----D---- C:\Program Files\Sierra On-Line
2011-04-15 18:13:01 ----A---- C:\WINDOWS\SIERRA.INI
2011-04-08 10:51:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Altova
2011-04-07 22:16:34 ----A---- C:\WINDOWS\system32\nvwddi.dll
2011-04-07 22:16:34 ----A---- C:\WINDOWS\system32\easyUpdatusAPIU.dll
2011-04-07 22:16:30 ----A---- C:\WINDOWS\system32\nvrszht.dll
2011-04-07 22:16:30 ----A---- C:\WINDOWS\system32\nvrsth.dll
2011-04-07 22:16:30 ----A---- C:\WINDOWS\system32\nvrseng.dll
2011-04-07 22:16:30 ----A---- C:\WINDOWS\system32\nvrsel.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrstr.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrssl.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsru.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrshu.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrshe.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2011-04-07 22:16:28 ----A---- C:\WINDOWS\system32\nvrsda.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrssv.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrssk.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrspt.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrspl.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsno.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsko.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsja.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsit.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrses.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsde.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrscs.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvrsar.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvmctray.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvmccs.dll
2011-04-07 22:16:26 ----A---- C:\WINDOWS\system32\nvcpl.dll
2011-04-07 22:16:24 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2011-04-07 22:16:24 ----A---- C:\WINDOWS\system32\nvcolor.exe
2011-04-01 14:04:19 ----D---- C:\Program Files\StepMania4
2011-03-30 09:12:09 ----D---- C:\Program Files\LogMeIn Hamachi
2011-03-28 14:25:46 ----D---- C:\Program Files\EverStep
2011-03-26 19:51:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-03-26 18:10:38 ----D---- C:\Program Files\WinClamAVShield
2011-03-26 14:05:45 ----D---- C:\Program Files\StepMania
2011-03-26 12:27:09 ----N---- C:\WINDOWS\system32\MpSigStub.exe

======List of files/folders modified in the last 1 months======

2011-04-25 21:32:40 ----D---- C:\WINDOWS\Prefetch
2011-04-25 21:32:38 ----D---- C:\WINDOWS\Internet Logs
2011-04-25 21:32:30 ----D---- C:\Program Files\trend micro
2011-04-25 21:13:29 ----SHD---- C:\System Volume Information
2011-04-25 19:08:19 ----D---- C:\WINDOWS\Temp
2011-04-25 17:48:02 ----HD---- C:\WINDOWS\inf
2011-04-25 17:47:49 ----D---- C:\WINDOWS\system32
2011-04-25 17:47:49 ----D---- C:\WINDOWS\repair
2011-04-25 17:47:45 ----D---- C:\WINDOWS\Registration
2011-04-25 13:04:31 ----SHD---- C:\WINDOWS\Installer
2011-04-25 13:04:08 ----HD---- C:\Config.Msi
2011-04-25 09:37:03 ----A---- C:\WINDOWS\LogonStudio.ini
2011-04-25 09:36:49 ----D---- C:\WINDOWS
2011-04-25 09:36:15 ----A---- C:\WINDOWS\win.ini
2011-04-25 09:35:51 ----D---- C:\WINDOWS\system32\CatRoot2
2011-04-25 00:20:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-04-24 16:16:26 ----D---- C:\Documents and Settings\home\Data aplikací\Spyware Terminator
2011-04-24 14:11:45 ----D---- C:\WINDOWS\Help
2011-04-24 14:11:38 ----D---- C:\Program Files\NVIDIA Corporation
2011-04-24 14:11:33 ----D---- C:\Documents and Settings
2011-04-24 14:10:03 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-04-24 14:10:03 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-04-24 14:09:53 ----D---- C:\WINDOWS\system32\drivers
2011-04-24 12:33:33 ----D---- C:\Documents and Settings\home\Data aplikací\FileZilla
2011-04-23 09:48:21 ----A---- C:\WINDOWS\MegaManager.INI
2011-04-22 23:15:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-04-22 12:35:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2011-04-22 08:30:28 ----D---- C:\Program Files\Microsoft Silverlight
2011-04-20 16:17:33 ----D---- C:\Documents and Settings\home\Data aplikací\Winamp
2011-04-20 16:15:30 ----D---- C:\Program Files\Maple 12
2011-04-20 16:15:08 ----D---- C:\watcom-1.3
2011-04-20 16:06:53 ----D---- C:\Documents and Settings\home\Data aplikací\uTorrent
2011-04-20 16:06:44 ----D---- C:\WINDOWS\Debug
2011-04-20 15:21:07 ----D---- C:\Program Files\PMlabs
2011-04-20 15:20:37 ----D---- C:\Program Files\Notepad++
2011-04-20 15:20:37 ----D---- C:\Documents and Settings\home\Data aplikací\Notepad++
2011-04-20 15:12:25 ----D---- C:\WINDOWS\WinSxS
2011-04-20 15:11:54 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-04-20 14:54:34 ----RSD---- C:\WINDOWS\assembly
2011-04-20 14:54:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-04-20 14:54:18 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2011-04-20 14:54:15 ----RD---- C:\Program Files
2011-04-20 11:31:59 ----D---- C:\Program Files\Opera
2011-04-16 13:30:07 ----D---- C:\WINDOWS\Microsoft.NET
2011-04-16 09:34:59 ----HD---- C:\WINDOWS\$hf_mig$
2011-04-16 09:33:58 ----D---- C:\Program Files\Internet Explorer
2011-04-16 09:33:47 ----D---- C:\WINDOWS\ie8updates
2011-04-16 09:23:12 ----A---- C:\WINDOWS\system32\MRT.exe
2011-04-15 23:35:38 ----D---- C:\Program Files\Semagic
2011-04-15 19:22:05 ----D---- C:\Program Files\Spyware Terminator
2011-04-15 18:15:55 ----A---- C:\WINDOWS\WININIT.INI
2011-04-14 12:13:05 ----D---- C:\cygwin
2011-04-13 11:53:44 ----D---- C:\Program Files\Digsby
2011-04-12 00:05:56 ----D---- C:\Documents and Settings\home\Data aplikací\Media Player Classic
2011-04-11 16:59:00 ----D---- C:\Documents and Settings\home\Data aplikací\codeblocks
2011-04-10 14:17:27 ----D---- C:\Program Files\FileZilla FTP Client
2011-04-08 10:52:24 ----D---- C:\WINDOWS\Downloaded Installations
2011-04-08 10:52:19 ----D---- C:\Program Files\Common Files
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\OpenCL.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2011-04-08 07:14:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2011-04-07 08:40:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-04-05 17:40:16 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-04-04 14:03:10 ----D---- C:\cygwindata
2011-03-30 11:46:54 ----D---- C:\Program Files\Winamp
2011-03-28 10:41:16 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-03-28 10:41:09 ----D---- C:\Program Files\SpywareBlaster
2011-03-26 19:57:08 ----SD---- C:\Documents and Settings\home\Data aplikací\Microsoft
2011-03-26 19:57:08 ----D---- C:\Documents and Settings\home\Data aplikací\Adobe
2011-03-26 18:03:24 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-03-26 18:03:19 ----SD---- C:\WINDOWS\Tasks
2011-03-26 17:21:49 ----SHD---- C:\WINDOWS\CSC
2011-03-26 01:03:56 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-03-04 137656]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2010-05-13 532224]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-03-04 61960]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2009-08-05 39424]
R3 monfilt;monfilt; C:\WINDOWS\system32\drivers\monfilt.sys [2008-02-14 1389056]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-15 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-04-08 12501600]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2008-12-19 993280]
S1 MpKsl68baffd7;MpKsl68baffd7; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{D6BA5CD9-E953-403E-914D-E1EBE9D89CE6}\MpKsl68baffd7.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 GIVEIO;GIVEIO; \??\C:\WINDOWS\SYSTEM32\DRIVERS\GIVEIO.SYS []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-10-22 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-10-22 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-10-22 21568]
S3 ivusb;Initio Driver for USB Default Controller; C:\WINDOWS\system32\DRIVERS\ivusb.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
S3 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-09-10 47360]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tapvpn;TAP VPN Adapter; C:\WINDOWS\system32\DRIVERS\tapvpn.sys [2006-10-26 27136]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 USB28xxBGA;USB 2861 Device; C:\WINDOWS\system32\DRIVERS\emBDA.sys [2008-09-12 540288]
S3 USB28xxOEM;USB 28xx OEM Filter; C:\WINDOWS\system32\DRIVERS\emOEM.sys [2008-09-12 443520]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 VICHW11;VICHW11; \??\C:\WINDOWS\SYSTEM32\DRIVERS\VICHW11.SYS []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Aladdin SQL Server;Aladdin SQL Server; C:\Program Files\Aladdin\Aladdin SQL Server\AladdinSQL.exe [2011-02-13 136192]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-03-04 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-03-04 135336]
R2 CWS_Apache_80;CWS_Apache_80; C:\ComplexWebServer\apache\bin\apache.exe [2005-10-09 20541]
R2 CWS_MySQL_3306;CWS_MySQL_3306; C:\ComplexWebServer\mysql\bin\mysqld.exe [2008-11-15 6447744]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2011-03-28 1242504]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-04-07 155752]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-04-08 2218600]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 ProtexisLicensing;ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [2007-06-05 177704]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2011-04-08 496128]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-09-28 49152]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2010-06-23 2435592]
R2 WDDMService;WD SmartWare Drive Manager; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2009-11-13 110592]
R2 WDSmartWareBackgroundService;WD SmartWare Background Service; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-06-16 20480]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 WTService;WTService; C:\WINDOWS\system32\atwtusb.exe [2009-02-05 388768]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-10-20 630272]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Log vypadá OK. Pokud můžete, otestujte soubory online na www.virustotal.com .

[ninja_girl]

Ráda bych, bohužel při nahrávání mi to píše chyba serveru (ve Firefoxu), v Opeře a Chrome se po uploadu nic nestane a zobrazí se znovu obrazovka s nahrávacím formulářem.

[Rudy]

Zkuste http://www.virusscan.jotti.org. Je to podobná stránka.

[ninja_girl]

Hmm, vypadá to, že Avira nechce, abych s těma souborama jakkoli manipulovala. Při pokusu o nahrátí souboru mi vyskočí Avira Guard s 'Access was denied' a po kliknutí na Odeslat soubor mi to napíše 'Nebyl odeslán soubor'. Mám zkusit vypnout Aviru, abych to mohla otestovat, nebo to není nutné a mám ty soubory jenom odstranit?

[Rudy]

Odstranit je můžete vždycky. Zkuste dočasně Aviru vypnout a otestovat. Není třeba mazat něco, co nemáme otestováno, neboť každý AV může mít chybnou detekci.

[ninja_girl]

Takže jsem ty soubory zkusila otestovat, ne všechny antiviry našly všechno. Kdyžtak tady jsou výsledky:
- zálohy starých, nyní nepoužívaných stránek:
jedna, dva, tři

- a jeden .exe soubor, který mám ze školy (vydaný pedagogy - výukový materiál).
čtyři

Už je to pár let, co ho tam mám ten .exe soubor, nikdy ale žádný antivirus neprotestoval až do teď. (měla jsem Avast, ClamAV a MS Security Essentials - ne zároveň ) To samé u té zálohy stránek, ta je tam pár měsíců. Soubory tedy odstraním (jsou už teď nepotřebné)


Ještě jsem se chtěla zeptat, zda nevíte, čím může být způsobená ta nemožnost se připojit na jedny stránky. V cmd mi ping na ně jede, v Chrome taky jede, z ostatních počítačů (stejná IP) taky jede. Ve Firefoxu mám nějaké doplňky, ale Opera a IE jsou defaultní instalace, takže by v tomto neměl být problém. Zkoušela jsem vymazat CCleanerem cache a historii, ale nic.

[Rudy]

Soubory pod jedna, dva, tři smažte, soubor pod 4 ponechte a dejte do vyjímek.

[ninja_girl]

Tak hotovo, soubory smazané, ten čtvrtý jsem hodila do ignore listu. Děkuju!

[Rudy]

Nemáte zač!

[ninja_girl]

A nevíte co by mohlo být za tím mým druhým problémem?

[Rudy]

A nevíte co by mohlo být za tím mým druhým problémem?

Zkuste smazat cache prohlížeče.

[ninja_girl]

Jak jsem psala výš, tak jsem to udělala, ale nepomohlo to.

[Rudy]

Na zkoušku vypněte Zone Alarm (firewall).

[ninja_girl]

Zkusila jsem, nepomohlo.