Problém se zvukem

[Knight.Paja]

Asi už třetí den mám problém se zvukem.Každých 5 minut,někdy i třeba několikrát po sobě se mi vypne zvuk v "Celková hlasitost" - Zařízení Wave -hlasitost se vždy úplně ztlumí a musím ji znovu zesílit a pořád dokola,někdy je to vyplé už při startu Windows.Někdy naběhne i Internetový prohlížeč s nějakou stránkou,která nelze otevřít.
Nyní jsem si začal všímat,že když zvuk zesílím a poslouchám tak slyším (i když na nic neklikám) jako by počítač na něco klik,i několikrát (při otevírání složek mi to dělá zvuk-klik) a zachvíly je vyplí zvuk.
Zkoušel jsem PC projet antivirama (avast 5-test po restartu-našlo mi to 2 viry,ale dal jsem je do truhly,ale problém přetrvává)
Teďka projíždím PC Ad-Aware.PC jsem pročistil CCleanerem.
Tady je LOG,kdybyjste na něco přišly prosím napište,je to důležité

Logfile of random's system information tool 1.07 (written by random/random)
Run by Pája at 2010-07-06 12:22:39
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 10 GB (13%) free of 80 GB
Total RAM: 2047 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:23:28, on 6.7.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\mHotkey.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Pája\Plocha\RSIT.exe
C:\Program Files\trend micro\Pája.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60076
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {055FD26D-3A88-4e15-963D-DC8493744B1D} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {399d96ca-6f9a-4fff-95fe-284e45ebb935} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [RGSC] D:\Program Files\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout obsah FLV videa s IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour ... se5036.cab
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} -
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Update Service (gupdate1c9951d609792ca) (gupdate1c9951d609792ca) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 13507 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{3283A1E5-59B7-4FFB-B236-7B286FD62D70}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2007-07-04 91568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{399d96ca-6f9a-4fff-95fe-284e45ebb935}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-26 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-26 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\WINDOWS\RaidTool\xInsIDE.exe [2007-03-21 36864]
"36X Raid Configurer"=C:\WINDOWS\system32\xRaidSetup.exe [2007-05-08 1953792]
"CHotkey"=C:\WINDOWS\mHotkey.exe [2006-12-08 547840]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-01-12 32768]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"QuickTime Task"=C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe [2006-09-01 282624]
"DAEMON Tools-1033"=C:\Program Files\D-Tools\daemon.exe [2004-08-22 81920]
""= []
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-26 149280]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-16 16862720]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"Cm108Sound"=RunDll32 cm108.cpl,CMICtrlWnd []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2009-01-21 92168]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles []
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"NokiaMusic FastStart"=C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe [2010-03-04 2192672]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-06-07 13902440]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-06-07 110696]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2010-07-06 524632]
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2007-02-08 95800]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-06-01 94208]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2007-07-23 800768]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"RGSC"=D:\Program Files\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe [2009-07-02 306088]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe

C:\Documents and Settings\Pája\Nabídka Start\Programy\Po spuštění
MagicDisc.lnk - C:\Program Files\MagicDisc\MagicDisc.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe"="C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe:*:Disabled:Sunbelt Kerio Firewall GUI"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\rct.exe"="C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\rct.exe:*:Enabled:rct"
"C:\Program Files\Microsoft Games\Rise of Nations\rise.exe"="C:\Program Files\Microsoft Games\Rise of Nations\rise.exe:*:Enabled:Rise of Nations"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Valve\hlds.exe"="C:\Program Files\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\FlatOut2\FlatOut2.exe"="C:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"D:\THE SIMS a torrenty\Race.Driver.GRID.Multi-5.Full-Rip.Skullptura\Race.Driver.GRID.Multi-5.Full-Rip.Skullptura\Grid\GRID.exe"="D:\THE SIMS a torrenty\Race.Driver.GRID.Multi-5.Full-Rip.Skullptura\Race.Driver.GRID.Multi-5.Full-Rip.Skullptura\Grid\GRID.exe:*:Enabled:GRID Executable"
"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"="C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe:*:Enabled:Sunbelt Kerio Firewall Service"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"E:\BitTorrent\bittorrent.exe"="E:\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"D:\THE SIMS a torrenty\Call of Duty 4 Modern Warfare Full-Rip Skullptura\Call.of.Duty.4.Modern.Warfare.Full-Rip.Skullptura\Call of Duty 4 - Modern Warfare\iw3mp.exe"="D:\THE SIMS a torrenty\Call of Duty 4 Modern Warfare Full-Rip Skullptura\Call.of.Duty.4.Modern.Warfare.Full-Rip.Skullptura\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:iw3mp"
"D:\CS SOURCE\hl2.exe"="D:\CS SOURCE\hl2.exe:*:Enabled:hl2"
"E:\HRY\MotoGP URT 3\motogp.exe"="E:\HRY\MotoGP URT 3\motogp.exe:*:Enabled:motogp"
"D:\Program Files\Outbreak\Outbreak.exe"="D:\Program Files\Outbreak\Outbreak.exe:*:Enabled:Codename: Outbrake"
"E:\Program files\Brothes in Arms Hells Highwaz\Brothers in Arms - Hell's Highway\Binaries\biahh.exe"="E:\Program files\Brothes in Arms Hells Highwaz\Brothers in Arms - Hell's Highway\Binaries\biahh.exe:*:Enabled:biahh"
"G:\SETUP\DATA\CODWAWMP.EXE"="G:\SETUP\DATA\CODWAWMP.EXE:*:Disabled:Call of Duty(R): World at War Multiplayer"
"D:\Program Files\Codemasters\DiRT Demo\DiRTDemo.exe"="D:\Program Files\Codemasters\DiRT Demo\DiRTDemo.exe:*:Enabled:DiRT Demo Executable"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"E:\FlatOut2\FlatOut2.exe"="E:\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"E:\Program files\TrackMania Sunrise\TmSunrise.exe"="E:\Program files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"C:\Program Files\Valve\hltv.exe"="C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Program Files\Call of Duty 4\iw3mp.exe"="D:\Program Files\Call of Duty 4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"E:\Program files\Colin McRae DIRT\DiRT.exe"="E:\Program files\Colin McRae DIRT\DiRT.exe:*:Enabled:DiRT Executable"
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe"="C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"D:\Program Files\Call of Duty 2\CoD2MP_s.exe"="D:\Program Files\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"D:\Program Files\Microsoft Games\Rise of Nations\rise.exe"="D:\Program Files\Microsoft Games\Rise of Nations\rise.exe:*:Enabled:Rise of Nations"
"D:\Program Files\Battlestations Pacific\bsp.exe"="D:\Program Files\Battlestations Pacific\bsp.exe:*:Enabled:Battlestations: Pacific"
"C:\Program Files\Java\jre1.6.0_02\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre1.6.0_02\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\FlashGet\flashget.exe"="C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"
"E:\Program files\Wheelman\Wheelman + CZ\Wheelman + CZ\Binaries\WheelmanGame-Final.exe"="E:\Program files\Wheelman\Wheelman + CZ\Wheelman + CZ\Binaries\WheelmanGame-Final.exe:*:Enabled:WheelmanGame-Final"
"D:\Program Files\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Program Files\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Program Files\Guitar\GHWT.exe"="D:\Program Files\Guitar\GHWT.exe:*:Enabled:Guitar Hero World Tour"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\sixteen tons entertainment\Emergency 4\Em4.exe"="C:\Program Files\sixteen tons entertainment\Emergency 4\Em4.exe:*:Enabled:Em4"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Documents and Settings\Pája\Plocha\utorrent-portable\utorrent.exe"="C:\Documents and Settings\Pája\Plocha\utorrent-portable\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"E:\Program files\Medal of Honor 2 BETA\MoHMPUpdater.exe"="E:\Program files\Medal of Honor 2 BETA\MoHMPUpdater.exe:*:Enabled:Medal of Honor™ MP Beta"
"D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\Prince of Persia.exe"="D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\Prince of Persia.exe:*:Enabled:Prince of Persia Zapomenuté písky"
"D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\GameSettings.exe"="D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\GameSettings.exe:*:Enabled:Prince of Persia Zapomenuté písky Settings"
"D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\gu.exe"="D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\gu.exe:*:Enabled:Prince of Persia Zapomenuté písky Update"
"D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\UPlayBrowser.exe"="D:\Program Files\Prince of Persia - Install\Prince of Persia Zapomenuté písky\UPlayBrowser.exe:*:Enabled:Prince of Persia Zapomenuté písky UPlay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Program Files\assasin creed2-install\AssassinsCreedIIGame.exe"="D:\Program Files\assasin creed2-install\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"D:\Program Files\assasin creed2-install\AssassinsCreedII.exe"="D:\Program Files\assasin creed2-install\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"D:\Program Files\assasin creed2-install\UPlayBrowser.exe"="D:\Program Files\assasin creed2-install\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b136a936-eadd-11dc-a7d7-001d60741191}]
shell\AutoRun\command - G:\autorun.exe


======List of files/folders created in the last 1 months======

2010-07-06 12:22:42 ----D---- C:\Program Files\trend micro
2010-07-06 12:22:39 ----D---- C:\rsit
2010-07-06 11:34:38 ----A---- C:\WINDOWS\system32\lsdelete.exe
2010-07-06 10:46:47 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{83C91755-2546-441D-AC40-9A6B4B860800}
2010-07-06 10:36:00 ----D---- C:\Program Files\Lavasoft
2010-07-06 10:21:05 ----D---- C:\Program Files\CCleaner
2010-07-06 09:57:27 ----D---- C:\Program Files\Emsisoft HiJackFree
2010-07-05 19:30:29 ----D---- C:\WINDOWS\Performance
2010-07-05 19:30:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
2010-07-05 19:28:55 ----D---- C:\Documents and Settings\Pája\Data aplikací\NVIDIA
2010-07-05 19:25:22 ----D---- C:\Program Files\Common Files\Skype
2010-07-05 09:11:32 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-07-04 11:24:09 ----D---- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
2010-06-28 19:58:32 ----D---- C:\Program Files\Ubisoft
2010-06-28 19:58:27 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2010-06-28 19:58:27 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2010-06-28 19:58:26 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2010-06-28 19:58:25 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2010-06-28 14:00:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2010-06-28 14:00:06 ----D---- C:\Program Files\NVIDIA Corporation
2010-06-28 13:59:29 ----A---- C:\WINDOWS\system32\OpenCL.dll
2010-06-28 13:59:29 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2010-06-28 13:59:29 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2010-06-28 13:59:27 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2010-06-27 13:28:38 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-06-27 13:08:31 ----D---- C:\Program Files\505games
2010-06-13 17:16:04 ----D---- C:\Program Files\WMV9_VCM
2010-06-10 16:08:34 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-10 16:08:24 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-10 16:06:11 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-10 16:03:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-10 16:03:36 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-10 16:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-07 17:35:38 ----A---- C:\WINDOWS\system32\nvwddi.dll
2010-06-07 17:35:30 ----A---- C:\WINDOWS\system32\nvrsth.dll
2010-06-07 17:35:30 ----A---- C:\WINDOWS\system32\nvrseng.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrszht.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrshe.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrsel.dll
2010-06-07 17:35:28 ----A---- C:\WINDOWS\system32\nvrsda.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrstr.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrssv.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrssl.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrssk.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsru.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrspt.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrspl.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsno.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsko.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsja.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsit.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrshu.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrses.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsde.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrscs.dll
2010-06-07 17:35:26 ----A---- C:\WINDOWS\system32\nvrsar.dll
2010-06-07 17:35:24 ----A---- C:\WINDOWS\system32\nvmctray.dll
2010-06-07 17:35:24 ----A---- C:\WINDOWS\system32\nvmccs.dll
2010-06-07 17:35:22 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2010-06-07 17:35:22 ----A---- C:\WINDOWS\system32\nvcpl.dll
2010-06-07 17:35:22 ----A---- C:\WINDOWS\system32\nvcolor.exe

======List of files/folders modified in the last 1 months======

2010-07-06 12:23:20 ----D---- C:\WINDOWS\Temp
2010-07-06 12:22:42 ----RD---- C:\Program Files
2010-07-06 11:34:38 ----D---- C:\WINDOWS\system32
2010-07-06 11:29:12 ----D---- C:\WINDOWS\system32\CatRoot2
2010-07-06 11:19:20 ----SD---- C:\WINDOWS\Tasks
2010-07-06 10:51:17 ----D---- C:\WINDOWS
2010-07-06 10:50:32 ----D---- C:\Documents and Settings\Pája\Data aplikací\DMCache
2010-07-06 10:49:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-06 10:48:41 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-06 10:47:51 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-07-06 10:46:47 ----SHD---- C:\WINDOWS\Installer
2010-07-06 10:46:47 ----HD---- C:\Config.Msi
2010-07-06 10:46:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-07-06 10:45:52 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-07-06 10:45:48 ----D---- C:\WINDOWS\system32\drivers
2010-07-06 10:36:13 ----D---- C:\WINDOWS\Prefetch
2010-07-06 10:31:20 ----D---- C:\Program Files\DNA
2010-07-06 10:26:52 ----D---- C:\Documents and Settings\Pája\Data aplikací\DNA
2010-07-06 10:21:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-07-06 08:28:58 ----D---- C:\Program Files\Conduit
2010-07-05 19:45:21 ----HD---- C:\WINDOWS\inf
2010-07-05 19:33:27 ----D---- C:\WINDOWS\system32\config
2010-07-05 19:33:01 ----D---- C:\WINDOWS\system32\wbem
2010-07-05 19:33:01 ----D---- C:\WINDOWS\Registration
2010-07-05 19:30:37 ----D---- C:\Program Files\Google
2010-07-05 19:30:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-07-05 19:30:27 ----D---- C:\Documents and Settings\Pája\Data aplikací\Ubisoft
2010-07-05 19:30:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-07-05 19:30:15 ----D---- C:\WINDOWS\system32\RTCOM
2010-07-05 19:29:59 ----D---- C:\WINDOWS\system32\DirectX
2010-07-05 19:29:48 ----HD---- C:\WINDOWS\PIF
2010-07-05 19:29:42 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-05 19:29:11 ----D---- C:\Program Files\Xilisoft
2010-07-05 19:29:07 ----D---- C:\Documents and Settings\Pája\Data aplikací\Adobe
2010-07-05 19:28:50 ----D---- C:\WINDOWS\Help
2010-07-05 19:28:21 ----D---- C:\Program Files\Mozilla Firefox
2010-07-05 19:26:34 ----D---- C:\WINDOWS\WinSxS
2010-07-05 19:26:22 ----D---- C:\Program Files\ICQ6.5
2010-07-05 19:25:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2010-07-05 19:25:23 ----RD---- C:\Program Files\Skype
2010-07-05 19:25:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-07-05 19:02:15 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-07-05 18:56:40 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-07-03 17:59:44 ----RSD---- C:\WINDOWS\assembly
2010-07-03 11:05:10 ----A---- C:\WINDOWS\system.ini
2010-07-02 09:15:42 ----D---- C:\Documents and Settings\Pája\Data aplikací\Skype
2010-07-02 09:14:15 ----D---- C:\Documents and Settings\Pája\Data aplikací\skypePM
2010-07-02 07:45:18 ----A---- C:\WINDOWS\NeroDigital.ini
2010-06-29 07:16:29 ----D---- C:\Documents and Settings\Pája\Data aplikací\esmska
2010-06-28 22:57:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-06-28 13:59:20 ----D---- C:\NVIDIA
2010-06-28 11:57:23 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-06-27 13:28:52 ----D---- C:\Program Files\Adobe
2010-06-27 13:28:38 ----D---- C:\Program Files\Common Files
2010-06-27 13:26:11 ----D---- C:\WINDOWS\Debug
2010-06-25 19:41:05 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-06-24 14:13:44 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-24 13:54:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-23 14:56:41 ----A---- C:\WINDOWS\wincmd.ini
2010-06-23 14:56:39 ----D---- C:\Program Files\totalcmd
2010-06-23 09:15:24 ----D---- C:\Documents and Settings\Pája\Data aplikací\ICQ
2010-06-10 16:08:22 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-10 16:07:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-06-10 16:06:01 ----D---- C:\Program Files\Internet Explorer
2010-06-10 16:05:52 ----D---- C:\WINDOWS\ie8updates
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-06-08 01:57:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2007-02-20 302000]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2007-02-20 71088]
R1 prodrv03;Star Force copy protection driver v3; C:\WINDOWS\System32\drivers\prodrv03.sys [2008-04-12 115968]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-17 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-17 25888]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-20 4800000]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2008-07-13 101120]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-06-08 10531200]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-01-22 9856]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2009-01-13 19336]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2009-01-13 49160]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-16 38656]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-10-02 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-10-02 25512]
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-05-04 25280]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-12 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-12 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-12 21568]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2009-03-19 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2009-03-19 8320]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-08-01 47360]
S3 se46bus;Sony Ericsson Device 070 driver (WDM); C:\WINDOWS\system32\DRIVERS\se46bus.sys [2006-11-30 61536]
S3 se46mdfl;Sony Ericsson Device 070 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se46mdfl.sys [2006-11-30 9360]
S3 se46mdm;Sony Ericsson Device 070 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se46mdm.sys [2006-11-30 97088]
S3 se46mgmt;Sony Ericsson Device 070 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se46mgmt.sys [2006-11-30 88624]
S3 se46nd5;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (NDIS); C:\WINDOWS\system32\DRIVERS\se46nd5.sys [2006-11-30 18704]
S3 se46obex;Sony Ericsson Device 070 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se46obex.sys [2006-11-30 86432]
S3 se46unic;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (WDM); C:\WINDOWS\system32\DRIVERS\se46unic.sys [2006-11-30 90800]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBPNPA;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2007-07-20 1312768]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2008-07-17 28672]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2009-01-13 29192]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\WINDOWS\system32\drivers\WmHidLo.sys [2009-01-13 31240]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2009-01-13 14728]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-26 153376]
R2 KPF4;Sunbelt Kerio Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-02-20 1222192]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-07-06 1029456]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-06-07 154728]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-09-23 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-06-25 219128]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S2 gupdate1c9951d609792ca;Google Update Service (gupdate1c9951d609792ca); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-22 133104]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-06-08 208896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Knight.Paja]

musím odjet pryč,všechny logy a ostatní sem dám později

[Knight.Paja]

odinstaloval jsem virtual. mech.,a Ad-Aware,bittorrent jsem v PC nenašel
v SPTD nemůžu dát uninstall,kliknout jde pouze na install

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 15:03 on 06/07/2010 (Pája)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-



Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: error reading MBR
kernel: MBR read successfully


Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: error reading MBR
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll prosync1.sys sfsync02.sys atapi.sys pciide.sys PCIIDEX.SYS
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb812cf28
\Driver\ACPI -> ACPI.sys @ 0xb7f7fcb8
\Driver\atapi -> prosync1.sys @ 0xb85ae6c1
IoDeviceObjectType ->\Device\Harddisk0\DR0 ->

OTL-po vyhledávání se mi sekne,-bílé okno-jde pouze křížek(ukončit operaci) nebo minimalizovat
Teď se mi na ploše objevilo Thumbs.db (řekl bych že je to skrytá složka)

[Knight.Paja]

měl bych mět,podivam se

[Knight.Paja]

je to tohle CD?

[Knight.Paja]

abootuj do kasl rezimu opet spust mbr -a -t a bez parametru

pka i hxd vytahni nulty sektor, napsi i zda problem se zvukem odpadnul
tomuto moc nerozumím,prosim o vysvětlení,-jsem začátečník

Neztratím žádná data?

[Knight.Paja]

jeste k tomu programu http://mh-nexus.de/en/downloads.php?product=Hx
musím ho nainstalovat,po instalaci tam jsou samé otazníky(místo otevřít atd.)
ted jsem si vsiml ze se tu zacala resit snad stejná diskuze http://www.viry.cz/forum/viewtopic.php?f=13&t=102316

[Knight.Paja]

nevím jestli to je ono

[Knight.Paja]

můžu nabootovat system

[Knight.Paja]

31 C0 8E D8 8E C0 8E D0 BC 00 7C BE 00 7C BF 00 06 B9 80 00 66 56 66 5E FC F3 66 A5 90 EA 22 06 00 00 66 31 C0 BE BE 07 B1 04 FD FC 66 39 44 08 72 08 66 8B 44 08 66 03 44 0C 83 C6 10 83 2E 80 06 04 E2 E8 66 09 C0 74 3B 66 83 C0 02 B9 40 00 BB 00 7C BF FB 06 83 2E 80 06 04 E8 69 00 72 24 66 68 83 C4 14 90 66 68 04 46 E2 F9 66 68 80 FF D7 30 66 68 89 C3 B9 00 66 68 BE 00 7C 66 0F 83 7E 75 90 E8 BE BE 07 B1 04 80 3C 80 74 0F 38 2C 0F 85 95 00 83 C6 10 E2 F0 FD FC CD 18 66 8B 44 08 89 E3 B9 01 00 E8 1E 00 73 0D 8B 4C 02 B8 01 02 CD 13 90 0F 82 8C 00 81 3E FE 7D 55 AA 0F 85 A4 00 EA 00 7C 00 00 66 60 BB AA 55 B4 41 CD 13 73 04 F9 66 61 C3 81 FB 55 AA 75 F6 F6 C1 01 74 F1 66 61 66 60 90 6A 00 6A 00 66 50 06 53 51 6A 10 B4 42 89 E6 CD 13 61 66 61 C3 66 69 DB FD 43 03 00 66 81 C3 C3 9E 26 00 66 89 D8 66 C1 E8 10 66 25 FF 00 00 00 C3 5E AC 08 C0 74 FC 56 1E BB 07 00 B4 0E CD 10 1F EB EE E8 EB FF 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61 62 6C 65 00 E8 D0 FF 45 72 72 6F 72 20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 E8 AE FF 4D 69 73 73 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 59 3D 5A 3D 00 00 80 01 01 00 07 FE FF FF 3F 00 00 00 D8 1A C4 09 00 00 C1 FF 0F FE FF FF 17 1B C4 09 E9 7C 7E 1B 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA

[Knight.Paja]

ted jdu na ten boot

[Knight.Paja]

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK


Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll prosync1.sys sfsync02.sys atapi.sys pciide.sys PCIIDEX.SYS
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb812cf28
\Driver\ACPI -> ACPI.sys @ 0xb7f7fcb8
\Driver\atapi -> prosync1.sys @ 0xb85ae6c1
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
user & kernel MBR OK


33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04 38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5 83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88 4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B 80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83 46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0 B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56 00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC 43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56 0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C 8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A 56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD 13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60 6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A 01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B 32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2C 44 63 59 3D 5A 3D 00 00 80 01 01 00 07 FE FF FF 3F 00 00 00 D8 1A C4 09 00 00 C1 FF 0F FE FF FF 17 1B C4 09 E9 7C 7E 1B 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA

[Knight.Paja]

zatím zvuk jede,třeba za hodinu napíšu,jestli jede stále,DĚKUJI za pomoc,pokud bude problém znovu napíšu:-)...ještě jednou DĚKUJI

[Knight.Paja]

ComboFix 10-07-05.03 - Pája 06.07.2010 18:44:48.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1331 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pája\Plocha\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Sunbelt Kerio Personal Firewall *enabled* {E659E0EE-10E6-49B7-8696-60F38D0EB174}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

E:\install.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-06-06 do 2010-07-06 )))))))))))))))))))))))))))))))
.

2010-07-06 15:17 . 2010-07-06 15:17 -------- d-----w- c:\program files\HxD
2010-07-06 11:09 . 2010-07-06 11:09 77312 ----a-w- C:\mbr.exe
2010-07-06 10:22 . 2010-07-06 10:23 -------- d-----w- c:\program files\trend micro
2010-07-06 10:22 . 2010-07-06 10:23 -------- d-----w- C:\rsit
2010-07-06 09:31 . 2010-07-06 09:31 -------- d-----w- c:\documents and settings\LocalService\Plocha
2010-07-06 08:36 . 2010-07-06 10:54 -------- d-----w- c:\program files\Lavasoft
2010-07-06 08:21 . 2010-07-06 08:21 -------- d-----w- c:\program files\CCleaner
2010-07-06 07:57 . 2010-07-06 08:08 -------- d-----w- c:\program files\Emsisoft HiJackFree
2010-07-05 17:45 . 2010-07-05 17:45 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-07-05 17:33 . 2010-07-05 17:33 -------- d-----w- c:\windows\system32\wbem\Repository
2010-07-05 17:30 . 2010-07-05 17:30 -------- d-----w- c:\windows\Performance
2010-07-05 17:25 . 2010-07-05 17:25 -------- d-----w- c:\program files\Common Files\Skype
2010-07-05 10:12 . 2010-07-05 10:12 -------- d-sh--w- c:\documents and settings\NetworkService\PrivacIE
2010-07-05 10:12 . 2010-07-05 10:12 -------- d-----r- c:\documents and settings\NetworkService\Oblíbené položky
2010-07-05 07:11 . 2010-06-01 17:37 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-07-05 06:57 . 2010-07-05 06:57 -------- d-sh--w- c:\documents and settings\LocalService\PrivacIE
2010-07-05 06:57 . 2010-07-05 06:57 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-07-04 15:57 . 2010-07-04 15:57 -------- d-sh--w- c:\windows\system32\config\systemprofile\PrivacIE
2010-07-04 15:57 . 2010-07-04 15:57 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-07-04 09:24 . 2010-07-05 17:30 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor
2010-06-29 11:52 . 2010-06-28 20:57 38848 ----a-w- c:\windows\avastSS.scr
2010-06-28 17:58 . 2010-06-28 17:58 -------- d-----w- c:\program files\Ubisoft
2010-06-28 17:58 . 2010-02-04 08:01 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2010-06-28 17:58 . 2010-02-04 08:01 528216 ----a-w- c:\windows\system32\XAudio2_6.dll
2010-06-28 17:58 . 2010-02-04 08:01 238936 ----a-w- c:\windows\system32\xactengine3_6.dll
2010-06-28 17:58 . 2010-02-04 08:01 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll
2010-06-28 12:00 . 2010-06-28 12:00 217180 ----a-w- c:\windows\system32\nvdrsdb0.bin
2010-06-28 12:00 . 2010-06-28 12:22 217180 ----a-w- c:\windows\system32\nvdrsdb1.bin
2010-06-28 12:00 . 2010-06-28 12:22 1 ----a-w- c:\windows\system32\nvdrssel.bin
2010-06-28 12:00 . 2010-07-05 17:02 -------- d-----w- c:\program files\NVIDIA Corporation
2010-06-28 11:59 . 2010-06-07 23:57 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-06-28 11:59 . 2010-06-07 23:57 2632296 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-06-28 11:59 . 2010-06-07 23:57 2165352 ----a-w- c:\windows\system32\nvcuvid.dll
2010-06-28 11:59 . 2010-06-07 23:57 2186342 ----a-w- c:\windows\system32\nvdata.bin
2010-06-28 11:59 . 2010-06-07 23:57 10256384 ----a-w- c:\windows\system32\nvcompiler.dll
2010-06-27 11:28 . 2010-06-27 11:28 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-06-27 11:08 . 2010-06-27 11:08 -------- d-----w- c:\program files\505games
2010-06-13 15:16 . 2010-06-13 15:16 -------- d-----w- c:\program files\WMV9_VCM
2010-06-10 12:55 . 2010-05-06 10:35 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-06 15:38 . 2008-02-08 12:34 7397084 ----a-w- c:\windows\system32\drivers\fwdrv.err
2010-07-06 12:58 . 2008-07-26 18:36 -------- d-----w- c:\program files\MagicISO
2010-07-06 11:03 . 2008-03-05 17:56 -------- d-----w- c:\program files\D-Tools
2010-07-06 08:45 . 2008-10-23 17:57 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-07-06 08:31 . 2008-08-24 10:26 -------- d-----w- c:\program files\DNA
2010-07-06 06:28 . 2008-11-19 15:39 -------- d-----w- c:\program files\Conduit
2010-07-05 17:30 . 2008-02-22 14:34 -------- d-----w- c:\program files\Google
2010-07-05 17:29 . 2008-01-25 22:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-07-05 17:29 . 2009-12-25 18:02 -------- d-----w- c:\program files\Xilisoft
2010-07-05 17:26 . 2009-03-10 05:59 -------- d-----w- c:\program files\ICQ6.5
2010-07-05 17:25 . 2009-04-10 07:31 -------- d-----r- c:\program files\Skype
2010-07-03 08:59 . 2010-07-03 08:59 2855 ----a-w- c:\windows\PIF\autorun.PIF
2010-06-29 11:46 . 2009-07-03 05:11 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-06-28 20:57 . 2010-03-11 15:07 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-06-28 20:37 . 2010-03-11 15:07 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-06-28 20:37 . 2010-03-11 15:07 165456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-06-28 20:33 . 2010-03-11 15:07 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-06-28 20:32 . 2010-03-11 15:07 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-06-28 20:32 . 2010-03-11 15:07 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-06-28 20:32 . 2010-03-11 15:07 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-06-28 20:32 . 2010-03-11 15:07 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-06-25 17:41 . 2008-10-04 16:07 219128 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-06-25 17:15 . 2008-10-04 16:07 138592 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-06-24 11:54 . 2006-03-02 12:00 86144 ----a-w- c:\windows\system32\perfc005.dat
2010-06-24 11:54 . 2006-03-02 12:00 445990 ----a-w- c:\windows\system32\perfh005.dat
2010-06-23 12:56 . 2008-01-26 07:35 -------- d-----w- c:\program files\totalcmd
2010-06-07 23:57 . 2008-10-07 12:33 4554752 ----a-w- c:\windows\system32\nvcuda.dll
2010-06-07 23:57 . 2008-01-25 22:21 600680 ----a-w- c:\windows\system32\nvudisp.exe
2010-06-07 23:57 . 2007-06-28 16:43 6300544 ----a-w- c:\windows\system32\nv4_disp.dll
2010-06-07 23:57 . 2007-06-28 16:43 232040 ----a-w- c:\windows\system32\nvcodins.dll
2010-06-07 23:57 . 2007-06-28 16:43 232040 ----a-w- c:\windows\system32\nvcod.dll
2010-06-07 23:57 . 2007-06-28 16:43 15192064 ----a-w- c:\windows\system32\nvoglnt.dll
2010-06-07 23:57 . 2007-06-28 16:43 1359872 ----a-w- c:\windows\system32\nvapi.dll
2010-06-07 23:57 . 2007-06-28 16:43 10531200 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-06-02 14:17 . 2008-02-02 15:52 -------- d-----w- c:\program files\Electronic Arts
2010-05-28 10:58 . 2008-01-25 22:20 600680 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-05-22 08:25 . 2008-02-07 18:09 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-05-06 10:35 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 08:09 . 2006-03-02 12:00 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:32 . 2006-03-02 12:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2008-05-10 17:36 . 2008-05-10 17:36 16156 ----a-w- c:\program files\pldecal.wad
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OM2_Monitor"="c:\program files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [2007-02-08 95800]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-06-01 94208]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2007-07-23 800768]
"RGSC"="d:\program files\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe" [2009-07-02 306088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"36X Raid Configurer"="c:\windows\system32\xRaidSetup.exe" [2007-05-08 1953792]
"CHotkey"="mHotkey.exe" [2006-12-08 547840]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 32768]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2006-09-01 282624]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 159744]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-26 149280]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2009-01-21 92168]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
"NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2010-03-04 2192672]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-06-07 13902440]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-06-07 110696]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Intel Core 2 Duo\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

c:\documents and settings\P ja\Nabˇdka Start\Programy\Po spuçtŘnˇ\
MagicDisc.lnk - c:\program files\MagicDisc\MagicDisc.exe [2008-7-26 565248]
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-1-26 131072]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4ss.exe"=
"d:\\CS SOURCE\\hl2.exe"=
"c:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"e:\\Program files\\TrackMania Sunrise\\TmSunrise.exe"=
"c:\\Program Files\\Valve\\hltv.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\Call of Duty 4\\iw3mp.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"d:\\Program Files\\Microsoft Games\\Rise of Nations\\rise.exe"=
"d:\\Program Files\\GTA IV\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Program Files\\Guitar\\GHWT.exe"=
"c:\\Program Files\\sixteen tons entertainment\\Emergency 4\\Em4.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"e:\\Program files\\Medal of Honor 2 BETA\\MoHMPUpdater.exe"=
"d:\\Program Files\\Prince of Persia - Install\\Prince of Persia Zapomenuté písky\\Prince of Persia.exe"=
"d:\\Program Files\\Prince of Persia - Install\\Prince of Persia Zapomenuté písky\\GameSettings.exe"=
"d:\\Program Files\\Prince of Persia - Install\\Prince of Persia Zapomenuté písky\\gu.exe"=
"d:\\Program Files\\Prince of Persia - Install\\Prince of Persia Zapomenuté písky\\UPlayBrowser.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\assasin creed2-install\\AssassinsCreedIIGame.exe"=
"d:\\Program Files\\assasin creed2-install\\AssassinsCreedII.exe"=
"d:\\Program Files\\assasin creed2-install\\UPlayBrowser.exe"=

R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\system32\drivers\sfdrv01a.sys [5.7.2006 14:46 63352]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [11.3.2010 17:07 165456]
R1 fwdrv;Firewall Driver;c:\windows\system32\drivers\fwdrv.sys [20.2.2007 14:34 302000]
R1 khips;Kerio HIPS Driver;c:\windows\system32\drivers\khips.sys [20.2.2007 14:34 71088]
R1 prodrv03;Star Force copy protection driver v3;c:\windows\system32\drivers\prodrv03.sys [12.4.2008 17:48 115968]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [11.3.2010 17:07 17744]
S2 gupdate1c9951d609792ca;Google Update Service (gupdate1c9951d609792ca);c:\program files\Google\Update\GoogleUpdate.exe [22.2.2009 20:42 133104]
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [26.1.2008 0:03 38656]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [5.7.2010 19:45 23456]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [16.1.2009 16:29 13224]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [24.12.2009 20:48 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [24.12.2009 20:48 8320]
S3 se46bus;Sony Ericsson Device 070 driver (WDM);c:\windows\system32\drivers\se46bus.sys [14.5.2008 6:53 61536]
S3 se46mdfl;Sony Ericsson Device 070 USB WMC Modem Filter;c:\windows\system32\drivers\se46mdfl.sys [14.5.2008 7:02 9360]
S3 se46mdm;Sony Ericsson Device 070 USB WMC Modem Driver;c:\windows\system32\drivers\se46mdm.sys [14.5.2008 7:02 97088]
S3 se46mgmt;Sony Ericsson Device 070 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\se46mgmt.sys [18.5.2008 7:40 88624]
S3 se46nd5;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (NDIS);c:\windows\system32\drivers\se46nd5.sys [24.5.2008 7:33 18704]
S3 se46obex;Sony Ericsson Device 070 USB WMC OBEX Interface;c:\windows\system32\drivers\se46obex.sys [18.5.2008 7:40 86432]
S3 se46unic;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (WDM);c:\windows\system32\drivers\se46unic.sys [24.5.2008 7:33 90800]
S3 USBPNPA;USB PnP Sound Device Interface;c:\windows\system32\drivers\CM108.sys [25.12.2008 19:29 1312768]
.
Obsah adresáře 'Naplánované úlohy'

2010-07-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-22 18:42]

2010-07-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-22 18:42]

2010-07-06 c:\windows\Tasks\User_Feed_Synchronization-{3283A1E5-59B7-4FFB-B236-7B286FD62D70}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
IE: Analyzovat LeechGetem
IE: Download All Links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download ALL with IDA
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download LeechGetem
IE: Download s průvodcem LeechGetu
IE: Download with IDA
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel
IE: Stáhnout obsah FLV videa s IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Stáhnout s IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Stáhnout všechny odkazy s IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: {{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
FF - ProfilePath - c:\documents and settings\Pája\Data aplikací\Mozilla\Firefox\Profiles\ytph7k1t.default\
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - component: c:\documents and settings\Pája\Data aplikací\IDM\idmmzcc2\components\idmmzcc.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

BHO-{399d96ca-6f9a-4fff-95fe-284e45ebb935} - (no file)
HKCU-Run-BitTorrent DNA - c:\program files\DNA\btdna.exe
HKLM-Run-Cm108Sound - cm108.cpl
AddRemove-{8C3727F2-8E37-49E4-820C-03B1677F53B6} - c:\program files\InstallShield Installation Information\{8C3727F2-8E37-49E4-820C-03B1677F53B6}\setup.exe
AddRemove-Age of empires CZ - c:\program files\Microsoft Games\Age of Empires\Uninstal.exe
AddRemove-BitTorrent DNA - c:\program files\DNA\btdna.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-06 18:51
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,fa,79,7f,b3,b1,fd,d8,46,80,39,6b,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,fa,79,7f,b3,b1,fd,d8,46,80,39,6b,\

[HKEY_USERS\S-1-5-21-1177238915-1343024091-682003330-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:0a,f2,69,41,2f,43,ce,5f,d7,df,b0,fb,eb,23,74,67,0b,41,09,e5,c5,53,85,
d5,a4,7f,20,bd,d8,20,a9,29,8c,fb,08,20,39,94,a6,d6,af,fa,d2,be,fd,bb,58,22,\
"??"=hex:b2,dc,1c,56,27,e8,fa,f7,d5,6d,fd,74,06,1e,5d,3a

[HKEY_USERS\S-1-5-21-1177238915-1343024091-682003330-1005\Software\SecuROM\License information*]
"datasecu"=hex:6d,10,47,f7,b7,e9,02,c2,be,16,0b,b3,62,bd,93,83,e6,ae,4c,a2,81,
83,2b,31,f0,e2,a0,c4,84,b6,76,a5,b7,46,12,b5,eb,51,88,0f,18,db,49,cc,43,a6,\
"rkeysecu"=hex:3f,b6,d2,29,90,c3,e8,70,61,a6,7a,3f,9e,29,81,bf

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):11,13,d4,75,c9,7f,2f,4e,6a,26,75,bc,ee,dd,89,e6,88,51,50,d9,4c,
47,3f,38,05,bc,e7,1c,15,e5,91,84,77,15,76,0b,97,bc,9a,34,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{6d670b50-8fa9-4b33-89db-2751886450ac}]
@Denied: (Full) (Everyone)
"Model"=dword:000000f7
"Therad"=dword:0000000f
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):ce,be,cb,94,35,75,93,08,13,ba,82,c0,08,86,58,96,1f,4c,5d,e8,20,
3b,5e,d7,54,d5,7a,92,a1,b2,a9,2b,ae,38,f8,44,53,3b,b5,33,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{90e72731-5581-4a6c-ae13-6ec0ce7ac62c}]
@Denied: (Full) (Everyone)
"Model"=dword:000000cc
"Therad"=dword:0000001d
.
Celkový čas: 2010-07-06 18:55:26
ComboFix-quarantined-files.txt 2010-07-06 16:55

Před spuštěním: Volných bajtů: 11 973 128 192
Po spuštění: Volných bajtů: 11 941 044 224

WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - E6385D02CB9CA5AC1C5443D2A7FFBE49

[Knight.Paja]

Pc jsem vycistil,ten proces bych měl smazat jak?