úplně zavirováno - VYŘEŠENO DĚKUJI

[stonehod]

Dobrý den přeji,
Kamarádka se vrátila po roce z Řecka a tento její notebook je asi zavirovaný.Při zpuštění pokaždé hlásí chybu a chce spustit program Chkdsk a pokaždé něco opraví. Vše se načítá neskutečně dlouho.Dokonce i ccleaner pracoval asi 20 minut. Vytvořil jsem log, tak snad dokážete pomoci...Ještě mám jeden dotaz. Občas se jí notebook sám z ničeho nic vypne..U dcery to bylo špinavým ventilátorem, ale strašně jí hučel-Může to být i zde??, když nehučí??Děkuji za pomoc
stonehod

Logfile of random's system information tool 1.06 (written by random/random)
Run by Iveta at 2010-08-20 11:39:32
Microsoft® Windows Vista™ Business
System drive C: has 60 GB (54%) free of 112 GB
Total RAM: 765 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:39:43, on 20.8.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\SYSTEM32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\SiS VGA Utilities\SiSTray.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Vertex Wireless\VW100 Connection Manager\Connection Manager.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Iveta\Desktop\RSIT.exe
C:\Program Files\trend micro\Iveta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SiSTray] %ProgramFiles%\SiS VGA Utilities\SiSTray.exe
O4 - HKLM\..\Run: [TouchPadHotKey] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{526345BF-35C5-48D9-8A6A-41135B9C9AED}: NameServer = 78.136.128.4 78.136.128.12
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Program Files\Eset\nod32krn.exe (file missing)
O23 - Service: TOSHIBA Bluetooth Service - Unknown owner - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (file missing)

--
End of file - 4495 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{BF9FB59A-93D7-453E-9093-B3D168AD2D57}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-05-30 1410344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll [2006-10-12 434279]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-05-10 869936]
"SiSTray"=C:\Program Files\SiS VGA Utilities\SiSTray.exe [2007-09-18 552960]
"TouchPadHotKey"=C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe [2007-08-13 364544]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"=C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [2007-03-29 222128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
shell\AutoRun\command - D:\setup_vmc_lite.exe /checkApplicationPresence

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{228dacd7-203e-11de-959c-988f869c0a69}]
shell\AutoRun\command - D:\StartVMCLite.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dd531b35-a895-11df-b954-afea2d29545e}]
shell\AutoRun\command - D:\VW100_Modem_Installation.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f3b94db9-1865-11de-b6b6-908389dbc26c}]
shell\AutoRun\command - D:\StartVMCLite.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fcf3ec03-1860-11de-aa32-d68c2b6ce10a}]
shell\AutoRun\command - D:\StartVMCLite.exe


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-08-20 11:39:32 ----D---- C:\rsit
2010-08-20 11:13:43 ----D---- C:\Program Files\Mozilla Firefox
2010-08-19 16:53:27 ----A---- C:\Windows\system32\quartz.dll
2010-08-19 16:53:27 ----A---- C:\Windows\system32\msvidc32.dll
2010-08-19 16:53:27 ----A---- C:\Windows\system32\msrle32.dll
2010-08-19 16:53:26 ----A---- C:\Windows\system32\tsbyuv.dll
2010-08-19 16:53:26 ----A---- C:\Windows\system32\msyuv.dll
2010-08-19 16:53:26 ----A---- C:\Windows\system32\iyuv_32.dll
2010-08-19 16:53:26 ----A---- C:\Windows\system32\avifil32.dll
2010-08-19 16:53:25 ----A---- C:\Windows\system32\msvfw32.dll
2010-08-19 16:53:25 ----A---- C:\Windows\system32\mciavi32.dll
2010-08-19 16:53:25 ----A---- C:\Windows\system32\avicap32.dll
2010-08-19 16:41:20 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2010-08-19 16:40:37 ----A---- C:\Windows\system32\wmp.dll
2010-08-19 16:40:32 ----A---- C:\Windows\system32\unregmp2.exe
2010-08-19 16:40:29 ----A---- C:\Windows\system32\spwmp.dll
2010-08-19 16:40:27 ----A---- C:\Windows\system32\dxmasf.dll
2010-08-19 16:40:22 ----A---- C:\Windows\system32\wmploc.DLL
2010-08-17 17:37:30 ----A---- C:\Windows\system32\MpSigStub.exe
2010-08-17 16:11:47 ----A---- C:\Windows\system32\browserchoice.exe
2010-08-17 16:08:30 ----A---- C:\Windows\system32\nshhttp.dll
2010-08-17 16:08:22 ----A---- C:\Windows\system32\httpapi.dll
2010-08-16 18:42:35 ----A---- C:\Windows\system32\wups2.dll
2010-08-16 18:42:35 ----A---- C:\Windows\system32\wuauclt.exe
2010-08-16 18:42:34 ----A---- C:\Windows\system32\wucltux.dll
2010-08-16 18:42:34 ----A---- C:\Windows\system32\wuaueng.dll
2010-08-16 18:42:01 ----A---- C:\Windows\system32\wups.dll
2010-08-16 18:42:01 ----A---- C:\Windows\system32\wudriver.dll
2010-08-16 18:42:00 ----A---- C:\Windows\system32\wuapi.dll
2010-08-16 18:41:39 ----A---- C:\Windows\system32\wuwebv.dll
2010-08-16 18:41:39 ----A---- C:\Windows\system32\wuapp.exe
2010-08-15 20:56:12 ----D---- C:\Program Files\Vertex Wireless
2010-08-15 20:56:10 ----D---- C:\ProgramData\Vertex Wireless

======List of files/folders modified in the last 1 months======

2010-08-20 11:39:35 ----D---- C:\Program Files\trend micro
2010-08-20 11:39:28 ----D---- C:\Windows\temp
2010-08-20 11:36:09 ----D---- C:\Windows\Debug
2010-08-20 11:36:09 ----D---- C:\Windows
2010-08-20 11:32:12 ----D---- C:\Windows\Microsoft.NET
2010-08-20 11:32:04 ----RSD---- C:\Windows\assembly
2010-08-20 11:21:30 ----D---- C:\Program Files\CCleaner
2010-08-20 11:14:21 ----D---- C:\Users\Iveta\AppData\Roaming\Mozilla
2010-08-20 11:13:43 ----RD---- C:\Program Files
2010-08-20 11:05:10 ----D---- C:\Windows\rescache
2010-08-20 10:37:45 ----D---- C:\System Volume Information
2010-08-20 10:36:55 ----D---- C:\Windows\System32
2010-08-20 10:36:54 ----D---- C:\Windows\inf
2010-08-20 10:36:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-20 10:34:29 ----D---- C:\Windows\winsxs
2010-08-20 10:33:08 ----HD---- C:\ProgramData
2010-08-20 10:28:02 ----D---- C:\Windows\AppPatch
2010-08-20 10:27:59 ----D---- C:\Windows\system32\XPSViewer
2010-08-20 10:27:59 ----D---- C:\Windows\system32\wbem
2010-08-20 10:27:59 ----D---- C:\Windows\system32\en-US
2010-08-20 10:27:57 ----D---- C:\Windows\system32\migration
2010-08-20 10:27:57 ----D---- C:\Windows\system32\drivers
2010-08-20 10:27:57 ----D---- C:\Windows\system32\cs-CZ
2010-08-20 10:27:57 ----D---- C:\Program Files\Movie Maker
2010-08-20 10:27:57 ----D---- C:\Program Files\Internet Explorer
2010-08-20 10:24:06 ----D---- C:\Windows\system32\WDI
2010-08-20 10:13:29 ----D---- C:\Program Files\Microsoft Silverlight
2010-08-20 10:08:26 ----D---- C:\Windows\system32\catroot2
2010-08-20 09:36:52 ----SHD---- C:\Windows\Installer
2010-08-20 09:34:59 ----SD---- C:\ProgramData\Microsoft
2010-08-20 08:50:47 ----AD---- C:\ProgramData\TEMP
2010-08-20 08:50:21 ----D---- C:\Windows\tracing
2010-08-20 08:41:29 ----D---- C:\Program Files\Windows Media Player
2010-08-19 16:03:19 ----D---- C:\Users\Iveta\AppData\Roaming\Skype
2010-08-19 16:03:13 ----D---- C:\Users\Iveta\AppData\Roaming\skypePM
2010-08-19 13:22:15 ----D---- C:\Windows\system32\config
2010-08-19 13:21:55 ----D---- C:\Windows\Tasks
2010-08-19 13:21:55 ----D---- C:\Windows\system32\spool
2010-08-19 13:21:55 ----D---- C:\Windows\system32\CodeIntegrity
2010-08-19 13:21:52 ----D---- C:\Windows\registration
2010-08-19 12:27:19 ----D---- C:\Windows\system32\Tasks
2010-08-19 12:27:09 ----D---- C:\ProgramData\Skype
2010-08-19 11:35:36 ----A---- C:\Windows\win.ini
2010-08-19 00:02:35 ----D---- C:\Windows\Minidump
2010-08-18 21:03:08 ----D---- C:\Windows\system32\updfiles
2010-08-18 21:03:08 ----D---- C:\Windows\system32\pl-PL
2010-08-18 21:03:08 ----D---- C:\Windows\system32\OEM
2010-08-18 21:03:07 ----D---- C:\Windows\system32\hu-HU
2010-08-18 21:01:32 ----D---- C:\Windows\system32\Speech
2010-08-18 21:01:32 ----D---- C:\Windows\system32\RemInst
2010-08-18 21:01:32 ----D---- C:\Windows\system32\MUI
2010-08-18 21:01:32 ----D---- C:\Windows\system32\licensing
2010-08-18 19:47:32 ----D---- C:\Windows\Prefetch
2010-08-17 17:39:58 ----D---- C:\Windows\system32\Macromed
2010-08-17 17:20:20 ----D---- C:\Windows\ModemLogs
2010-08-17 16:28:45 ----RSD---- C:\Windows\Fonts
2010-08-17 16:12:44 ----D---- C:\Windows\system32\catroot
2010-08-16 19:38:18 ----D---- C:\Windows\PolicyDefinitions
2010-08-03 11:09:32 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2007-09-12 320000]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-06-19 737280]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-02-28 14208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-08-10 1941848]
R3 SiS6350;SiS6350; C:\Windows\system32\DRIVERS\SISGRKMD.sys [2007-09-18 452968]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSGB6.sys [2007-07-04 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-05-10 187320]
R3 vwmfbus;Vertex Wireless Composite Device driver (WDM); C:\Windows\system32\DRIVERS\vwmfbus.sys [2009-05-29 90240]
R3 vwmfdiag;Vertex Wireless Diagnostic Monitor Port Driver (WDM); C:\Windows\system32\DRIVERS\vwmfdiag.sys [2009-05-29 98688]
R3 vwmfmdfl;~Vertex Wireless CDC Modem Filter~; C:\Windows\system32\DRIVERS\vwmfmdfl.sys [2009-05-29 14976]
R3 vwmfmdm;Vertex Wireless CDC Modem Driver; C:\Windows\system32\DRIVERS\vwmfmdm.sys [2009-05-29 121984]
R3 vwmfserd;Vertex Wireless Device Management Port Driver (WDM); C:\Windows\system32\DRIVERS\vwmfserd.sys [2009-05-29 98688]
S2 AMON;AMON; C:\Windows\system32\drivers\amon.sys [2008-12-15 512096]
S2 zntport;NTPort Library Driver; \??\C:\Windows\system32\drivers\zntport.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2006-11-02 167936]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-10-15 101376]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-03-23 124464]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 usbaudio;Ovladac zvuku USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2006-11-02 71552]
S3 usbvideo;Zobrazovací zarízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-02-28 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-08-25 149864]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-08-25 149864]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe []
S2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe []
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2006-11-02 521216]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2007-09-12 562176]

-----------------EOF-----------------

[JaRon]

Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:

Kód: Vybrat vše

Driver::
NOD32krn

uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:



po aplikacii by mal vzniknut dalsi log, ten vloz sem


+
Microsoft® Windows Vista™ Business
Total RAM: 765 MB (32% free)
pre Vistu je to absolutne malo pamate - bud rozsirit RAM, alebo preinstalovat na XP

[stonehod]

Tak se mi konečně povedl ten combofix..

ComboFix 10-08-18.05 - Iveta 20.08.2010 11:24:23.3.2 - x86
Microsoft® Windows Vista™ Business 6.0.6000.0.1252.27.1029.18.765.206 [GMT 2:00]
Running from: c:\users\Iveta\Desktop\ComboFix.exe
Command switches used :: c:\users\Iveta\Desktop\CFScript.txt
AV: avast! antivirus 4.8.1335 [VPS 100819-1] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Eset NOD32 Antivirus 2.70 *On-access scanning disabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\Thumbs.db

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_NOD32krn


((((((((((((((((((((((((( Files Created from 2010-07-20 to 2010-08-20 )))))))))))))))))))))))))))))))
.

2010-08-20 09:36 . 2010-08-20 09:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-08-20 08:39 . 2010-08-20 08:39 -------- d-----w- C:\rsit
2010-08-20 08:14 . 2010-08-20 08:14 -------- d-----w- c:\users\Iveta\AppData\Local\Mozilla
2010-08-19 13:53 . 2009-12-28 12:35 1327616 ----a-w- c:\windows\system32\quartz.dll
2010-08-19 13:53 . 2009-12-28 12:34 31232 ----a-w- c:\windows\system32\msvidc32.dll
2010-08-19 13:53 . 2009-12-28 12:34 13312 ----a-w- c:\windows\system32\msrle32.dll
2010-08-19 13:53 . 2009-12-28 12:36 11776 ----a-w- c:\windows\system32\tsbyuv.dll
2010-08-19 13:53 . 2009-12-28 12:34 22528 ----a-w- c:\windows\system32\msyuv.dll
2010-08-19 13:53 . 2009-12-28 12:32 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2010-08-19 13:53 . 2009-12-28 12:30 88576 ----a-w- c:\windows\system32\avifil32.dll
2010-08-19 13:53 . 2009-12-28 12:34 123904 ----a-w- c:\windows\system32\msvfw32.dll
2010-08-19 13:53 . 2009-12-28 12:33 82944 ----a-w- c:\windows\system32\mciavi32.dll
2010-08-19 13:53 . 2009-12-28 12:30 65024 ----a-w- c:\windows\system32\avicap32.dll
2010-08-19 13:41 . 2009-04-02 11:50 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2010-08-19 13:40 . 2009-09-10 15:29 311296 ----a-w- c:\windows\system32\unregmp2.exe
2010-08-19 13:40 . 2009-09-10 17:39 7680 ----a-w- c:\windows\system32\spwmp.dll
2010-08-19 13:40 . 2009-09-10 17:40 4096 ----a-w- c:\windows\system32\dxmasf.dll
2010-08-19 13:40 . 2009-09-10 15:29 8147968 ----a-w- c:\windows\system32\wmploc.DLL
2010-08-17 14:37 . 2010-05-21 11:14 221568 ----a-w- c:\windows\system32\MpSigStub.exe
2010-08-17 13:11 . 2010-02-12 10:49 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-08-17 13:08 . 2010-02-20 23:54 24064 ----a-w- c:\windows\system32\nshhttp.dll
2010-08-17 13:08 . 2010-02-20 21:30 396800 ----a-w- c:\windows\system32\drivers\http.sys
2010-08-17 13:08 . 2010-02-20 23:51 31232 ----a-w- c:\windows\system32\httpapi.dll
2010-08-16 15:42 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2010-08-16 15:42 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2010-08-16 15:42 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2010-08-16 15:42 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll
2010-08-16 15:42 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll
2010-08-16 15:42 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll
2010-08-16 15:42 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2010-08-16 15:41 . 2009-08-06 16:23 171608 ----a-w- c:\windows\system32\wuwebv.dll
2010-08-16 15:41 . 2009-08-06 15:44 33792 ----a-w- c:\windows\system32\wuapp.exe
2010-08-15 17:57 . 2009-05-29 07:02 98688 ----a-w- c:\windows\system32\drivers\vwmfserd.sys
2010-08-15 17:57 . 2009-05-29 07:02 14976 ----a-w- c:\windows\system32\drivers\vwmfmdfl.sys
2010-08-15 17:57 . 2009-05-29 07:02 121984 ----a-w- c:\windows\system32\drivers\vwmfmdm.sys
2010-08-15 17:57 . 2009-05-29 07:02 12160 ----a-w- c:\windows\system32\drivers\vwmfwhnt.sys
2010-08-15 17:57 . 2009-05-29 07:02 12160 ----a-w- c:\windows\system32\drivers\vwmfwh.sys
2010-08-15 17:57 . 2009-05-29 07:02 98688 ----a-w- c:\windows\system32\drivers\vwmfdiag.sys
2010-08-15 17:57 . 2009-05-29 07:02 90240 ----a-w- c:\windows\system32\drivers\vwmfbus.sys
2010-08-15 17:57 . 2009-05-29 07:02 12160 ----a-w- c:\windows\system32\drivers\vwmfcmnt.sys
2010-08-15 17:57 . 2009-05-29 07:02 12160 ----a-w- c:\windows\system32\drivers\vwmfcm.sys
2010-08-15 17:56 . 2010-08-17 14:15 -------- d-----w- c:\program files\Vertex Wireless
2010-08-15 17:56 . 2010-08-15 17:56 -------- d-----w- c:\programdata\Vertex Wireless

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-20 09:46 . 2007-02-19 12:58 77042 ----a-w- c:\windows\system32\perfc005.dat
2010-08-20 09:46 . 2007-02-19 12:58 461036 ----a-w- c:\windows\system32\perfh005.dat
2010-08-20 08:39 . 2009-07-13 21:22 -------- d-----w- c:\program files\trend micro
2010-08-20 08:21 . 2008-06-24 23:11 -------- d-----w- c:\program files\CCleaner
2010-08-20 07:13 . 2009-06-30 11:14 -------- d-----w- c:\program files\Microsoft Silverlight
2010-08-19 13:03 . 2008-09-01 05:21 -------- d-----w- c:\users\Iveta\AppData\Roaming\Skype
2010-08-19 13:03 . 2008-09-01 05:25 -------- d-----w- c:\users\Iveta\AppData\Roaming\skypePM
2010-08-19 09:27 . 2008-09-01 05:19 -------- d-----w- c:\programdata\Skype
2010-08-17 13:35 . 2008-06-24 17:33 99664 ----a-w- c:\users\Iveta\AppData\Local\GDIPFONTCACHEV1.DAT
2008-02-28 17:21 . 2007-09-12 12:02 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\programdata\Macrovision\FLEXnet Connect\6\ISUSPM.exe" [2007-03-29 222128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-05-10 869936]
"SiSTray"="c:\program files\SiS VGA Utilities\SiSTray.exe" [2007-09-18 552960]
"TouchPadHotKey"="c:\program files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe" [2007-08-13 364544]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiSpywareOverride"=dword:00000001

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2006-11-02 167936]
S1 aswSP;avast! Self Protection; [x]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
S3 SiS6350;SiS6350;c:\windows\system32\DRIVERS\SISGRKMD.sys [2007-09-18 452968]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSGB6.sys [2007-07-04 47616]
S3 vwmfbus;Vertex Wireless Composite Device driver (WDM);c:\windows\system32\DRIVERS\vwmfbus.sys [2009-05-29 90240]
S3 vwmfdiag;Vertex Wireless Diagnostic Monitor Port Driver (WDM);c:\windows\system32\DRIVERS\vwmfdiag.sys [2009-05-29 98688]
S3 vwmfmdfl;~Vertex Wireless CDC Modem Filter~;c:\windows\system32\DRIVERS\vwmfmdfl.sys [2009-05-29 14976]
S3 vwmfmdm;Vertex Wireless CDC Modem Driver;c:\windows\system32\DRIVERS\vwmfmdm.sys [2009-05-29 121984]
S3 vwmfserd;Vertex Wireless Device Management Port Driver (WDM);c:\windows\system32\DRIVERS\vwmfserd.sys [2009-05-29 98688]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
.
Contents of the 'Scheduled Tasks' folder

2010-08-20 c:\windows\Tasks\User_Feed_Synchronization-{BF9FB59A-93D7-453E-9093-B3D168AD2D57}.job
- c:\windows\system32\msfeedssync.exe [2009-07-03 11:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office10\EXCEL.EXE/3000
LSP: c:\windows\system32\imon.dll
TCP: {526345BF-35C5-48D9-8A6A-41135B9C9AED} = 78.136.128.4 78.136.128.12
FF - ProfilePath - c:\users\Iveta\AppData\Roaming\Mozilla\Firefox\Profiles\mk68o8g0.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\Java\jre1.5.0_09\bin\NPJPI150_09.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-20 11:44
Windows 6.0.6000 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Common Files\Symantec Shared\ccSvcHst.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\conime.exe
c:\program files\Alwil Software\Avast4\ashDisp.exe
c:\program files\Vertex Wireless\VW100 Connection Manager\Connection Manager.exe
.
**************************************************************************
.
Completion time: 2010-08-20 11:51:43 - machine was rebooted
ComboFix-quarantined-files.txt 2010-08-20 09:51
ComboFix2.txt 2009-07-14 14:10

Pre-Run: Volných bajtu: 63 070 064 640
Post-Run: Volných bajtu: 62 655 053 824

- - End Of File - - 3F957CAF72BBE6B2AE8B364D8CB411BA

[JaRon]

pokus sa odinstalovat Eset NOD32 Antivirus 2.70
po AV stranke je to OK
hlavny problem, ako som pisal vyssie je v nedostatku pamate ,,,

[stonehod]

Dobrý den přeji,
ten NOD jsem odstranil a vše se zrychlilo, ale je ještě nevyřešený problém s načítáním.Pokaždé při spuštění napíše že některé z disků vyžadují kontrolu konzistence a pak jede CHKDSK někdy i dvakrát za sebou.Předtím mi ještě asi třikrát napsal, že je PEV.exe poškozený soubor a vyžaduje CHKDSK a umístění C\$Mft....ale nikde jsem ho nenašel..... Pak se mi nabízejí aktualizace. Dám je instalovat. Pokaždé to napíše že jedna nebyla ninstalována a po retartu (zase CHKDSK) napíše že aktulizace nebyli správně nakonfigurovány.Systém vrací zpět změny.\nevypínejte počítač.Asi po10-ti minutách se restartuje . opět CHKDSK.a po načtení opět nabídne aktualizace.Potřetí je raději neinstaluji a píšu sem.A raději přikládám log.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Iveta at 2010-08-21 12:37:29
Microsoft® Windows Vista™ Business
System drive C: has 59 GB (53%) free of 112 GB
Total RAM: 765 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:37:39, on 21.8.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\SYSTEM32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\SiS VGA Utilities\SiSTray.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Iveta\Desktop\RSIT.exe
C:\Program Files\trend micro\Iveta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SiSTray] %ProgramFiles%\SiS VGA Utilities\SiSTray.exe
O4 - HKLM\..\Run: [TouchPadHotKey] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: TOSHIBA Bluetooth Service - Unknown owner - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (file missing)

--
End of file - 4111 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{BF9FB59A-93D7-453E-9093-B3D168AD2D57}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-05-30 1410344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll [2006-10-12 434279]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-05-10 869936]
"SiSTray"=C:\Program Files\SiS VGA Utilities\SiSTray.exe [2007-09-18 552960]
"TouchPadHotKey"=C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe [2007-08-13 364544]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"=C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [2007-03-29 222128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-08-20 11:51:43 ----A---- C:\ComboFix.txt
2010-08-20 11:43:12 ----SHD---- C:\$RECYCLE.BIN
2010-08-20 11:13:46 ----A---- C:\Windows\zip.exe
2010-08-20 11:13:46 ----A---- C:\Windows\SWREG.exe
2010-08-20 11:13:46 ----A---- C:\Windows\PEV.exe
2010-08-20 11:13:46 ----A---- C:\Windows\NIRCMD.exe
2010-08-20 11:13:46 ----A---- C:\Windows\MBR.exe
2010-08-20 11:13:45 ----A---- C:\Windows\SWXCACLS.exe
2010-08-20 11:13:45 ----A---- C:\Windows\SWSC.exe
2010-08-20 11:13:45 ----A---- C:\Windows\sed.exe
2010-08-20 11:13:45 ----A---- C:\Windows\grep.exe
2010-08-20 11:13:34 ----D---- C:\ComboFix
2010-08-20 11:12:54 ----D---- C:\Qoobox
2010-08-20 10:39:32 ----D---- C:\rsit
2010-08-20 10:13:43 ----D---- C:\Program Files\Mozilla Firefox
2010-08-19 15:53:27 ----A---- C:\Windows\system32\quartz.dll
2010-08-19 15:53:27 ----A---- C:\Windows\system32\msvidc32.dll
2010-08-19 15:53:27 ----A---- C:\Windows\system32\msrle32.dll
2010-08-19 15:53:26 ----A---- C:\Windows\system32\tsbyuv.dll
2010-08-19 15:53:26 ----A---- C:\Windows\system32\msyuv.dll
2010-08-19 15:53:26 ----A---- C:\Windows\system32\iyuv_32.dll
2010-08-19 15:53:26 ----A---- C:\Windows\system32\avifil32.dll
2010-08-19 15:53:25 ----A---- C:\Windows\system32\msvfw32.dll
2010-08-19 15:53:25 ----A---- C:\Windows\system32\mciavi32.dll
2010-08-19 15:53:25 ----A---- C:\Windows\system32\avicap32.dll
2010-08-19 15:41:20 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2010-08-19 15:40:37 ----A---- C:\Windows\system32\wmp.dll
2010-08-19 15:40:32 ----A---- C:\Windows\system32\unregmp2.exe
2010-08-19 15:40:29 ----A---- C:\Windows\system32\spwmp.dll
2010-08-19 15:40:27 ----A---- C:\Windows\system32\dxmasf.dll
2010-08-19 15:40:22 ----A---- C:\Windows\system32\wmploc.DLL
2010-08-17 16:37:30 ----A---- C:\Windows\system32\MpSigStub.exe
2010-08-17 15:11:47 ----A---- C:\Windows\system32\browserchoice.exe
2010-08-17 15:08:30 ----A---- C:\Windows\system32\nshhttp.dll
2010-08-17 15:08:22 ----A---- C:\Windows\system32\httpapi.dll
2010-08-16 17:42:35 ----A---- C:\Windows\system32\wups2.dll
2010-08-16 17:42:35 ----A---- C:\Windows\system32\wuauclt.exe
2010-08-16 17:42:34 ----A---- C:\Windows\system32\wucltux.dll
2010-08-16 17:42:34 ----A---- C:\Windows\system32\wuaueng.dll
2010-08-16 17:42:01 ----A---- C:\Windows\system32\wups.dll
2010-08-16 17:42:01 ----A---- C:\Windows\system32\wudriver.dll
2010-08-16 17:42:00 ----A---- C:\Windows\system32\wuapi.dll
2010-08-16 17:41:39 ----A---- C:\Windows\system32\wuwebv.dll
2010-08-16 17:41:39 ----A---- C:\Windows\system32\wuapp.exe
2010-08-15 19:56:12 ----D---- C:\Program Files\Vertex Wireless
2010-08-15 19:56:10 ----D---- C:\ProgramData\Vertex Wireless

======List of files/folders modified in the last 1 months======

2010-08-21 12:37:32 ----D---- C:\Program Files\trend micro
2010-08-21 12:37:27 ----D---- C:\Windows\temp
2010-08-21 12:31:31 ----D---- C:\Windows\rescache
2010-08-21 12:25:02 ----D---- C:\Windows
2010-08-21 12:24:23 ----SHD---- C:\System Volume Information
2010-08-21 12:22:37 ----D---- C:\Windows\Microsoft.NET
2010-08-21 12:21:57 ----RSD---- C:\Windows\assembly
2010-08-21 12:13:56 ----D---- C:\Windows\winsxs
2010-08-21 12:12:34 ----D---- C:\ProgramData
2010-08-21 12:09:13 ----D---- C:\Windows\system32\drivers
2010-08-21 12:09:13 ----D---- C:\Windows\System32
2010-08-21 12:09:13 ----D---- C:\Windows\AppPatch
2010-08-21 12:09:09 ----D---- C:\Windows\system32\XPSViewer
2010-08-21 12:09:09 ----D---- C:\Windows\system32\wbem
2010-08-21 12:09:09 ----D---- C:\Windows\system32\en-US
2010-08-21 12:09:08 ----D---- C:\Windows\system32\migration
2010-08-21 12:09:07 ----D---- C:\Windows\system32\cs-CZ
2010-08-21 12:09:07 ----D---- C:\Program Files\Movie Maker
2010-08-21 12:09:07 ----D---- C:\Program Files\Internet Explorer
2010-08-21 11:53:45 ----D---- C:\Windows\system32\catroot2
2010-08-21 11:43:56 ----D---- C:\Windows\system32\catroot
2010-08-21 11:00:23 ----D---- C:\Windows\system32\config
2010-08-21 11:00:20 ----D---- C:\Boot
2010-08-21 10:56:38 ----AD---- C:\ProgramData\TEMP
2010-08-20 14:40:19 ----D---- C:\Windows\tracing
2010-08-20 14:28:06 ----D---- C:\Windows\system32\LogFiles
2010-08-20 13:22:44 ----SHD---- C:\Windows\Installer
2010-08-20 12:17:26 ----D---- C:\Windows\inf
2010-08-20 12:17:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-20 11:50:06 ----D---- C:\Windows\ERDNT
2010-08-20 11:43:09 ----A---- C:\Windows\system.ini
2010-08-20 11:30:33 ----D---- C:\Program Files\Common Files
2010-08-20 10:36:09 ----D---- C:\Windows\Debug
2010-08-20 10:21:30 ----D---- C:\Program Files\CCleaner
2010-08-20 10:14:21 ----D---- C:\Users\Iveta\AppData\Roaming\Mozilla
2010-08-20 10:13:43 ----RD---- C:\Program Files
2010-08-20 09:24:06 ----D---- C:\Windows\system32\WDI
2010-08-20 09:13:29 ----D---- C:\Program Files\Microsoft Silverlight
2010-08-20 08:34:59 ----SD---- C:\ProgramData\Microsoft
2010-08-20 07:41:29 ----D---- C:\Program Files\Windows Media Player
2010-08-19 15:03:19 ----D---- C:\Users\Iveta\AppData\Roaming\Skype
2010-08-19 15:03:13 ----D---- C:\Users\Iveta\AppData\Roaming\skypePM
2010-08-19 12:21:55 ----D---- C:\Windows\Tasks
2010-08-19 12:21:55 ----D---- C:\Windows\system32\spool
2010-08-19 12:21:55 ----D---- C:\Windows\system32\CodeIntegrity
2010-08-19 12:21:52 ----D---- C:\Windows\registration
2010-08-19 11:27:19 ----D---- C:\Windows\system32\Tasks
2010-08-19 11:27:09 ----D---- C:\ProgramData\Skype
2010-08-19 10:35:36 ----A---- C:\Windows\win.ini
2010-08-18 23:02:35 ----D---- C:\Windows\Minidump
2010-08-18 20:03:08 ----D---- C:\Windows\system32\updfiles
2010-08-18 20:03:08 ----D---- C:\Windows\system32\pl-PL
2010-08-18 20:03:08 ----D---- C:\Windows\system32\OEM
2010-08-18 20:03:07 ----D---- C:\Windows\system32\hu-HU
2010-08-18 20:01:32 ----D---- C:\Windows\system32\Speech
2010-08-18 20:01:32 ----D---- C:\Windows\system32\RemInst
2010-08-18 20:01:32 ----D---- C:\Windows\system32\MUI
2010-08-18 20:01:32 ----D---- C:\Windows\system32\licensing
2010-08-18 18:47:32 ----D---- C:\Windows\Prefetch
2010-08-17 16:39:58 ----D---- C:\Windows\system32\Macromed
2010-08-17 16:20:20 ----D---- C:\Windows\ModemLogs
2010-08-17 15:28:45 ----RSD---- C:\Windows\Fonts
2010-08-16 18:38:18 ----D---- C:\Windows\PolicyDefinitions
2010-08-03 10:09:32 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-11-25 23120]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2007-09-12 320000]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-11-25 53328]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-06-19 737280]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-02-28 14208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-08-10 1941848]
R3 SiS6350;SiS6350; C:\Windows\system32\DRIVERS\SISGRKMD.sys [2007-09-18 452968]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSGB6.sys [2007-07-04 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-05-10 187320]
S2 AMON;AMON; C:\Windows\system32\drivers\amon.sys [2008-12-15 512096]
S2 zntport;NTPort Library Driver; \??\C:\Windows\system32\drivers\zntport.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2006-11-02 167936]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-10-15 101376]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-03-23 124464]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 usbaudio;Ovladac zvuku USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2006-11-02 71552]
S3 usbvideo;Zobrazovací zarízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
S3 vwmfbus;Vertex Wireless Composite Device driver (WDM); C:\Windows\system32\DRIVERS\vwmfbus.sys [2009-05-29 90240]
S3 vwmfdiag;Vertex Wireless Diagnostic Monitor Port Driver (WDM); C:\Windows\system32\DRIVERS\vwmfdiag.sys [2009-05-29 98688]
S3 vwmfmdfl;~Vertex Wireless CDC Modem Filter~; C:\Windows\system32\DRIVERS\vwmfmdfl.sys [2009-05-29 14976]
S3 vwmfmdm;Vertex Wireless CDC Modem Driver; C:\Windows\system32\DRIVERS\vwmfmdm.sys [2009-05-29 121984]
S3 vwmfserd;Vertex Wireless Device Management Port Driver (WDM); C:\Windows\system32\DRIVERS\vwmfserd.sys [2009-05-29 98688]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-02-28 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-08-24 149864]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-08-24 149864]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe []
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2006-11-02 521216]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2007-09-12 562176]

-----------------EOF-----------------

[stonehod]

pořád mám problém s tím opakovaným spuštním CHKDSK při startu a ani ty aktualizace nejdou nainstalovat...pomůže někdo??
Díky

[JaRon]

otestuj disk programom HDTune :
cast benchmark - vysledky vloz - staci odpisat 6 cisel + pozri cast health + nechaj prescanovat aj na chyby = cast error
+
urcite by bolo vhodne dat na ten system ServicePack

[stonehod]

Dobrý den přeji,
tak na vaši radu jsme přeinstalovali na windows XP.Při instalaci programů mi tam skočila hláška, že se zaviroval počítač.AVG nic nenašlo, tak pro jistotu posílám log...Jestli bude vše v pořádku budu rád
hezký večer
stonehod

Logfile of random's system information tool 1.08 (written by random/random)
Run by Iveta at 2010-08-24 22:16:03
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 98 GB (86%) free of 114 GB
Total RAM: 765 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:16:28, on 24.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Documents and Settings\Iveta\Plocha\RSIT.exe
C:\Program Files\trend micro\Iveta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TouchPadHotKey] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: WirelessSelector.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2626098218
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2626151687
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

--
End of file - 6242 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\At10.job
C:\WINDOWS\tasks\At11.job
C:\WINDOWS\tasks\At12.job
C:\WINDOWS\tasks\At13.job
C:\WINDOWS\tasks\At14.job
C:\WINDOWS\tasks\At15.job
C:\WINDOWS\tasks\At16.job
C:\WINDOWS\tasks\At17.job
C:\WINDOWS\tasks\At18.job
C:\WINDOWS\tasks\At19.job
C:\WINDOWS\tasks\At2.job
C:\WINDOWS\tasks\At20.job
C:\WINDOWS\tasks\At21.job
C:\WINDOWS\tasks\At22.job
C:\WINDOWS\tasks\At23.job
C:\WINDOWS\tasks\At24.job
C:\WINDOWS\tasks\At25.job
C:\WINDOWS\tasks\At26.job
C:\WINDOWS\tasks\At27.job
C:\WINDOWS\tasks\At28.job
C:\WINDOWS\tasks\At29.job
C:\WINDOWS\tasks\At3.job
C:\WINDOWS\tasks\At30.job
C:\WINDOWS\tasks\At31.job
C:\WINDOWS\tasks\At32.job
C:\WINDOWS\tasks\At33.job
C:\WINDOWS\tasks\At34.job
C:\WINDOWS\tasks\At35.job
C:\WINDOWS\tasks\At36.job
C:\WINDOWS\tasks\At37.job
C:\WINDOWS\tasks\At38.job
C:\WINDOWS\tasks\At39.job
C:\WINDOWS\tasks\At4.job
C:\WINDOWS\tasks\At40.job
C:\WINDOWS\tasks\At41.job
C:\WINDOWS\tasks\At43.job
C:\WINDOWS\tasks\At44.job
C:\WINDOWS\tasks\At45.job
C:\WINDOWS\tasks\At46.job
C:\WINDOWS\tasks\At5.job
C:\WINDOWS\tasks\At6.job
C:\WINDOWS\tasks\At7.job
C:\WINDOWS\tasks\At8.job
C:\WINDOWS\tasks\At9.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-24 1619296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-10 16384000]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SiSPower"=SiSPower.dll,ModeAgent []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-05-10 864256]
"TouchPadHotKey"=C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe [2007-08-13 364544]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-24 2065760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
WirelessSelector.lnk - C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-24 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-08-24 22:16:04 ----D---- C:\Program Files\trend micro
2010-08-24 22:16:03 ----D---- C:\rsit
2010-08-24 22:09:15 ----D---- C:\Documents and Settings\Iveta\Data aplikací\skypePM
2010-08-24 22:07:57 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Skype
2010-08-24 22:07:10 ----D---- C:\Program Files\Common Files\Skype
2010-08-24 22:07:08 ----RD---- C:\Program Files\Skype
2010-08-24 22:07:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-24 21:31:15 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Google
2010-08-24 21:25:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-08-24 20:50:27 ----D---- C:\Program Files\Google
2010-08-24 20:30:20 ----D---- C:\totalcmd
2010-08-24 20:30:20 ----A---- C:\WINDOWS\wincmd.ini
2010-08-24 20:30:20 ----A---- C:\WINDOWS\UC.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\RAR.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\PKZIP.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\PKUNZIP.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\NOCLOSE.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\LHA.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\ARJ.PIF
2010-08-24 20:08:00 ----HD---- C:\$AVG
2010-08-24 20:07:04 ----D---- C:\Documents and Settings\Iveta\Data aplikací\URSoft
2010-08-24 20:07:03 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-08-24 20:06:56 ----D---- C:\Program Files\Your Uninstaller 2010
2010-08-24 20:03:57 ----D---- C:\Documents and Settings\Iveta\Data aplikací\WinRAR
2010-08-24 20:01:36 ----D---- C:\Program Files\WinRAR
2010-08-24 14:41:10 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Media Player Classic
2010-08-24 14:37:11 ----D---- C:\Program Files\CCleaner
2010-08-24 14:21:14 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Mozilla
2010-08-24 14:21:00 ----D---- C:\Program Files\Mozilla Firefox
2010-08-24 13:35:02 ----A---- C:\WINDOWS\system32\unrar.dll
2010-08-24 13:35:02 ----A---- C:\WINDOWS\avisplitter.ini
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-08-24 13:34:57 ----D---- C:\Program Files\K-Lite Codec Pack
2010-08-24 12:28:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-08-24 12:28:09 ----D---- C:\Program Files\Common Files\Adobe
2010-08-24 12:20:16 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem #3.txt
2010-08-24 12:19:15 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem #2.txt
2010-08-24 12:13:30 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem.txt
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfwhnt.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfwh.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfserd.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfmdm.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfmdfl.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfdiag.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfcmnt.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfcm.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfbus.sys
2010-08-24 12:12:34 ----D---- C:\Program Files\Vertex Wireless
2010-08-24 12:12:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Vertex Wireless
2010-08-24 10:26:27 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2010-08-24 10:26:25 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2010-08-24 10:26:18 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2010-08-24 10:26:17 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2010-08-24 10:26:14 ----D---- C:\WINDOWS\system32\drivers\Avg
2010-08-24 10:26:09 ----D---- C:\Program Files\AVG
2010-08-24 10:26:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2010-08-24 10:19:23 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Adobe
2010-08-24 10:18:58 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Macromedia
2010-08-24 09:20:09 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-08-24 09:20:09 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-08-24 08:53:19 ----A---- C:\WINDOWS\system32\msonpmon.dll
2010-08-24 08:51:19 ----D---- C:\Program Files\Microsoft Works
2010-08-24 08:51:07 ----D---- C:\Program Files\MSBuild
2010-08-24 08:50:49 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-24 08:50:48 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-24 08:50:20 ----D---- C:\Program Files\Microsoft.NET
2010-08-24 08:47:59 ----D---- C:\WINDOWS\SHELLNEW
2010-08-24 08:47:47 ----D---- C:\Program Files\Microsoft Office
2010-08-24 08:47:28 ----RHD---- C:\MSOCache
2010-08-24 08:46:28 ----D---- C:\WINDOWS\SxsCaPendDel
2010-08-24 08:45:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-08-24 08:45:09 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-08-24 08:44:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-08-24 08:44:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-08-24 08:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-08-24 08:43:43 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-08-24 08:38:08 ----D---- C:\WINDOWS\system32\appmgmt
2010-08-24 08:26:30 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-24 08:26:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-24 08:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2183461$
2010-08-24 08:26:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-24 08:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-24 08:25:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-24 08:25:47 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-24 08:24:09 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-24 08:24:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-24 08:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-08-24 08:23:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-08-24 08:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-08-24 08:23:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-08-24 08:23:05 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-08-24 08:23:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-08-24 08:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-08-24 08:22:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-08-24 08:22:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-08-24 08:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-08-24 08:22:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-08-24 08:22:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-08-24 08:22:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-08-24 08:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-08-24 08:22:15 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-08-24 08:22:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-08-24 08:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-08-24 08:21:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-08-24 08:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-08-24 08:21:45 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-08-24 08:21:40 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-08-24 08:21:34 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-08-24 08:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-08-24 08:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-08-24 08:21:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-08-24 08:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-08-24 08:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-08-24 08:21:01 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-08-24 08:20:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-08-24 08:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-08-24 08:20:40 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-08-24 08:20:35 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-08-24 08:20:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-08-24 08:20:26 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-08-24 08:20:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-08-24 08:20:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-08-24 08:19:33 ----D---- C:\WINDOWS\ie8updates
2010-08-24 08:19:11 ----D---- C:\WINDOWS\WBEM
2010-08-24 08:18:08 ----HDC---- C:\WINDOWS\ie8
2010-08-24 08:17:11 ----A---- C:\WINDOWS\system32\MRT.exe
2010-08-24 08:15:41 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-08-24 08:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-08-24 08:15:31 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-08-24 08:15:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-08-24 08:15:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-08-24 08:15:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-08-24 08:15:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-08-24 08:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-08-24 08:10:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-08-24 08:10:37 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-08-24 08:10:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-08-24 08:10:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-08-24 08:10:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-08-24 08:10:11 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-08-24 08:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-08-24 08:06:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-08-24 08:06:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-08-24 08:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-08-24 08:06:12 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-08-24 08:06:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-08-24 08:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-08-24 08:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-08-24 08:05:54 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-08-24 08:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-08-24 08:05:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-08-24 08:05:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-08-24 08:05:34 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-08-24 08:05:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-08-24 08:05:03 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-08-24 08:05:02 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-08-24 08:04:50 ----D---- C:\Program Files\Windows Media Connect 2
2010-08-24 08:04:39 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-08-24 08:04:11 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-08-24 08:03:55 ----D---- C:\WINDOWS\system32\LogFiles
2010-08-24 08:03:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-08-24 08:03:52 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-08-24 08:01:08 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-08-24 07:38:41 ----D---- C:\WINDOWS\Prefetch
2010-08-24 07:31:41 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-24 07:31:40 ----D---- C:\WINDOWS\system32\cs
2010-08-24 07:31:40 ----D---- C:\WINDOWS\system32\bits
2010-08-24 07:31:40 ----D---- C:\WINDOWS\l2schemas
2010-08-24 07:30:16 ----D---- C:\WINDOWS\ServicePackFiles
2010-08-24 07:28:40 ----D---- C:\WINDOWS\network diagnostic
2010-08-24 07:23:23 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-08-24 07:19:11 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-08-24 07:19:11 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-08-24 07:12:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-08-24 07:12:18 ----D---- C:\WINDOWS\system32\PreInstall
2010-08-24 07:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-08-24 07:01:58 ----A---- C:\WINDOWS\system32\wups2.dll
2010-08-24 07:01:58 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-08-24 07:01:57 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-08-24 07:01:57 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-08-24 07:01:57 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2010-08-24 06:57:09 ----ASH---- C:\hiberfil.sys
2010-08-24 06:55:25 ----D---- C:\WINDOWS\system32\Lang
2010-08-24 06:55:05 ----SD---- C:\Documents and Settings\Iveta\Data aplikací\Microsoft
2010-08-24 06:55:05 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Identities
2010-08-24 06:55:05 ----ASH---- C:\Documents and Settings\Iveta\Data aplikací\desktop.ini
2010-08-24 06:53:47 ----D---- C:\Program Files\Adobe
2010-08-24 06:53:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2010-08-24 06:53:43 ----A---- C:\WINDOWS\system32\drivers\zntport.sys
2010-08-24 06:53:42 ----A---- C:\WINDOWS\system32\NTPORT.DLL
2010-08-24 06:53:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-24 06:53:41 ----D---- C:\Program Files\FSC
2010-08-24 06:53:40 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-24 06:50:54 ----D---- C:\Program Files\Synaptics
2010-08-24 06:50:53 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-24 06:50:38 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-08-24 06:50:34 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-24 06:50:32 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-24 06:50:30 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-24 06:50:28 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-24 06:50:27 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-08-24 06:50:25 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-08-24 06:50:23 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-08-24 06:50:19 ----A---- C:\WINDOWS\system32\SiSPower.dll
2010-08-24 06:50:19 ----A---- C:\WINDOWS\InstFunc.exe
2010-08-24 06:50:19 ----A---- C:\WINDOWS\InstFunc.dll
2010-08-24 06:50:19 ----A---- C:\WINDOWS\difxapi.dll
2010-08-24 06:49:59 ----D---- C:\WINDOWS\system32\RTCOM
2010-08-24 06:49:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-24 06:49:57 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-23 15:23:39 ----SHD---- C:\RECYCLER
2010-08-23 15:23:38 ----A---- C:\WINDOWS\smscfg.ini
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynTPCo4.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynCOM.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\SiSGbeXP.sys
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\ar5211.sys
2010-08-23 15:22:54 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-08-23 15:22:54 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-08-23 15:22:53 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-08-23 15:22:53 ----A---- C:\WINDOWS\MicCal.exe
2010-08-23 15:22:52 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-08-23 15:22:52 ----A---- C:\WINDOWS\RtlUpd.exe
2010-08-23 15:22:52 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSPIns2.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSParse.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSInst.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\sisgrv.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\sisgl770.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSBase.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\drivers\srvkp.sys
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\drivers\sisgrp.sys
2010-08-23 15:22:51 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-08-23 15:22:51 ----A---- C:\WINDOWS\SkyTel.exe
2010-08-23 15:21:36 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2010-08-23 15:21:23 ----A---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-08-23 15:20:47 ----SHD---- C:\System Volume Information
2010-08-23 15:20:20 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 months======

2010-08-24 22:16:04 ----RD---- C:\Program Files
2010-08-24 22:09:16 ----D---- C:\WINDOWS\system32
2010-08-24 22:07:29 ----D---- C:\WINDOWS\Temp
2010-08-24 22:07:22 ----SHD---- C:\WINDOWS\Installer
2010-08-24 22:07:10 ----D---- C:\Program Files\Common Files
2010-08-24 22:02:54 ----D---- C:\WINDOWS
2010-08-24 22:00:09 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-08-24 22:00:00 ----SD---- C:\WINDOWS\Tasks
2010-08-24 21:49:14 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-24 20:40:41 ----D---- C:\WINDOWS\WinSxS
2010-08-24 20:13:27 ----D---- C:\WINDOWS\repair
2010-08-24 14:38:05 ----D---- C:\WINDOWS\Debug
2010-08-24 12:14:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-24 12:13:17 ----D---- C:\WINDOWS\system32\drivers
2010-08-24 12:13:02 ----HD---- C:\WINDOWS\inf
2010-08-24 10:26:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-24 09:29:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-08-24 09:10:47 ----A---- C:\WINDOWS\win.ini
2010-08-24 09:10:46 ----D---- C:\Program Files\Common Files\System
2010-08-24 08:50:30 ----RSD---- C:\WINDOWS\Fonts
2010-08-24 08:45:37 ----RSHD---- C:\WINDOWS\system32\dllcache
2010-08-24 08:45:33 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-24 08:45:20 ----D---- C:\WINDOWS\pchealth
2010-08-24 08:34:02 ----D---- C:\WINDOWS\AppPatch
2010-08-24 08:34:01 ----D---- C:\WINDOWS\Help
2010-08-24 08:34:01 ----D---- C:\Program Files\Internet Explorer
2010-08-24 08:34:00 ----D---- C:\WINDOWS\system32\wbem
2010-08-24 08:26:01 ----D---- C:\Program Files\Movie Maker
2010-08-24 08:22:49 ----D---- C:\Program Files\Outlook Express
2010-08-24 08:19:05 ----D---- C:\WINDOWS\Media
2010-08-24 08:05:56 ----D---- C:\Program Files\Messenger
2010-08-24 08:04:49 ----D---- C:\Program Files\Windows Media Player
2010-08-24 07:48:13 ----A---- C:\Lang.txt
2010-08-24 07:38:25 ----D---- C:\WINDOWS\system32\Setup
2010-08-24 07:37:42 ----D---- C:\WINDOWS\security
2010-08-24 07:35:20 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-24 07:31:52 ----D---- C:\WINDOWS\ehome
2010-08-24 07:31:51 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-24 07:31:51 ----D---- C:\WINDOWS\ime
2010-08-24 07:31:41 ----D---- C:\WINDOWS\system32\usmt
2010-08-24 07:31:40 ----D---- C:\WINDOWS\PeerNet
2010-08-24 07:30:08 ----D---- C:\WINDOWS\system32\Restore
2010-08-24 07:30:08 ----D---- C:\WINDOWS\system32\npp
2010-08-24 07:30:07 ----D---- C:\WINDOWS\msagent
2010-08-24 07:30:06 ----D---- C:\WINDOWS\srchasst
2010-08-24 07:30:06 ----D---- C:\Program Files\NetMeeting
2010-08-24 07:30:05 ----D---- C:\WINDOWS\system32\Com
2010-08-24 07:30:03 ----D---- C:\Program Files\Windows NT
2010-08-24 07:29:49 ----D---- C:\WINDOWS\system32\oobe
2010-08-24 07:29:48 ----D---- C:\WINDOWS\system
2010-08-24 07:02:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-24 07:02:35 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-24 06:57:23 ----D---- C:\Addon
2010-08-24 06:55:04 ----D---- C:\Documents and Settings
2010-08-24 06:53:39 ----RASH---- C:\boot.ini
2010-08-24 06:52:43 ----D---- C:\WINDOWS\Registration
2010-08-24 06:52:36 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-08-24 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-08-24 29584]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-08-24 243024]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2007-08-03 18688]
R2 zntport;NTPort Library Driver; \??\C:\WINDOWS\system32\drivers\zntport.sys []
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-06-21 547072]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-10 4603904]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2007-08-03 321536]
R3 SiSGbeXP;SiS191/SiS190 Ethernet Device NDIS 5.1 Driver; C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys [2007-05-16 42368]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-05-10 208576]
S1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 S3SavageNB;S3SavageNB; C:\WINDOWS\system32\DRIVERS\s3gnbm.sys [2004-08-04 166912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 vwmfbus;Vertex Wireless Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfbus.sys [2009-05-29 90240]
S3 vwmfdiag;Vertex Wireless Diagnostic Monitor Port Driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfdiag.sys [2009-05-29 98688]
S3 vwmfmdfl;~Vertex Wireless CDC Modem Filter~; C:\WINDOWS\system32\DRIVERS\vwmfmdfl.sys [2009-05-29 14976]
S3 vwmfmdm;Vertex Wireless CDC Modem Driver; C:\WINDOWS\system32\DRIVERS\vwmfmdm.sys [2009-05-29 121984]
S3 vwmfserd;Vertex Wireless Device Management Port Driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfserd.sys [2009-05-29 98688]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
S4 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-13 42752]
S4 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-13 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
S4 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-08-24 308136]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-24 136176]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

[JaRon]

XP - dobra volba
pokial poznas, tak ponechaj, ak nie ZMAZ:
C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\At10.job
C:\WINDOWS\tasks\At11.job
C:\WINDOWS\tasks\At12.job
C:\WINDOWS\tasks\At13.job
C:\WINDOWS\tasks\At14.job
C:\WINDOWS\tasks\At15.job
C:\WINDOWS\tasks\At16.job
C:\WINDOWS\tasks\At17.job
C:\WINDOWS\tasks\At18.job
C:\WINDOWS\tasks\At19.job
C:\WINDOWS\tasks\At2.job
C:\WINDOWS\tasks\At20.job
C:\WINDOWS\tasks\At21.job
C:\WINDOWS\tasks\At22.job
C:\WINDOWS\tasks\At23.job
C:\WINDOWS\tasks\At24.job
C:\WINDOWS\tasks\At25.job
C:\WINDOWS\tasks\At26.job
C:\WINDOWS\tasks\At27.job
C:\WINDOWS\tasks\At28.job
C:\WINDOWS\tasks\At29.job
C:\WINDOWS\tasks\At3.job
C:\WINDOWS\tasks\At30.job
C:\WINDOWS\tasks\At31.job
C:\WINDOWS\tasks\At32.job
C:\WINDOWS\tasks\At33.job
C:\WINDOWS\tasks\At34.job
C:\WINDOWS\tasks\At35.job
C:\WINDOWS\tasks\At36.job
C:\WINDOWS\tasks\At37.job
C:\WINDOWS\tasks\At38.job
C:\WINDOWS\tasks\At39.job
C:\WINDOWS\tasks\At4.job
C:\WINDOWS\tasks\At40.job
C:\WINDOWS\tasks\At41.job
C:\WINDOWS\tasks\At43.job
C:\WINDOWS\tasks\At44.job
C:\WINDOWS\tasks\At45.job
C:\WINDOWS\tasks\At46.job
C:\WINDOWS\tasks\At5.job
C:\WINDOWS\tasks\At6.job
C:\WINDOWS\tasks\At7.job
C:\WINDOWS\tasks\At8.job
C:\WINDOWS\tasks\At9.job
inac OK

[stonehod]

našel jsem skrytou složku Tasks....Je to určitě ono co mi tam nainstaloval ten virus.Teď je mi již jasné proč mi včera 4x vypnul notebook.Než to smažu,chci se zeptat,jestli mám smazat celou složku, anebo jenom cos mi tady označil.protože koukám, že ten lump pořád plánuje další půlhodiny vypnutí.A ještě jestli tam nemůže být i něco jiného??
díky

[JaRon]

kludne ZMAZ cely obsah adresara tasks
+
vrele doporucujem prescanovat PC s AVPTool
http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

[stonehod]

výsledek je asi víc než uspokojivý.
Autoscan: completed 2 minutes ago (events: 2, objects: 105531, time: 00:22:22)
25.8.2010 9:06:51 Task started
25.8.2010 9:29:13 Task completed
byli pouze dvě položky ,předpokládám, že kdyby byl njaký problém, tak to je mezi nimi .

Ještě pro jistotu posílám LOG a když bude vše v pořádku,oddychnu si já i kamarádka..

Logfile of random's system information tool 1.08 (written by random/random)
Run by Iveta at 2010-08-25 09:36:17
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 99 GB (87%) free of 114 GB
Total RAM: 765 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:36:32, on 25.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Vertex Wireless\VW100 Connection Manager\Connection Manager.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Iveta\Plocha\používané programy\RSIT.exe
C:\Program Files\trend micro\Iveta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TouchPadHotKey] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: WirelessSelector.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2626098218
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2626151687
O17 - HKLM\System\CCS\Services\Tcpip\..\{871AB3CF-5428-4E4C-B0F9-601299FE7DDD}: NameServer = 78.136.128.4 78.136.128.12
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe

--
End of file - 6365 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-24 1619296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-10 16384000]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SiSPower"=SiSPower.dll,ModeAgent []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-05-10 864256]
"TouchPadHotKey"=C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe [2007-08-13 364544]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-24 2065760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
WirelessSelector.lnk - C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-24 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-08-25 09:03:29 ----D---- C:\WINDOWS\LastGood
2010-08-25 08:20:05 ----D---- C:\Program Files\MSXML 4.0
2010-08-24 23:05:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVS4YOU
2010-08-24 23:04:26 ----D---- C:\Program Files\Common Files\AVSMedia
2010-08-24 23:04:16 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2010-08-24 23:04:16 ----A---- C:\WINDOWS\system32\mcdvd_32.dll
2010-08-24 23:04:16 ----A---- C:\WINDOWS\system32\divx.dll
2010-08-24 23:04:15 ----D---- C:\Program Files\AVS4YOU
2010-08-24 23:04:15 ----A---- C:\WINDOWS\system32\msxml3a.dll
2010-08-24 23:04:15 ----A---- C:\WINDOWS\system32\msvcr70.dll
2010-08-24 23:04:15 ----A---- C:\WINDOWS\system32\msvcp70.dll
2010-08-24 23:04:15 ----A---- C:\WINDOWS\system32\mfc70.dll
2010-08-24 23:04:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2010-08-24 22:39:39 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2010-08-24 22:39:35 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2010-08-24 22:16:04 ----D---- C:\Program Files\trend micro
2010-08-24 22:16:03 ----D---- C:\rsit
2010-08-24 22:09:15 ----D---- C:\Documents and Settings\Iveta\Data aplikací\skypePM
2010-08-24 22:07:57 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Skype
2010-08-24 22:07:10 ----D---- C:\Program Files\Common Files\Skype
2010-08-24 22:07:08 ----RD---- C:\Program Files\Skype
2010-08-24 22:07:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-08-24 21:31:15 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Google
2010-08-24 21:25:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-08-24 20:50:27 ----D---- C:\Program Files\Google
2010-08-24 20:30:20 ----D---- C:\totalcmd
2010-08-24 20:30:20 ----A---- C:\WINDOWS\wincmd.ini
2010-08-24 20:30:20 ----A---- C:\WINDOWS\UC.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\RAR.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\PKZIP.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\PKUNZIP.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\NOCLOSE.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\LHA.PIF
2010-08-24 20:30:20 ----A---- C:\WINDOWS\ARJ.PIF
2010-08-24 20:08:00 ----HD---- C:\$AVG
2010-08-24 20:07:04 ----D---- C:\Documents and Settings\Iveta\Data aplikací\URSoft
2010-08-24 20:07:03 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-08-24 20:06:56 ----D---- C:\Program Files\Your Uninstaller 2010
2010-08-24 20:03:57 ----D---- C:\Documents and Settings\Iveta\Data aplikací\WinRAR
2010-08-24 20:01:36 ----D---- C:\Program Files\WinRAR
2010-08-24 14:41:10 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Media Player Classic
2010-08-24 14:37:11 ----D---- C:\Program Files\CCleaner
2010-08-24 14:21:14 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Mozilla
2010-08-24 14:21:00 ----D---- C:\Program Files\Mozilla Firefox
2010-08-24 13:35:02 ----A---- C:\WINDOWS\system32\unrar.dll
2010-08-24 13:35:02 ----A---- C:\WINDOWS\avisplitter.ini
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-08-24 13:35:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-08-24 13:34:57 ----D---- C:\Program Files\K-Lite Codec Pack
2010-08-24 12:28:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-08-24 12:28:09 ----D---- C:\Program Files\Common Files\Adobe
2010-08-24 12:20:16 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem #3.txt
2010-08-24 12:19:15 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem #2.txt
2010-08-24 12:13:30 ----A---- C:\WINDOWS\ModemLog_Vertex Wireless CDC Modem.txt
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfwhnt.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfwh.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfserd.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfmdm.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfmdfl.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfdiag.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfcmnt.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfcm.sys
2010-08-24 12:12:50 ----A---- C:\WINDOWS\system32\drivers\vwmfbus.sys
2010-08-24 12:12:34 ----D---- C:\Program Files\Vertex Wireless
2010-08-24 12:12:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Vertex Wireless
2010-08-24 10:26:27 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2010-08-24 10:26:25 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2010-08-24 10:26:18 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2010-08-24 10:26:17 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2010-08-24 10:26:14 ----D---- C:\WINDOWS\system32\drivers\Avg
2010-08-24 10:26:09 ----D---- C:\Program Files\AVG
2010-08-24 10:26:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2010-08-24 10:19:23 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Adobe
2010-08-24 10:18:58 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Macromedia
2010-08-24 09:20:09 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-08-24 09:20:09 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-08-24 08:53:19 ----A---- C:\WINDOWS\system32\msonpmon.dll
2010-08-24 08:51:19 ----D---- C:\Program Files\Microsoft Works
2010-08-24 08:51:07 ----D---- C:\Program Files\MSBuild
2010-08-24 08:50:49 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-24 08:50:48 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-24 08:50:20 ----D---- C:\Program Files\Microsoft.NET
2010-08-24 08:47:59 ----D---- C:\WINDOWS\SHELLNEW
2010-08-24 08:47:47 ----D---- C:\Program Files\Microsoft Office
2010-08-24 08:47:28 ----RHD---- C:\MSOCache
2010-08-24 08:46:28 ----D---- C:\WINDOWS\SxsCaPendDel
2010-08-24 08:45:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-08-24 08:45:09 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-08-24 08:44:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-08-24 08:44:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-08-24 08:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-08-24 08:43:43 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-08-24 08:38:08 ----D---- C:\WINDOWS\system32\appmgmt
2010-08-24 08:26:30 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-24 08:26:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-24 08:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2183461$
2010-08-24 08:26:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-24 08:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-24 08:25:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-24 08:25:47 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-24 08:24:09 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-24 08:24:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-24 08:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-08-24 08:23:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-08-24 08:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-08-24 08:23:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-08-24 08:23:05 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-08-24 08:23:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-08-24 08:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-08-24 08:22:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-08-24 08:22:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-08-24 08:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-08-24 08:22:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-08-24 08:22:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-08-24 08:22:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-08-24 08:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-08-24 08:22:15 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-08-24 08:22:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-08-24 08:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-08-24 08:21:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-08-24 08:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-08-24 08:21:45 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-08-24 08:21:40 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-08-24 08:21:34 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-08-24 08:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-08-24 08:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-08-24 08:21:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-08-24 08:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-08-24 08:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-08-24 08:21:01 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-08-24 08:20:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-08-24 08:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-08-24 08:20:40 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-08-24 08:20:35 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-08-24 08:20:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-08-24 08:20:26 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-08-24 08:20:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-08-24 08:20:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-08-24 08:19:33 ----D---- C:\WINDOWS\ie8updates
2010-08-24 08:19:11 ----D---- C:\WINDOWS\WBEM
2010-08-24 08:18:08 ----HDC---- C:\WINDOWS\ie8
2010-08-24 08:17:11 ----A---- C:\WINDOWS\system32\MRT.exe
2010-08-24 08:15:41 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-08-24 08:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-08-24 08:15:31 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-08-24 08:15:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-08-24 08:15:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-08-24 08:15:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-08-24 08:15:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-08-24 08:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-08-24 08:10:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-08-24 08:10:37 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-08-24 08:10:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-08-24 08:10:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-08-24 08:10:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-08-24 08:10:11 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-08-24 08:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-08-24 08:06:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-08-24 08:06:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-08-24 08:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-08-24 08:06:12 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-08-24 08:06:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-08-24 08:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-08-24 08:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-08-24 08:05:54 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-08-24 08:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-08-24 08:05:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-08-24 08:05:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-08-24 08:05:34 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-08-24 08:05:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-08-24 08:05:03 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-08-24 08:05:02 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-08-24 08:04:50 ----D---- C:\Program Files\Windows Media Connect 2
2010-08-24 08:04:39 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-08-24 08:04:11 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-08-24 08:03:55 ----D---- C:\WINDOWS\system32\LogFiles
2010-08-24 08:03:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-08-24 08:03:52 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-08-24 08:01:08 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-08-24 07:38:41 ----D---- C:\WINDOWS\Prefetch
2010-08-24 07:31:41 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-24 07:31:40 ----D---- C:\WINDOWS\system32\cs
2010-08-24 07:31:40 ----D---- C:\WINDOWS\system32\bits
2010-08-24 07:31:40 ----D---- C:\WINDOWS\l2schemas
2010-08-24 07:30:16 ----D---- C:\WINDOWS\ServicePackFiles
2010-08-24 07:28:40 ----D---- C:\WINDOWS\network diagnostic
2010-08-24 07:23:23 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-08-24 07:19:13 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-08-24 07:19:11 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-08-24 07:19:11 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-08-24 07:19:10 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-08-24 07:19:09 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-08-24 07:19:06 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-08-24 07:18:29 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-08-24 07:18:28 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-08-24 07:12:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-08-24 07:12:18 ----D---- C:\WINDOWS\system32\PreInstall
2010-08-24 07:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-08-24 07:01:58 ----A---- C:\WINDOWS\system32\wups2.dll
2010-08-24 07:01:58 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-08-24 07:01:57 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-08-24 07:01:57 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-08-24 07:01:57 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2010-08-24 06:57:09 ----ASH---- C:\hiberfil.sys
2010-08-24 06:55:25 ----D---- C:\WINDOWS\system32\Lang
2010-08-24 06:55:05 ----SD---- C:\Documents and Settings\Iveta\Data aplikací\Microsoft
2010-08-24 06:55:05 ----D---- C:\Documents and Settings\Iveta\Data aplikací\Identities
2010-08-24 06:55:05 ----ASH---- C:\Documents and Settings\Iveta\Data aplikací\desktop.ini
2010-08-24 06:53:47 ----D---- C:\Program Files\Adobe
2010-08-24 06:53:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2010-08-24 06:53:43 ----A---- C:\WINDOWS\system32\drivers\zntport.sys
2010-08-24 06:53:42 ----A---- C:\WINDOWS\system32\NTPORT.DLL
2010-08-24 06:53:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-24 06:53:41 ----D---- C:\Program Files\FSC
2010-08-24 06:53:40 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-24 06:50:54 ----D---- C:\Program Files\Synaptics
2010-08-24 06:50:53 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-24 06:50:38 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-08-24 06:50:34 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-24 06:50:32 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-24 06:50:30 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-24 06:50:28 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-24 06:50:27 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-08-24 06:50:25 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-08-24 06:50:23 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-08-24 06:50:19 ----A---- C:\WINDOWS\system32\SiSPower.dll
2010-08-24 06:50:19 ----A---- C:\WINDOWS\InstFunc.exe
2010-08-24 06:50:19 ----A---- C:\WINDOWS\InstFunc.dll
2010-08-24 06:50:19 ----A---- C:\WINDOWS\difxapi.dll
2010-08-24 06:49:59 ----D---- C:\WINDOWS\system32\RTCOM
2010-08-24 06:49:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-24 06:49:57 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-23 15:23:39 ----SHD---- C:\RECYCLER
2010-08-23 15:23:38 ----A---- C:\WINDOWS\smscfg.ini
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynTPCo4.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\SynCOM.dll
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\SiSGbeXP.sys
2010-08-23 15:22:55 ----A---- C:\WINDOWS\system32\drivers\ar5211.sys
2010-08-23 15:22:54 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-08-23 15:22:54 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-08-23 15:22:53 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-08-23 15:22:53 ----A---- C:\WINDOWS\MicCal.exe
2010-08-23 15:22:52 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-08-23 15:22:52 ----A---- C:\WINDOWS\RtlUpd.exe
2010-08-23 15:22:52 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSPIns2.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSParse.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSInst.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\sisgrv.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\sisgl770.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\SiSBase.dll
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\drivers\srvkp.sys
2010-08-23 15:22:51 ----A---- C:\WINDOWS\system32\drivers\sisgrp.sys
2010-08-23 15:22:51 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-08-23 15:22:51 ----A---- C:\WINDOWS\SkyTel.exe
2010-08-23 15:21:36 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2010-08-23 15:21:23 ----A---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-08-23 15:20:47 ----SHD---- C:\System Volume Information
2010-08-23 15:20:20 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 months======

2010-08-25 09:35:51 ----D---- C:\WINDOWS\Temp
2010-08-25 09:35:51 ----D---- C:\WINDOWS\system32\drivers
2010-08-25 09:03:38 ----HD---- C:\WINDOWS\inf
2010-08-25 09:03:30 ----D---- C:\WINDOWS
2010-08-25 09:03:28 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-25 09:01:50 ----D---- C:\WINDOWS\system32\Restore
2010-08-25 08:59:59 ----SHD---- C:\WINDOWS\Installer
2010-08-25 08:57:50 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-08-25 08:28:29 ----SD---- C:\WINDOWS\Tasks
2010-08-25 08:20:10 ----D---- C:\WINDOWS\WinSxS
2010-08-25 08:20:05 ----D---- C:\WINDOWS\system32
2010-08-24 23:04:33 ----RSD---- C:\WINDOWS\Fonts
2010-08-24 23:04:26 ----D---- C:\Program Files\Common Files
2010-08-24 23:04:15 ----RD---- C:\Program Files
2010-08-24 22:39:47 ----RSHD---- C:\WINDOWS\system32\dllcache
2010-08-24 20:13:27 ----D---- C:\WINDOWS\repair
2010-08-24 14:38:05 ----D---- C:\WINDOWS\Debug
2010-08-24 12:14:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-24 10:26:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-24 09:29:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-08-24 09:10:47 ----A---- C:\WINDOWS\win.ini
2010-08-24 09:10:46 ----D---- C:\Program Files\Common Files\System
2010-08-24 08:45:33 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-24 08:45:20 ----D---- C:\WINDOWS\pchealth
2010-08-24 08:34:02 ----D---- C:\WINDOWS\AppPatch
2010-08-24 08:34:01 ----D---- C:\WINDOWS\Help
2010-08-24 08:34:01 ----D---- C:\Program Files\Internet Explorer
2010-08-24 08:34:00 ----D---- C:\WINDOWS\system32\wbem
2010-08-24 08:26:01 ----D---- C:\Program Files\Movie Maker
2010-08-24 08:22:49 ----D---- C:\Program Files\Outlook Express
2010-08-24 08:19:05 ----D---- C:\WINDOWS\Media
2010-08-24 08:05:56 ----D---- C:\Program Files\Messenger
2010-08-24 08:04:49 ----D---- C:\Program Files\Windows Media Player
2010-08-24 07:48:13 ----A---- C:\Lang.txt
2010-08-24 07:38:25 ----D---- C:\WINDOWS\system32\Setup
2010-08-24 07:37:42 ----D---- C:\WINDOWS\security
2010-08-24 07:35:20 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-24 07:31:52 ----D---- C:\WINDOWS\ehome
2010-08-24 07:31:51 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-24 07:31:51 ----D---- C:\WINDOWS\ime
2010-08-24 07:31:41 ----D---- C:\WINDOWS\system32\usmt
2010-08-24 07:31:40 ----D---- C:\WINDOWS\PeerNet
2010-08-24 07:30:08 ----D---- C:\WINDOWS\system32\npp
2010-08-24 07:30:07 ----D---- C:\WINDOWS\msagent
2010-08-24 07:30:06 ----D---- C:\WINDOWS\srchasst
2010-08-24 07:30:06 ----D---- C:\Program Files\NetMeeting
2010-08-24 07:30:05 ----D---- C:\WINDOWS\system32\Com
2010-08-24 07:30:03 ----D---- C:\Program Files\Windows NT
2010-08-24 07:29:49 ----D---- C:\WINDOWS\system32\oobe
2010-08-24 07:29:48 ----D---- C:\WINDOWS\system
2010-08-24 07:02:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-24 07:02:35 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-24 06:57:23 ----D---- C:\Addon
2010-08-24 06:55:04 ----D---- C:\Documents and Settings
2010-08-24 06:53:39 ----RASH---- C:\boot.ini
2010-08-24 06:52:43 ----D---- C:\WINDOWS\Registration
2010-08-24 06:52:36 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-08-24 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-08-24 29584]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-08-24 243024]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2007-08-03 18688]
R2 zntport;NTPort Library Driver; \??\C:\WINDOWS\system32\drivers\zntport.sys []
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-06-21 547072]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-10 4603904]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2007-08-03 321536]
R3 SiSGbeXP;SiS191/SiS190 Ethernet Device NDIS 5.1 Driver; C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys [2007-05-16 42368]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-05-10 208576]
R3 vwmfbus;Vertex Wireless Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfbus.sys [2009-05-29 90240]
R3 vwmfdiag;Vertex Wireless Diagnostic Monitor Port Driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfdiag.sys [2009-05-29 98688]
R3 vwmfmdfl;~Vertex Wireless CDC Modem Filter~; C:\WINDOWS\system32\DRIVERS\vwmfmdfl.sys [2009-05-29 14976]
R3 vwmfmdm;Vertex Wireless CDC Modem Driver; C:\WINDOWS\system32\DRIVERS\vwmfmdm.sys [2009-05-29 121984]
R3 vwmfserd;Vertex Wireless Device Management Port Driver (WDM); C:\WINDOWS\system32\DRIVERS\vwmfserd.sys [2009-05-29 98688]
R4 67025781;67025781; C:\WINDOWS\system32\DRIVERS\67025781.sys []
S1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 S3SavageNB;S3SavageNB; C:\WINDOWS\system32\DRIVERS\s3gnbm.sys [2004-08-04 166912]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
S4 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-13 42752]
S4 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-13 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
S4 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-08-24 308136]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

[JaRon]

otestuj na http://virusscan.jotti.org/sk subor C:\WINDOWS\system32\DRIVERS\67025781.sys - nehladaj len skopiruj do okna

[stonehod]

nejde to, pokaždé napíše soubor nenalezen

[JaRon]

OKi - ak neexistuje, nemoze byt smejdom
tak teda koncime - hotovo