task manager v tray

[matkosk]

ahoj,
prosim o kontrolu logu znova, nakolko toto vlakno
http://www.viry.cz/forum/viewtopic.php?f=13&t=105663
hlasi ze zadane tema neexistuje,
nevidim teda odpoved od Rudyho.
po spusteni taksmanager ostane v tray a nejde obnovit, a nasledne ak dam vypnut pc,
ostane v stave "odhlasovani" po dlhy cas, pomoze jedine vypnutie tlacidlom.

Dakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by Alexandra at 2010-10-18 16:49:16
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 190 GB (82%) free of 231 GB
Total RAM: 2046 MB (63% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-05-08 1262888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-06-01 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
VeriSoft Access Manager - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll [2006-11-21 71192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-01-13 827392]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-02-12 174872]
"HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-03-12 50696]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-03-01 472776]
"CognizanceTS"=c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll [2003-12-22 17920]
"MSConfig"=C:\Windows\system32\msconfig.exe [2008-01-19 227840]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-04-01 486856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-02-13 159744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QPService]
C:\Program Files\HP\QuickPlay\QPService.exe [2007-04-23 176128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-10-09 729088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0\bin\jusched.exe [2007-06-01 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WAWifiMessage]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\ADOBEC~1.EXE [2007-05-11 738968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PDFCreator.lnk]
C:\PROGRA~1\PDFCRE~1\PDFCRE~1.EXE [2007-12-24 2641920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2010-10-18 16:42:21 ----D---- C:\Program Files\trend micro
2010-10-18 16:42:20 ----D---- C:\rsit
2010-10-18 15:57:24 ----ASH---- C:\hiberfil.sys
2010-10-18 13:33:52 ----A---- C:\Windows\system32\msshsq.dll
2010-10-18 10:00:44 ----A---- C:\Windows\system32\ieframe.dll
2010-10-18 10:00:43 ----A---- C:\Windows\system32\mshtml.dll
2010-10-18 10:00:43 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-18 10:00:42 ----A---- C:\Windows\system32\ieapfltr.dll
2010-10-18 10:00:41 ----A---- C:\Windows\system32\urlmon.dll
2010-10-18 10:00:41 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\wininet.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\occache.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\mstime.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\iertutil.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\iepeers.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\ieencode.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-18 10:00:40 ----A---- C:\Windows\system32\ieaksie.dll
2010-10-18 09:58:22 ----A---- C:\Windows\system32\comctl32.dll
2010-10-18 09:53:45 ----N---- C:\Windows\system32\rpcnet.exe
2010-10-18 09:53:45 ----A---- C:\Windows\system32\rpcnet.dll
2010-10-16 17:11:49 ----A---- C:\Windows\system32\rpcnetp.dll
2010-10-16 15:47:08 ----A---- C:\Windows\system32\rpcnetp.exe
2010-10-11 09:38:04 ----A---- C:\Windows\system32\tzres.dll
2010-10-11 08:44:03 ----D---- C:\ProgramData\Avira
2010-09-28 10:51:58 ----D---- C:\ProgramData\Alwil Software
2010-09-28 10:51:58 ----D---- C:\Program Files\Alwil Software
2010-09-28 10:40:57 ----D---- C:\Windows\temp
2010-09-28 10:40:55 ----A---- C:\ComboFix.txt
2010-09-28 10:39:38 ----SHD---- C:\$RECYCLE(4).BIN
2010-09-28 10:28:48 ----D---- C:\ComboFix
2010-09-28 09:00:00 ----D---- C:\Qoobox
2010-09-25 17:28:48 ----SHD---- C:\RECYCLER
2010-09-24 15:11:23 ----A---- C:\Windows\system32\msshooks.dll
2010-09-24 15:11:22 ----A---- C:\Windows\system32\msscb.dll
2010-09-24 15:11:21 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-09-24 15:11:21 ----A---- C:\Windows\system32\propdefs.dll
2010-09-24 15:11:21 ----A---- C:\Windows\system32\msstrc.dll
2010-09-24 15:11:21 ----A---- C:\Windows\system32\mssprxy.dll
2010-09-24 15:11:21 ----A---- C:\Windows\system32\mssitlb.dll
2010-09-24 15:11:20 ----A---- C:\Windows\system32\thawbrkr.dll
2010-09-24 15:11:20 ----A---- C:\Windows\system32\srchadmin.dll
2010-09-24 15:11:20 ----A---- C:\Windows\system32\propsys.dll
2010-09-24 15:11:20 ----A---- C:\Windows\system32\korwbrkr.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\xmlfilter.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\wsepno.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-09-24 15:11:19 ----A---- C:\Windows\system32\rtffilt.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\offfilt.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\nlhtml.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\msscntrs.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\mimefilt.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\chtbrkr.dll
2010-09-24 15:11:19 ----A---- C:\Windows\system32\chsbrkr.dll
2010-09-24 15:11:18 ----A---- C:\Windows\system32\tquery.dll
2010-09-24 15:11:18 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-09-24 15:11:18 ----A---- C:\Windows\system32\mssvp.dll
2010-09-24 15:11:18 ----A---- C:\Windows\system32\mssrch.dll
2010-09-24 15:11:18 ----A---- C:\Windows\system32\mssphtb.dll
2010-09-24 15:11:18 ----A---- C:\Windows\system32\mssph.dll
2010-09-24 15:08:57 ----A---- C:\Windows\system32\psisdecd.dll
2010-09-24 15:08:57 ----A---- C:\Windows\system32\EncDec.dll
2010-09-24 15:07:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-09-24 15:07:57 ----A---- C:\Windows\system32\PresentationHost.exe
2010-09-24 15:07:57 ----A---- C:\Windows\system32\netfxperf.dll
2010-09-24 15:07:57 ----A---- C:\Windows\system32\mscoree.dll
2010-09-24 15:07:57 ----A---- C:\Windows\system32\dfshim.dll
2010-09-24 12:48:45 ----A---- C:\Windows\ntbtlog.txt
2010-09-22 20:45:22 ----A---- C:\Windows\system32\atmlib.dll
2010-09-22 20:45:22 ----A---- C:\Windows\system32\atmfd.dll
2010-09-22 20:43:59 ----A---- C:\Windows\system32\usp10.dll
2010-09-22 20:43:55 ----A---- C:\Windows\system32\iccvid.dll
2010-09-22 20:43:51 ----A---- C:\Windows\system32\pacerprf.dll
2010-09-22 20:43:51 ----A---- C:\Windows\system32\drivers\pacer.sys
2010-09-22 20:43:42 ----A---- C:\Windows\system32\ieUnatt.exe
2010-09-22 20:43:36 ----A---- C:\Windows\system32\schannel.dll
2010-09-22 20:43:34 ----A---- C:\Windows\system32\asycfilt.dll
2010-09-22 20:39:09 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-09-22 20:39:08 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-09-22 20:37:04 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-22 20:36:19 ----A---- C:\Windows\system32\MP4SDECD.DLL
2010-09-22 20:31:01 ----A---- C:\Windows\system32\win32k.sys
2010-09-22 20:30:52 ----A---- C:\Windows\system32\rtutils.dll
2010-09-22 20:29:45 ----A---- C:\Windows\system32\shell32.dll
2010-09-22 20:28:48 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-09-22 20:28:42 ----A---- C:\Windows\system32\inetcomm.dll
2010-09-22 20:28:39 ----A---- C:\Windows\system32\wersvc.dll
2010-09-22 20:28:39 ----A---- C:\Windows\system32\Faultrep.dll
2010-09-22 20:28:37 ----A---- C:\Windows\system32\quartz.dll
2010-09-22 20:28:35 ----A---- C:\Windows\system32\msxml3.dll
2010-09-22 20:28:30 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-09-22 20:28:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-22 20:28:20 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-09-22 20:28:20 ----A---- C:\Windows\system32\drivers\srv.sys
2010-09-22 20:28:19 ----A---- C:\Windows\system32\emdmgmt.dll
2010-09-22 20:28:18 ----A---- C:\Windows\system32\drivers\nwifi.sys
2010-09-22 20:28:18 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-09-22 20:28:18 ----A---- C:\Windows\system32\dataclen.dll
2010-09-22 20:28:18 ----A---- C:\Windows\system32\cdd.dll
2010-09-22 08:51:02 ----A---- C:\Windows\system32\wshext.dll
2010-09-22 08:51:02 ----A---- C:\Windows\system32\wscript.exe
2010-09-22 08:51:02 ----A---- C:\Windows\system32\scrrun.dll
2010-09-22 08:51:02 ----A---- C:\Windows\system32\scrobj.dll
2010-09-22 08:51:02 ----A---- C:\Windows\system32\cscript.exe
2010-09-21 16:08:07 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2010-09-21 16:08:07 ----A---- C:\Windows\system32\drivers\avipbb.sys
2010-09-21 16:08:07 ----A---- C:\Windows\system32\drivers\avgntmgr.sys
2010-09-21 16:08:07 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2010-09-21 16:08:07 ----A---- C:\Windows\system32\drivers\avgntdd.sys
2010-09-21 16:08:06 ----D---- C:\Program Files\Avira
2010-09-21 15:17:11 ----D---- C:\PerfLogs

======List of files/folders modified in the last 1 months======

2010-10-18 16:42:21 ----RD---- C:\Program Files
2010-10-18 16:42:12 ----D---- C:\Windows\Prefetch
2010-10-18 16:36:42 ----SHD---- C:\System Volume Information
2010-10-18 16:13:00 ----D---- C:\Windows\System32
2010-10-18 16:13:00 ----D---- C:\Windows\inf
2010-10-18 16:13:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-10-18 16:08:32 ----D---- C:\Windows\system32\drivers
2010-10-18 15:44:36 ----D---- C:\Program Files\Internet Explorer
2010-10-18 13:34:08 ----D---- C:\Windows
2010-10-18 13:33:57 ----D---- C:\Windows\winsxs
2010-10-18 13:33:56 ----D---- C:\Windows\system32\catroot2
2010-10-18 13:33:56 ----D---- C:\Windows\system32\catroot
2010-10-18 10:08:34 ----D---- C:\Windows\rescache
2010-10-18 09:57:14 ----D---- C:\Windows\Microsoft.NET
2010-10-18 09:57:13 ----RSD---- C:\Windows\assembly
2010-10-18 09:53:42 ----D---- C:\Windows\Debug
2010-10-18 09:53:39 ----A---- C:\Windows\system32\mrt.exe
2010-10-16 17:25:35 ----D---- C:\Program Files\Google
2010-10-16 17:24:40 ----D---- C:\Windows\system32\cs-CZ
2010-10-16 17:24:39 ----RSD---- C:\Windows\Fonts
2010-10-16 17:17:14 ----SHD---- C:\Windows\Installer
2010-10-14 08:50:43 ----SHD---- C:\$RECYCLE.BIN
2010-10-11 09:30:34 ----D---- C:\Windows\system32\config
2010-10-11 09:28:19 ----D---- C:\Windows\system32\sysprep
2010-10-11 09:27:26 ----D---- C:\Windows\Tasks
2010-10-11 09:27:26 ----D---- C:\Windows\system32\zh-TW
2010-10-11 09:27:26 ----D---- C:\Windows\system32\zh-CN
2010-10-11 09:27:26 ----D---- C:\Windows\system32\wbem
2010-10-11 09:27:26 ----D---- C:\Windows\system32\uk-UA
2010-10-11 09:27:26 ----D---- C:\Windows\system32\tr-TR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\th-TH
2010-10-11 09:27:26 ----D---- C:\Windows\system32\Tasks
2010-10-11 09:27:26 ----D---- C:\Windows\system32\sv-SE
2010-10-11 09:27:26 ----D---- C:\Windows\system32\sr-Latn-CS
2010-10-11 09:27:26 ----D---- C:\Windows\system32\spool
2010-10-11 09:27:26 ----D---- C:\Windows\system32\sl-SI
2010-10-11 09:27:26 ----D---- C:\Windows\system32\sk-SK
2010-10-11 09:27:26 ----D---- C:\Windows\system32\ru-RU
2010-10-11 09:27:26 ----D---- C:\Windows\system32\RTCOM
2010-10-11 09:27:26 ----D---- C:\Windows\system32\ro-RO
2010-10-11 09:27:26 ----D---- C:\Windows\system32\pt-PT
2010-10-11 09:27:26 ----D---- C:\Windows\system32\pt-BR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\pl-PL
2010-10-11 09:27:26 ----D---- C:\Windows\system32\nl-NL
2010-10-11 09:27:26 ----D---- C:\Windows\system32\nb-NO
2010-10-11 09:27:26 ----D---- C:\Windows\system32\Msdtc
2010-10-11 09:27:26 ----D---- C:\Windows\system32\lv-LV
2010-10-11 09:27:26 ----D---- C:\Windows\system32\lt-LT
2010-10-11 09:27:26 ----D---- C:\Windows\system32\ko-KR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\ja-JP
2010-10-11 09:27:26 ----D---- C:\Windows\system32\it-IT
2010-10-11 09:27:26 ----D---- C:\Windows\system32\hu-HU
2010-10-11 09:27:26 ----D---- C:\Windows\system32\hr-HR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\he-IL
2010-10-11 09:27:26 ----D---- C:\Windows\system32\fr-FR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\fi-FI
2010-10-11 09:27:26 ----D---- C:\Windows\system32\et-EE
2010-10-11 09:27:26 ----D---- C:\Windows\system32\es-ES
2010-10-11 09:27:26 ----D---- C:\Windows\system32\en-US
2010-10-11 09:27:26 ----D---- C:\Windows\system32\el-GR
2010-10-11 09:27:26 ----D---- C:\Windows\system32\drivers\UMDF
2010-10-11 09:27:25 ----D---- C:\Windows\system32\drivers\etc
2010-10-11 09:27:25 ----D---- C:\Windows\system32\drivers\cs-CZ
2010-10-11 09:27:25 ----D---- C:\Windows\system32\de-DE
2010-10-11 09:27:25 ----D---- C:\Windows\system32\da-DK
2010-10-11 09:27:25 ----D---- C:\Windows\system32\CodeIntegrity
2010-10-11 09:27:25 ----D---- C:\Windows\system32\bg-BG
2010-10-11 09:27:25 ----D---- C:\Windows\system32\ar-SA
2010-10-11 09:27:25 ----D---- C:\Windows\Minidump
2010-10-11 09:27:23 ----D---- C:\Windows\ehome
2010-10-11 09:27:18 ----D---- C:\Users\Alexandra\AppData\Roaming\DAEMON Tools
2010-10-11 09:27:11 ----D---- C:\Program Files\Windows Media Player
2010-10-11 09:27:11 ----D---- C:\Program Files\Windows Journal
2010-10-11 09:27:11 ----D---- C:\Program Files\IrfanView
2010-10-11 09:27:10 ----D---- C:\Program Files\Common Files\microsoft shared
2010-10-11 09:24:30 ----D---- C:\Windows\registration
2010-10-11 09:24:21 ----D---- C:\Windows\system32\XPSViewer
2010-10-11 09:24:21 ----D---- C:\Windows\system32\WCN
2010-10-11 09:24:21 ----D---- C:\Windows\servicing
2010-10-11 09:24:20 ----D---- C:\Windows\system32\oobe
2010-10-11 09:24:20 ----D---- C:\Windows\PolicyDefinitions
2010-10-11 09:24:20 ----D---- C:\Windows\IME
2010-10-11 09:24:20 ----D---- C:\Program Files\Windows Sidebar
2010-10-11 09:24:19 ----D---- C:\Program Files\Windows Mail
2010-10-11 09:24:19 ----D---- C:\Program Files\Common Files\System
2010-10-11 08:44:03 ----HD---- C:\ProgramData
2010-10-07 22:11:11 ----D---- C:\Windows\system32\zh-HK
2010-10-05 22:48:44 ----D---- C:\Windows\Logs
2010-10-05 17:16:39 ----SHD---- C:\boot
2010-10-04 08:01:35 ----D---- C:\Windows\system32\WDI
2010-09-28 10:46:43 ----D---- C:\ProgramData\Google
2010-09-28 10:33:33 ----D---- C:\Program Files\Common Files
2010-09-24 15:31:24 ----D---- C:\Windows\AppPatch
2010-09-24 15:31:24 ----D---- C:\Program Files\Movie Maker
2010-09-21 15:30:08 ----ASH---- C:\Program Files\desktop.ini
2010-09-21 15:19:41 ----D---- C:\Program Files\Windows Calendar
2010-09-21 15:19:35 ----D---- C:\Program Files\Windows Collaboration
2010-09-21 15:19:34 ----D---- C:\Program Files\Windows Photo Gallery
2010-09-21 15:19:27 ----D---- C:\Program Files\Windows Defender
2010-09-21 15:19:20 ----D---- C:\Windows\MSAgent
2010-09-21 15:19:18 ----D---- C:\Windows\L2Schemas
2010-09-21 15:19:18 ----D---- C:\Windows\DigitalLocker
2010-09-21 15:19:17 ----D---- C:\Windows\system32\com
2010-09-21 15:19:16 ----D---- C:\Windows\system32\migration
2010-09-21 15:19:11 ----D---- C:\Windows\system32\AdvancedInstallers
2010-09-21 15:19:10 ----D---- C:\Windows\system32\setup
2010-09-21 15:19:10 ----D---- C:\Windows\system32\ias
2010-09-21 15:19:10 ----D---- C:\Windows\system32\cs
2010-09-21 15:19:02 ----D---- C:\Windows\system32\SLUI
2010-09-21 15:19:01 ----D---- C:\Windows\system32\manifeststore
2010-09-21 15:18:50 ----D---- C:\Windows\system32\migwiz
2010-09-21 15:17:15 ----D---- C:\Windows\Boot
2010-09-21 15:17:13 ----D---- C:\Windows\system32\Boot
2010-09-21 15:16:34 ----D---- C:\ProgramData\NVIDIA
2010-09-21 15:05:59 ----A---- C:\Windows\system32\ifxcardm.dll
2010-09-21 15:05:54 ----A---- C:\Windows\system32\axaltocm.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2007-02-02 43528]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-07-26 717296]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 eabfiltr;eabfiltr; C:\Windows\system32\DRIVERS\eabfiltr.sys [2006-11-30 8192]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-01-23 37376]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-28 140424]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-08-06 19456]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-08-06 29184]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
R3 NETw4v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-03-01 2216448]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-19 49664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-10-09 981504]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-01-13 181432]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 a6wgnhni;a6wgnhni; C:\Windows\system32\drivers\a6wgnhni.sys []
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 br3gmdm;BandLuxe 3.5G HSDPA Adapter - USB Serial; C:\Windows\system32\DRIVERS\br3gmdm.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-08-06 220160]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-07-11 101376]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [2007-04-23 262243]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
R2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\system32\rpcnet.exe [2010-10-18 57752]
S2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [2007-04-23 106593]
S2 gupdate1ca0524236bf2e4;Služba Google Update (gupdate1ca0524236bf2e4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-15 133104]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-03-14 62984]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-02-12 880640]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-02-17 74656]

-----------------EOF-----------------

[Rudy]

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

[matkosk]

system sa sprava stale rovnako, combofix nepomohol, skusal som ho uz aj predtym spolu s ccleaner.


ComboFix 10-10-18.06 - Alexandra . 10. 2010 19:39:52.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.421.1029.18.2046.1303 [GMT 2:00]
Running from: c:\users\Alexandra\Desktop\ComboFix.exe
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: Norton Internet Security *On-access scanning enabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
SP: Norton Internet Security *enabled* (Outdated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

Infected copy of c:\windows\System32\autochk.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe

.
((((((((((((((((((((((((( Files Created from 2010-09-19 to 2010-10-19 )))))))))))))))))))))))))))))))
.

2010-10-18 14:42 . 2010-10-18 14:42 -------- d-----w- c:\program files\trend micro
2010-10-18 14:42 . 2010-10-18 14:42 -------- d-----w- C:\rsit
2010-10-18 11:33 . 2010-09-20 09:25 231936 ----a-w- c:\windows\system32\msshsq.dll
2010-10-18 07:59 . 2010-09-06 16:24 125952 ----a-w- c:\windows\system32\srvsvc.dll
2010-10-18 07:59 . 2010-09-06 14:13 303616 ----a-w- c:\windows\system32\drivers\srv.sys
2010-10-18 07:59 . 2010-09-06 14:12 101888 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-10-18 07:59 . 2010-09-06 14:12 145408 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-10-18 07:59 . 2010-09-06 16:23 17920 ----a-w- c:\windows\system32\netevent.dll
2010-10-18 07:59 . 2010-08-26 16:07 157184 ----a-w- c:\windows\system32\t2embed.dll
2010-10-18 07:59 . 2010-09-10 16:35 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2010-10-18 07:58 . 2010-09-10 16:37 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-10-18 07:58 . 2010-06-28 16:15 1315840 ----a-w- c:\windows\system32\ole32.dll
2010-10-18 07:58 . 2010-06-28 14:31 339968 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
2010-10-18 07:58 . 2010-09-09 22:52 6084944 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{986B0308-B964-4DFD-A0E0-670A6F6D3AE9}\mpengine.dll
2010-10-18 07:58 . 2010-08-10 15:02 274432 ----a-w- c:\windows\system32\schannel.dll
2010-10-18 07:58 . 2010-08-31 15:41 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-10-18 07:58 . 2010-08-31 15:41 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-10-18 07:58 . 2010-08-31 13:39 2037248 ----a-w- c:\windows\system32\win32k.sys
2010-10-18 07:58 . 2010-08-20 15:21 866816 ----a-w- c:\windows\system32\wmpmde.dll
2010-10-18 07:58 . 2010-08-31 15:40 531968 ----a-w- c:\windows\system32\comctl32.dll
2010-10-18 07:53 . 2010-10-19 18:55 57752 ----a-w- c:\windows\system32\rpcnet.dll
2010-10-18 07:53 . 2010-10-18 07:53 57752 ------w- c:\windows\system32\rpcnet.exe
2010-10-16 15:11 . 2010-10-19 17:36 17408 ----a-w- c:\windows\system32\rpcnetp.dll
2010-10-16 13:47 . 2010-10-19 18:55 17408 ----a-w- c:\windows\system32\rpcnetp.exe
2010-10-11 07:38 . 2010-06-22 12:57 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-11 06:44 . 2010-10-11 06:44 -------- d-----w- c:\programdata\Avira
2010-09-28 08:51 . 2010-09-28 08:51 -------- d-----w- c:\programdata\Alwil Software
2010-09-28 08:51 . 2010-09-28 08:51 -------- d-----w- c:\program files\Alwil Software
2010-09-28 08:40 . 2010-10-10 12:52 -------- d-----w- c:\users\Alexandra\AppData\Local\Temp(192)
2010-09-28 08:39 . 2010-10-04 13:49 -------- d-----w- C:\$RECYCLE(4).BIN
2010-09-24 13:09 . 2010-04-14 17:46 80896 ----a-w- c:\windows\system32\MSNP.ax
2010-09-24 13:09 . 2010-04-14 17:45 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2010-09-24 13:08 . 2010-04-14 17:47 293376 ----a-w- c:\windows\system32\psisdecd.dll
2010-09-24 13:08 . 2010-04-14 17:47 217088 ----a-w- c:\windows\system32\psisrndr.ax
2010-09-24 13:08 . 2010-04-14 17:46 428544 ----a-w- c:\windows\system32\EncDec.dll
2010-09-24 13:07 . 2009-11-08 08:55 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-24 13:07 . 2009-11-08 08:55 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-24 13:07 . 2009-11-08 08:55 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-24 13:07 . 2009-11-08 08:55 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-24 13:07 . 2009-11-08 08:55 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-22 18:45 . 2010-05-26 16:16 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-22 18:45 . 2010-05-26 14:25 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-09-22 18:43 . 2010-04-16 16:10 501760 ----a-w- c:\windows\system32\usp10.dll
2010-09-22 18:43 . 2010-01-29 16:22 1616384 ----a-w- c:\program files\Windows Mail\msoe.dll
2010-09-22 18:43 . 2010-05-27 19:16 81920 ----a-w- c:\windows\system32\iccvid.dll
2010-09-22 18:43 . 2008-04-05 03:34 15360 ----a-w- c:\windows\system32\pacerprf.dll
2010-09-22 18:43 . 2008-04-05 01:21 72192 ----a-w- c:\windows\system32\drivers\pacer.sys
2010-09-22 18:43 . 2010-05-04 16:53 26624 ----a-w- c:\windows\system32\ieUnatt.exe
2010-09-22 18:43 . 2010-04-05 16:07 67072 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-22 18:39 . 2010-04-16 16:05 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-09-22 18:39 . 2010-04-16 14:17 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-09-22 18:37 . 2010-08-17 13:32 126464 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-22 18:36 . 2010-06-17 17:15 10926592 ----a-w- c:\program files\Movie Maker\MOVIEMK.dll
2010-09-22 18:36 . 2010-06-17 15:49 150016 ----a-w- c:\program files\Movie Maker\MOVIEMK.exe
2010-09-22 18:36 . 2010-04-05 16:08 317952 ----a-w- c:\windows\system32\MP4SDECD.DLL
2010-09-22 18:30 . 2010-06-18 16:43 36352 ----a-w- c:\windows\system32\rtutils.dll
2010-09-22 18:30 . 2010-08-17 10:52 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2010-09-22 06:51 . 2008-05-08 21:59 90112 ----a-w- c:\windows\system32\wshext.dll
2010-09-22 06:51 . 2008-05-08 21:59 180224 ----a-w- c:\windows\system32\scrobj.dll
2010-09-22 06:51 . 2008-05-08 21:59 172032 ----a-w- c:\windows\system32\scrrun.dll
2010-09-22 06:51 . 2008-05-08 21:59 155648 ----a-w- c:\windows\system32\wscript.exe
2010-09-22 06:51 . 2008-05-08 21:58 135168 ----a-w- c:\windows\system32\cscript.exe
2010-09-22 06:51 . 2008-05-08 21:58 135168 ----a-w- c:\windows\system32\wshom.ocx
2010-09-21 14:08 . 2010-03-01 08:05 124784 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-09-21 14:08 . 2010-02-16 12:24 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-09-21 14:08 . 2009-05-11 10:49 51992 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2010-09-21 14:08 . 2009-05-11 10:49 17016 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2010-09-21 14:08 . 2010-10-11 07:27 -------- d-----w- c:\program files\Avira
2010-09-21 13:17 . 2010-09-21 13:17 -------- d-----w- C:\PerfLogs

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-01-13 827392]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-09 4390912]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 174872]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776]
"CognizanceTS"="c:\progra~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-03-02 282792]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=c:\windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PDFCreator.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\PDFCreator.lnk
backup=c:\windows\pss\PDFCreator.lnk.CommonStartup
backupExtension=.CommonStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 20:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
2010-03-02 09:28 282792 ----a-w- c:\program files\Avira\AntiVir Desktop\avgnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-04-01 09:39 486856 ----a-w- c:\program files\DAEMON Tools Lite\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2005-02-16 21:11 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
2007-02-13 09:38 159744 ----a-w- c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QPService]
2007-04-23 16:11 176128 ----a-w- c:\program files\HP\QuickPlay\QPService.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
2006-10-09 20:43 729088 ----a-w- c:\program files\Motorola\SMSERIAL\sm56hlpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-06-01 21:44 77824 ----a-w- c:\program files\Java\jre1.6.0\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WAWifiMessage]
2007-01-10 14:12 317128 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
c:\program files\Winamp\winampa.exe [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-19 07:38 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1628041405-1032094418-936635674-1000]
"EnableNotificationsRef"=dword:00000001

R2 gupdate1ca0524236bf2e4;Služba Google Update (gupdate1ca0524236bf2e4);c:\program files\Google\Update\GoogleUpdate.exe [2009-07-15 133104]
R3 br3gmdm;BandLuxe 3.5G HSDPA Adapter - USB Serial;c:\windows\system32\DRIVERS\br3gmdm.sys [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2008-07-26 717296]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2008-01-19 21504]
S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2008-01-19 21504]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASBroker ASChannel
bthsvcs REG_MULTI_SZ BthServ
.
Contents of the 'Scheduled Tasks' folder

2010-10-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-15 08:13]

2010-10-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-15 08:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe


.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(1648)
c:\windows\system32\APSHook.dll
c:\program files\Bioscrypt\VeriSoft\Bin\ItClient.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Bioscrypt\VeriSoft\Bin\AsGHost.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\rpcnet.exe
c:\windows\system32\conime.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\RtHDVCpl.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Completion time: 2010-10-19 21:00:13 - machine was rebooted
ComboFix-quarantined-files.txt 2010-10-19 19:00
ComboFix2.txt 2010-09-28 08:40
ComboFix3.txt 2010-09-28 07:45

Pre-Run: Volných bajtů: 195 613 675 520
Post-Run: Volných bajtů: 195 367 051 264

- - End Of File - - 5416B896E888721CD07C23F8E203553D

[JaRon]

jednorazovo zaskocim:
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: Norton Internet Security *On-access scanning enabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
odinstaluj jeden z uvedenej dvojice

[matkosk]

Norton Internet Security sa nenachadya v programoch na odinstalovanie

[Rudy]

3 položky CF smazal, zbytek logu vypadá čistý. Norton odinstalujte utilitou SymNrt: http://majorgeeks.com/Norton_Removal_To ... d4749.html .

[matkosk]

Tak neviem, ntb aj tak nefunguje, teraz som sputil ten removal tool, bezi na pozadi a nic. task manager vidim spusteny v tray a nejde obnovit. potom restartujem pc do safe modu a nasledne restartujem a chvilu to ide a potom sa tzo cele zopakuje.
neda sa korektne vypnut, taskman v tray atd...
Zostava asi reinstall.

[Rudy]

Udělejte sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Dejte log.

[matkosk]

log je cisty...
uz ma napadlo ze je to hw porucha, zatial som skusal menit ram, nepomohlo.
chova sa to rovnako, preinstalujem to a uvidim.
dakujem za pomoc, a klobuk dole, toto forum je super.

[Rudy]

Můžete ještě zkusit: Start>spustit>(napsat) regedit>OK. Na jednotlivých kartách hledejte taskmanager a zrušením zatržítka vlevo zabraňte jeho spuštění. Restartujte PC.