VIRY.CZ

Zdravím,
prosím o pomoc s PC. Zničehonic zmizel nainstalovaný NORTON 360 a Chrome má zablokovaný přístup do netu. Spybot mi nic nenašel, ale navíc dokonce dokud byl nainstalovaný, tak zablokoval port 80 a tudíž jsem se nedostal na net už vůbec. Nabootoval jsem PC na CD Nortonu a nechal projet PC, nic to nenašlo. Aktuálně jsem instaloval AVG Free a zkouším to projet, ale nevěřím, že něco najde. Jin ak, přestože se přes IE na net dostanu, AVG si nemůže stáhnout aktualizaci neboť jsem "offline". CCleaner vyčistil asi 1170 chybných záznamů v registru ale to také ničemu nepomohlo. Prosím o radu / pomoc.
díky moc

RSIT :

• Logfile of random's system information tool 1.09 (written by random/random)
  Run by admin at 2013-06-27 18:23:36
  Microsoft Windows XP Home Edition Service Pack 3
  System drive C: has 13 GB (25%) free of 50 GB
  Total RAM: 2046 MB (44% free)
  
  HijackThis download failed
  
  ======Scheduled tasks folder======
  
  C:\WINDOWS\tasks\Adobe Flash Player Updater.job
  C:\WINDOWS\tasks\AppleSoftwareUpdate.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-884357618-682003330-1004Core.job
  C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-884357618-682003330-1004UA.job
  C:\WINDOWS\tasks\User_Feed_Synchronization-{BDB8BE4A-275B-44AB-8516-B1986F42C17E}.job
  
  ======Registry dump======
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
  PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
  EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09 34304]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
  Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-28 462752]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
  Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-04-15 4529272]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
  Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
  Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-28 171424]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2006-10-17 398944]
  "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
  "SigmatelSysTrayApp"=C:\WINDOWS\sttray.exe [2007-05-06 405504]
  "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
  "Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
  "KONICA MINOLTA magicolor2300WStatusDisplay"=C:\WINDOWS\system32\MSTMON_P.EXE [2003-12-22 176128]
  "KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-10-11 309688]
  "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240]
  "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]
  "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
  ""= []
  "SearchSettings"=C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2012-11-28 1123720]
  "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
  "N360"=C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360\2454B0AB\5.0.0.125\InstStub.exe [2013-06-27 1262824]
  "AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-04-29 4408368]
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
  "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
  "KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2012-10-11 966072]
  "KiesAirMessage"=C:\Program Files\Samsung\Kies\KiesAirMessage.exe [2012-10-09 580096]
  "KiesPDLR"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-10 843208]
  "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]
  ""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-10 843208]
  "GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2013-06-06 19676256]
  "Google Update"=C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2013-06-24 116648]
  
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
  C:\WINDOWS\system32\NeroCheck.exe []
  
  C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
  Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
  Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  Zástupce - KOMWIN.lnk - C:\REG_ETH\KOMWIN.EXE
  
  C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění
  Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
  C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
  "dontdisplaylastusername"=0
  "legalnoticecaption"=
  "legalnoticetext"=
  "shutdownwithoutlogon"=1
  "undockwithoutlogon"=1
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "NoDriveTypeAutoRun"=145
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "HonorAutoRunSetting"=1
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  "C:\Program Files\AVG\AVG2013\avgnsx.exe"="C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Webový štít"
  "C:\Program Files\AVG\AVG2013\avgdiagex.exe"="C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:AVG Diagnostika 2013"
  "C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
  "C:\Program Files\AVG\AVG2013\avgemcx.exe"="C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Obecná kontrola pošty"
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
  "midimapper"=midimap.dll
  "msacm.imaadpcm"=imaadp32.acm
  "msacm.msadpcm"=msadp32.acm
  "msacm.msg711"=msg711.acm
  "msacm.msgsm610"=msgsm32.acm
  "msacm.trspch"=tssoft32.acm
  "vidc.cvid"=iccvid.dll
  "VIDC.I420"=msh263.drv
  "vidc.iv31"=ir32_32.dll
  "vidc.iv32"=ir32_32.dll
  "vidc.iv41"=ir41_32.ax
  "VIDC.IYUV"=iyuv_32.dll
  "vidc.mrle"=msrle32.dll
  "vidc.msvc"=msvidc32.dll
  "VIDC.UYVY"=msyuv.dll
  "VIDC.YUY2"=msyuv.dll
  "VIDC.YVU9"=tsbyuv.dll
  "VIDC.YVYU"=msyuv.dll
  "wavemapper"=msacm32.drv
  "msacm.msg723"=msg723.acm
  "vidc.M263"=msh263.drv
  "vidc.M261"=msh261.drv
  "msacm.msaudio1"=msaud32.acm
  "msacm.sl_anet"=sl_anet.acm
  "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
  "vidc.iv50"=ir50_32.dll
  "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
  "MSVideo8"=VfWWDM32.dll
  "VIDC.MJPG"=pvmjpg21.dll
  "wave"=wdmaud.drv
  "midi"=wdmaud.drv
  "mixer"=wdmaud.drv
  
  ======List of files/folders created in the last 1 month======
  
  2013-06-27 18:18:54 ----D---- C:\Documents and Settings\admin\Data aplikací\AVG2013
  2013-06-27 18:17:45 ----D---- C:\Documents and Settings\admin\Data aplikací\TuneUp Software
  2013-06-27 18:17:25 ----D---- C:\WINDOWS\LastGood
  2013-06-27 18:16:34 ----HD---- C:\$AVG
  2013-06-27 18:16:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG2013
  2013-06-27 18:15:33 ----D---- C:\Program Files\AVG
  2013-06-27 18:13:26 ----D---- C:\Program Files\trend micro
  2013-06-27 18:13:25 ----D---- C:\rsit
  2013-06-27 18:00:27 ----D---- C:\Program Files\CCleaner
  2013-06-27 17:43:38 ----A---- C:\WINDOWS\wininit.ini
  2013-06-27 05:16:16 ----D---- C:\NBRT
  2013-06-24 17:36:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
  2013-06-16 17:12:43 ----D---- C:\Program Files\NortonInstaller
  2013-06-16 15:59:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2839229$
  2013-05-28 20:10:47 ----HDC---- C:\WINDOWS\$NtUninstallwinusb0100$
  2013-05-28 18:31:06 ----D---- C:\Program Files\NVIDIA Corporation
  2013-05-28 18:24:22 ----A---- C:\WINDOWS\system32\javaws.exe
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\javaw.exe
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\java.exe
  2013-05-28 18:00:52 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
  2013-05-28 18:00:32 ----D---- C:\Program Files\Symantec
  2013-05-28 18:00:32 ----D---- C:\Program Files\Common Files\Symantec Shared
  2013-05-28 18:00:32 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
  2013-05-28 18:00:32 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS
  2013-05-28 18:00:13 ----A---- C:\WINDOWS\system32\GEARAspi.dll
  2013-05-28 17:59:51 ----D---- C:\WINDOWS\system32\drivers\N360
  2013-05-28 17:59:47 ----D---- C:\Program Files\Norton 360
  2013-05-28 17:39:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
  2013-05-28 17:39:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2820197$
  2013-05-28 17:35:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
  2013-05-28 17:35:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
  2013-05-28 17:35:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2829361$
  
  ======List of files/folders modified in the last 1 month======
  
  2013-06-27 18:20:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
  2013-06-27 18:18:43 ----SHD---- C:\WINDOWS\Installer
  2013-06-27 18:18:31 ----D---- C:\Config.Msi
  2013-06-27 18:17:36 ----HD---- C:\WINDOWS\inf
  2013-06-27 18:17:36 ----D---- C:\WINDOWS\system32\drivers
  2013-06-27 18:17:25 ----D---- C:\WINDOWS
  2013-06-27 18:15:33 ----RD---- C:\Program Files
  2013-06-27 18:15:18 ----D---- C:\WINDOWS\system32
  2013-06-27 18:06:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\SaveByclick
  2013-06-27 18:06:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
  2013-06-27 18:00:26 ----D---- C:\Program Files\Google
  2013-06-27 18:00:25 ----D---- C:\WINDOWS\Temp
  2013-06-27 17:47:14 ----D---- C:\WINDOWS\system32\CatRoot2
  2013-06-27 17:44:53 ----A---- C:\WINDOWS\SchedLgU.Txt
  2013-06-27 17:43:39 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
  2013-06-27 17:43:38 ----SD---- C:\WINDOWS\Tasks
  2013-06-27 17:43:09 ----D---- C:\WINDOWS\system32\drivers\etc
  2013-06-27 05:16:20 ----D---- C:\WINDOWS\system32\config
  2013-06-26 18:59:20 ----AH---- C:\boot.ini
  2013-06-25 19:22:53 ----D---- C:\Moto assistant
  2013-06-24 17:39:23 ----D---- C:\WINDOWS\Prefetch
  2013-06-19 11:23:53 ----A---- C:\WINDOWS\system32\hpguapi.ini
  2013-06-19 11:18:40 ----A---- C:\Log.txt
  2013-06-16 16:28:30 ----A---- C:\WINDOWS\NeroDigital.ini
  2013-06-16 15:59:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
  2013-06-16 15:54:35 ----A---- C:\WINDOWS\system32\MRT.exe
  2013-06-16 15:54:29 ----A---- C:\WINDOWS\imsins.BAK
  2013-06-16 15:54:24 ----D---- C:\Program Files\Internet Explorer
  2013-06-16 15:54:04 ----D---- C:\WINDOWS\ie8updates
  2013-06-05 12:35:13 ----D---- C:\WINDOWS\Minidump
  2013-05-31 16:44:09 ----SHD---- C:\System Volume Information
  2013-05-28 18:31:01 ----D---- C:\WINDOWS\system32\ReinstallBackups
  2013-05-28 18:30:08 ----D---- C:\Program Files\Common Files\Java
  2013-05-28 18:24:02 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
  2013-05-28 18:24:02 ----A---- C:\WINDOWS\system32\deployJava1.dll
  2013-05-28 18:15:17 ----RSD---- C:\WINDOWS\assembly
  2013-05-28 18:11:12 ----D---- C:\WINDOWS\Microsoft.NET
  2013-05-28 18:00:50 ----DC---- C:\WINDOWS\system32\DRVSTORE
  2013-05-28 18:00:32 ----D---- C:\Program Files\Common Files
  2013-05-28 17:59:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
  2013-05-28 17:45:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
  2013-05-28 17:45:01 ----D---- C:\WINDOWS\WinSxS
  2013-05-28 17:42:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
  2013-05-28 17:39:05 ----HD---- C:\WINDOWS\$hf_mig$
  
  ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R0 Avglogx;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avglogx.sys [2013-02-08 245048]
  R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2013-02-08 96568]
  R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2013-02-08 39224]
  R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
  R0 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
  R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2006-09-27 36560]
  R0 sbp2port;Ovladač sběrnice pro přenos dat zařízení podporujícího protokol SBP-2; C:\WINDOWS\system32\DRIVERS\sbp2port.sys [2008-04-13 43904]
  R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\N360\0502000.00D\SYMDS.SYS [2011-01-27 340088]
  R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\N360\0502000.00D\SYMEFA.SYS [2011-03-15 744568]
  R0 TwkMs;CHIPDRIVE Mouse Adapter; C:\WINDOWS\system32\drivers\TwkMs.sys [2003-04-24 4828]
  R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
  R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys [2013-03-29 208184]
  R1 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys [2013-03-01 22328]
  R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2013-02-08 170808]
  R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]
  R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20130515.001\BHDrvx86.sys []
  R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
  R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
  R1 fwdrv;Tiny Personal Firewall Driver; C:\WINDOWS\System32\Drivers\fwdrv.sys [2001-06-05 73216]
  R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
  R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
  R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\N360\0502000.00D\SRTSPX.SYS [2011-03-31 50168]
  R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\N360\0502000.00D\Ironx86.SYS [2010-11-16 136312]
  R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\N360\0502000.00D\SYMTDI.SYS [2011-04-21 369784]
  R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
  R2 MLPTDR_P;MLPTDR_P; \??\C:\WINDOWS\system32\MLPTDR_P.SYS []
  R2 OsaFsLoc;OsaFsLoc; \??\C:\WINDOWS\system32\drivers\OsaFsLoc.sys []
  R2 osaio;osaio; \??\C:\WINDOWS\system32\drivers\osaio.sys []
  R2 SIODRV;SIODRV; \??\C:\WINDOWS\system32\drivers\SIODRV.SYS []
  R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
  R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-04-01 180736]
  R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
  R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2010-08-21 26600]
  R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
  R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
  R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20130530.001\IDSxpx86.sys []
  R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
  R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
  R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2006-03-27 6144]
  R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
  R3 sfng32;Sonic Focus Plugin for Sigmatel HDA; C:\WINDOWS\system32\drivers\sfng32.sys [2007-03-16 54272]
  R3 SMBios;Intel (R) System Management BIOS Service; C:\WINDOWS\system32\DRIVERS\SMBios.sys [2004-05-12 36484]
  R3 smbusp;Intel(R) SMBus 2.0 Driver; C:\WINDOWS\system32\DRIVERS\intelsmb.sys [2005-03-15 21248]
  R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-05-06 1222840]
  R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
  R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
  R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
  S0 AVGIDSHX;AVGIDSHX; C:\WINDOWS\system32\DRIVERS\avgidshx.sys [2013-02-08 60216]
  S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
  S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
  S2 USBHSB;GeneLink File Transfer Driver; C:\WINDOWS\System32\Drivers\usbhsb.sys []
  S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
  S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
  S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2008-04-13 13696]
  S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
  S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
  S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
  S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
  S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
  S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2012-09-20 83168]
  S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
  S3 FTDIBUS;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2007-06-27 53184]
  S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2007-06-27 71488]
  S3 genmcmn;Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gmfiltr.sys []
  S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
  S3 gtcdcmdm;GTRAN USB CDC Driver (PID 3196); C:\WINDOWS\system32\DRIVERS\gtusbmdm_gpc6400.sys [2011-03-01 74832]
  S3 GTwinUSB;GTwinUSB; C:\WINDOWS\System32\Drivers\GTwinUSB.sys [2002-10-04 61776]
  S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
  S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2008-04-13 49024]
  S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
  S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
  S3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20130531.002\NAVENG.SYS []
  S3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20130531.002\NAVEX15.SYS []
  S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
  S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
  S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
  S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
  S3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\N360\0502000.00D\SRTSP.SYS [2011-03-31 516216]
  S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2012-09-20 181344]
  S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
  S3 TWKSER2K;CHIPDRIVE Serial SmartCardReader; C:\WINDOWS\system32\DRIVERS\TWKSER2K.sys [2004-08-25 185611]
  S3 USBCCID;USB Smart Card reader; C:\WINDOWS\system32\DRIVERS\usbccid.sys [2003-03-19 27136]
  S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
  S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
  S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
  S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
  S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
  S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
  S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys []
  S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
  S3 WinUSB;SAMSUNG Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368]
  S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
  S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
  S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
  
  ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672]
  R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-05-14 4937264]
  R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-04-18 283136]
  R2 Diskeeper;Diskeeper; C:\Program Files\Executive Software\Diskeeper\DkService.exe [2005-04-26 622700]
  R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe [2007-12-12 65536]
  R2 iHCService;Intel(R) Desktop Utilities Service; C:\Program Files\Intel\IDU\IDUServ.exe [2005-04-29 1302016]
  R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-05-28 181664]
  R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2006-10-26 335872]
  R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-06-23 259368]
  R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
  R2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
  R2 PersFw;Tiny Personal Firewall; C:\Program Files\Tiny Personal Firewall\persfw.exe [2001-06-05 438272]
  R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-04-15 3289208]
  R2 STacSV;SigmaTel Audio Service; C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe [2007-05-06 94208]
  R2 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
  R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
  R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
  R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe [2007-12-12 1531989]
  R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
  S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-17 135664]
  S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-10-10 131139]
  S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
  S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-03-31 72704]
  S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-16 256904]
  S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
  S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
  S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
  S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-17 135664]
  S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
  S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
  S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
  S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
  S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
  S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
  S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
  S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
  
  -----------------EOF-----------------

a jelikož to píše že nenašlo hijakcthis tak vkládám samostatný log z hijackthis

• Logfile of Trend Micro HijackThis v2.0.4
  Scan saved at 18:23:20, on 27.6.2013
  Platform: Windows XP SP3 (WinNT 5.01.2600)
  MSIE: Internet Explorer v8.00 (8.00.6001.18702)
  Boot mode: Normal
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\spoolsv.exe
  C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
  C:\WINDOWS\sttray.exe
  C:\WINDOWS\system32\MSTMON_P.EXE
  C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
  C:\Program Files\QuickTime\QTTask.exe
  C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
  C:\Program Files\Common Files\Java\Java Update\jusched.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
  C:\Program Files\Samsung\Kies\Kies.exe
  C:\Program Files\Samsung\Kies\KiesAirMessage.exe
  C:\Program Files\Windows Media Player\WMPNSCFG.exe
  C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  C:\Program Files\Google\Drive\googledrivesync.exe
  C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
  C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  C:\REG_ETH\KOMWIN.EXE
  C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  C:\Program Files\Executive Software\Diskeeper\DkService.exe
  C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
  C:\WINDOWS\System32\svchost.exe
  C:\Program Files\Intel\IDU\IDUServ.exe
  C:\Program Files\Java\jre7\bin\jqs.exe
  C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
  C:\Program Files\PDF Architect\HelperService.exe
  C:\Program Files\PDF Architect\ConversionService.exe
  C:\Program Files\Google\Drive\googledrivesync.exe
  C:\Program Files\Tiny Personal Firewall\persfw.exe
  C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\SearchIndexer.exe
  C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
  C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
  C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
  C:\WINDOWS\system32\wbem\wmiapsrv.exe
  C:\WINDOWS\system32\msiexec.exe
  C:\WINDOWS\explorer.exe
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Program Files\AVG\AVG2013\avgidsagent.exe
  C:\Program Files\AVG\AVG2013\avgwdsvc.exe
  C:\Program Files\AVG\AVG2013\avgnsx.exe
  C:\Program Files\AVG\AVG2013\avgemcx.exe
  C:\Program Files\AVG\AVG2013\avgui.exe
  C:\Program Files\AVG\AVG2013\avgrsx.exe
  C:\Program Files\AVG\AVG2013\avgcsrvx.exe
  C:\Program Files\AVG\AVG2013\avgcsrvx.exe
  C:\Program Files\AVG\AVG2013\avgcsrvx.exe
  C:\Documents and Settings\admin\Plocha\hijackthis.exe
  
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
  R3 - URLSearchHook: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
  R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
  O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
  O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
  O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
  O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
  O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
  O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
  O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
  O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
  O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
  O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  O4 - HKLM\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
  O4 - HKLM\..\Run: [KONICA MINOLTA magicolor2300WStatusDisplay] C:\WINDOWS\system32\MSTMON_P.EXE
  O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
  O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
  O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
  O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
  O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  O4 - HKLM\..\Run: [N360] "C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360\2454B0AB\5.0.0.125\InstStub.exe" /RELAUNCH /RUNONCE /NOPROMPT /PRODID N360
  O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
  O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
  O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
  O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
  O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
  O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
  O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
  O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-21-861567501-884357618-682003330-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NeroMediaHomeUser.4')
  O4 - HKUS\S-1-5-21-861567501-884357618-682003330-1006\..\RunOnce: [NeroHomeFirstStart] "C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe" (User 'NeroMediaHomeUser.4')
  O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
  O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
  O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
  O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  O4 - Global Startup: Zástupce - KOMWIN.lnk = C:\REG_ETH\KOMWIN.EXE
  O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
  O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
  O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
  O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
  O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
  O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
  O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
  O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
  O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O15 - Trusted Zone: http://*.google.cz
  O16 - DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - https://ib24.csob.cz/Comp/IcaSignerCZ.cab
  O16 - DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} - https://ib24.csob.cz/Comp/CSOBEnroll.dll
  O16 - DPF: {4ADC518E-B607-11D4-B395-0001020F4519} (SigVer Class) - https://ib24.csob.cz/comp/signer.cab
  O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 5181232765
  O16 - DPF: {8DB83558-B5E6-4449-8E59-B91126580A99} - https://ib24.csob.cz/comp/ICAHsmEngine.dll
  O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
  O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
  O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
  O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
  O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
  O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
  O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
  O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
  O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
  O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
  O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
  O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.exe
  O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
  O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
  O23 - Service: Nero MediaHome 4 Service (NeroMediaHomeService.4) - Nero AG - C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe
  O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
  O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
  O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files\PDF Architect\HelperService.exe
  O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files\PDF Architect\ConversionService.exe
  O23 - Service: Tiny Personal Firewall (PersFw) - Tiny Software - C:\Program Files\Tiny Personal Firewall\persfw.exe
  O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
  O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
  
  --
  End of file - 14447 bytes

Zdravim

Jen se zeptam, jenda se o domaci PC nebo nejake pracovni\firemni

Vesměs domácí a na hobby střih filmů apod.

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

• Pokud ho havet blokuje, pouzijte jeden z nasledujicich - i ty prejmenovane

  Rkill EXE:
  http://download.bleepingcomputer.com/grinler/rkill.exe
  
  Rkill iExplore.exe:
  http://download.bleepingcomputer.com/gr ... xplore.exe
  
  Rkill uSeRiNiT.exe:
  http://download.bleepingcomputer.com/gr ... eRiNiT.exe
  
  Rkill WiNlOgOn.exe:
  http://download.bleepingcomputer.com/gr ... NlOgOn.exe

• Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
• Spustte tradicne dvojklikem - program probehne do par sekund a ukonci i svou cinnost
• RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
• Na plose vznikne log Rkill.txt ten mi sem vlozte
• Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

ahoj, tak doběhl test AVG (a že to trvlao) a našlo to nějakého trojáka, jeden AdAware a dva záznamy v přesměrování TCP.. zajímavé, Norton je evidentně nanic. Takže po restartu a smazání podle AVG to stejně stále neběží. Takže postupně RSIT, HIJACKTHIS, RKILL a COMBOFIX :

RSIT:

• Logfile of random's system information tool 1.09 (written by random/random)
  Run by admin at 2013-06-27 20:21:23
  Microsoft Windows XP Home Edition Service Pack 3
  System drive C: has 12 GB (25%) free of 50 GB
  Total RAM: 2046 MB (58% free)
  
  HijackThis download failed
  
  ======Scheduled tasks folder======
  
  C:\WINDOWS\tasks\Adobe Flash Player Updater.job
  C:\WINDOWS\tasks\AppleSoftwareUpdate.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-884357618-682003330-1004Core.job
  C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-884357618-682003330-1004UA.job
  C:\WINDOWS\tasks\User_Feed_Synchronization-{BDB8BE4A-275B-44AB-8516-B1986F42C17E}.job
  
  ======Registry dump======
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
  PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
  EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09 34304]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
  Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-28 462752]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
  Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-04-15 4529272]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
  Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
  Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-28 171424]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2006-10-17 398944]
  "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
  "SigmatelSysTrayApp"=C:\WINDOWS\sttray.exe [2007-05-06 405504]
  "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
  "Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
  "KONICA MINOLTA magicolor2300WStatusDisplay"=C:\WINDOWS\system32\MSTMON_P.EXE [2003-12-22 176128]
  "KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-10-11 309688]
  "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240]
  "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]
  "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
  ""= []
  "SearchSettings"=C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2012-11-28 1123720]
  "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
  "N360"=C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360\2454B0AB\5.0.0.125\InstStub.exe [2013-06-27 1262824]
  "AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-04-29 4408368]
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
  "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
  "KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2012-10-11 966072]
  "KiesAirMessage"=C:\Program Files\Samsung\Kies\KiesAirMessage.exe [2012-10-09 580096]
  "KiesPDLR"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-10 843208]
  "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]
  ""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-10 843208]
  "GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2013-06-06 19676256]
  "Google Update"=C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2013-06-24 116648]
  
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
  C:\WINDOWS\system32\NeroCheck.exe []
  
  C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
  Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
  Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  Zástupce - KOMWIN.lnk - C:\REG_ETH\KOMWIN.EXE
  
  C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění
  Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
  C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
  
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
  "dontdisplaylastusername"=0
  "legalnoticecaption"=
  "legalnoticetext"=
  "shutdownwithoutlogon"=1
  "undockwithoutlogon"=1
  
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "NoDriveTypeAutoRun"=145
  
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  "HonorAutoRunSetting"=1
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  "C:\Program Files\AVG\AVG2013\avgnsx.exe"="C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Webový štít"
  "C:\Program Files\AVG\AVG2013\avgdiagex.exe"="C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:AVG Diagnostika 2013"
  "C:\Program Files\AVG\AVG2013\avgmfapx.exe"="C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalátor AVG"
  "C:\Program Files\AVG\AVG2013\avgemcx.exe"="C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Obecná kontrola pošty"
  
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
  "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
  
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
  "midimapper"=midimap.dll
  "msacm.imaadpcm"=imaadp32.acm
  "msacm.msadpcm"=msadp32.acm
  "msacm.msg711"=msg711.acm
  "msacm.msgsm610"=msgsm32.acm
  "msacm.trspch"=tssoft32.acm
  "vidc.cvid"=iccvid.dll
  "VIDC.I420"=msh263.drv
  "vidc.iv31"=ir32_32.dll
  "vidc.iv32"=ir32_32.dll
  "vidc.iv41"=ir41_32.ax
  "VIDC.IYUV"=iyuv_32.dll
  "vidc.mrle"=msrle32.dll
  "vidc.msvc"=msvidc32.dll
  "VIDC.UYVY"=msyuv.dll
  "VIDC.YUY2"=msyuv.dll
  "VIDC.YVU9"=tsbyuv.dll
  "VIDC.YVYU"=msyuv.dll
  "wavemapper"=msacm32.drv
  "msacm.msg723"=msg723.acm
  "vidc.M263"=msh263.drv
  "vidc.M261"=msh261.drv
  "msacm.msaudio1"=msaud32.acm
  "msacm.sl_anet"=sl_anet.acm
  "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
  "vidc.iv50"=ir50_32.dll
  "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
  "MSVideo8"=VfWWDM32.dll
  "VIDC.MJPG"=pvmjpg21.dll
  "wave"=wdmaud.drv
  "midi"=wdmaud.drv
  "mixer"=wdmaud.drv
  
  ======List of files/folders created in the last 1 month======
  
  2013-06-27 18:18:54 ----D---- C:\Documents and Settings\admin\Data aplikací\AVG2013
  2013-06-27 18:17:45 ----D---- C:\Documents and Settings\admin\Data aplikací\TuneUp Software
  2013-06-27 18:16:34 ----HD---- C:\$AVG
  2013-06-27 18:16:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG2013
  2013-06-27 18:15:33 ----D---- C:\Program Files\AVG
  2013-06-27 18:13:26 ----D---- C:\Program Files\trend micro
  2013-06-27 18:13:25 ----D---- C:\rsit
  2013-06-27 18:00:27 ----D---- C:\Program Files\CCleaner
  2013-06-27 17:43:38 ----A---- C:\WINDOWS\wininit.ini
  2013-06-27 05:16:16 ----D---- C:\NBRT
  2013-06-24 17:36:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
  2013-06-16 17:12:43 ----D---- C:\Program Files\NortonInstaller
  2013-06-16 15:59:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2839229$
  2013-05-28 20:10:47 ----HDC---- C:\WINDOWS\$NtUninstallwinusb0100$
  2013-05-28 18:31:06 ----D---- C:\Program Files\NVIDIA Corporation
  2013-05-28 18:24:22 ----A---- C:\WINDOWS\system32\javaws.exe
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\javaw.exe
  2013-05-28 18:24:16 ----A---- C:\WINDOWS\system32\java.exe
  2013-05-28 18:00:52 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
  2013-05-28 18:00:32 ----D---- C:\Program Files\Symantec
  2013-05-28 18:00:32 ----D---- C:\Program Files\Common Files\Symantec Shared
  2013-05-28 18:00:32 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
  2013-05-28 18:00:32 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS
  2013-05-28 18:00:13 ----A---- C:\WINDOWS\system32\GEARAspi.dll
  2013-05-28 17:59:51 ----D---- C:\WINDOWS\system32\drivers\N360
  2013-05-28 17:59:47 ----D---- C:\Program Files\Norton 360
  2013-05-28 17:39:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
  2013-05-28 17:39:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2820197$
  2013-05-28 17:35:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
  2013-05-28 17:35:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
  2013-05-28 17:35:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2829361$
  
  ======List of files/folders modified in the last 1 month======
  
  2013-06-27 20:21:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
  2013-06-27 20:16:48 ----D---- C:\WINDOWS
  2013-06-27 20:16:21 ----D---- C:\WINDOWS\system32\CatRoot2
  2013-06-27 20:16:19 ----D---- C:\WINDOWS\Temp
  2013-06-27 20:13:53 ----A---- C:\WINDOWS\SchedLgU.Txt
  2013-06-27 20:11:27 ----D---- C:\WINDOWS\system32\drivers
  2013-06-27 18:56:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\SaveByclick
  2013-06-27 18:18:43 ----SHD---- C:\WINDOWS\Installer
  2013-06-27 18:18:31 ----D---- C:\Config.Msi
  2013-06-27 18:17:36 ----HD---- C:\WINDOWS\inf
  2013-06-27 18:15:33 ----RD---- C:\Program Files
  2013-06-27 18:15:18 ----D---- C:\WINDOWS\system32
  2013-06-27 18:06:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate
  2013-06-27 18:00:26 ----D---- C:\Program Files\Google
  2013-06-27 17:43:39 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
  2013-06-27 17:43:38 ----SD---- C:\WINDOWS\Tasks
  2013-06-27 17:43:09 ----D---- C:\WINDOWS\system32\drivers\etc
  2013-06-27 05:16:20 ----D---- C:\WINDOWS\system32\config
  2013-06-26 18:59:20 ----AH---- C:\boot.ini
  2013-06-25 19:22:53 ----D---- C:\Moto assistant
  2013-06-24 17:39:23 ----D---- C:\WINDOWS\Prefetch
  2013-06-19 11:23:53 ----A---- C:\WINDOWS\system32\hpguapi.ini
  2013-06-19 11:18:40 ----A---- C:\Log.txt
  2013-06-16 16:28:30 ----A---- C:\WINDOWS\NeroDigital.ini
  2013-06-16 15:59:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
  2013-06-16 15:54:35 ----A---- C:\WINDOWS\system32\MRT.exe
  2013-06-16 15:54:29 ----A---- C:\WINDOWS\imsins.BAK
  2013-06-16 15:54:24 ----D---- C:\Program Files\Internet Explorer
  2013-06-16 15:54:04 ----D---- C:\WINDOWS\ie8updates
  2013-06-05 12:35:13 ----D---- C:\WINDOWS\Minidump
  2013-05-31 16:44:09 ----SHD---- C:\System Volume Information
  2013-05-28 18:31:01 ----D---- C:\WINDOWS\system32\ReinstallBackups
  2013-05-28 18:30:08 ----D---- C:\Program Files\Common Files\Java
  2013-05-28 18:24:02 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
  2013-05-28 18:24:02 ----A---- C:\WINDOWS\system32\deployJava1.dll
  2013-05-28 18:15:17 ----RSD---- C:\WINDOWS\assembly
  2013-05-28 18:11:12 ----D---- C:\WINDOWS\Microsoft.NET
  2013-05-28 18:00:50 ----DC---- C:\WINDOWS\system32\DRVSTORE
  2013-05-28 18:00:32 ----D---- C:\Program Files\Common Files
  2013-05-28 17:59:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
  2013-05-28 17:45:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
  2013-05-28 17:45:01 ----D---- C:\WINDOWS\WinSxS
  2013-05-28 17:42:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
  2013-05-28 17:39:05 ----HD---- C:\WINDOWS\$hf_mig$
  
  ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R0 AVGIDSHX;AVGIDSHX; C:\WINDOWS\system32\DRIVERS\avgidshx.sys [2013-02-08 60216]
  R0 Avglogx;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avglogx.sys [2013-02-08 245048]
  R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2013-02-08 96568]
  R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2013-02-08 39224]
  R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
  R0 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
  R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2006-09-27 36560]
  R0 sbp2port;Ovladač sběrnice pro přenos dat zařízení podporujícího protokol SBP-2; C:\WINDOWS\system32\DRIVERS\sbp2port.sys [2008-04-13 43904]
  R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\N360\0502000.00D\SYMDS.SYS [2011-01-27 340088]
  R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\N360\0502000.00D\SYMEFA.SYS [2011-03-15 744568]
  R0 TwkMs;CHIPDRIVE Mouse Adapter; C:\WINDOWS\system32\drivers\TwkMs.sys [2003-04-24 4828]
  R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
  R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys [2013-03-29 208184]
  R1 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys [2013-03-01 22328]
  R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2013-02-08 170808]
  R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]
  R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20130515.001\BHDrvx86.sys []
  R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
  R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
  R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
  R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
  R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\N360\0502000.00D\SRTSPX.SYS [2011-03-31 50168]
  R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\N360\0502000.00D\Ironx86.SYS [2010-11-16 136312]
  R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\N360\0502000.00D\SYMTDI.SYS [2011-04-21 369784]
  R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
  R2 MLPTDR_P;MLPTDR_P; \??\C:\WINDOWS\system32\MLPTDR_P.SYS []
  R2 OsaFsLoc;OsaFsLoc; \??\C:\WINDOWS\system32\drivers\OsaFsLoc.sys []
  R2 osaio;osaio; \??\C:\WINDOWS\system32\drivers\osaio.sys []
  R2 SIODRV;SIODRV; \??\C:\WINDOWS\system32\drivers\SIODRV.SYS []
  R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
  R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-04-01 180736]
  R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
  R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2010-08-21 26600]
  R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
  R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
  R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20130530.001\IDSxpx86.sys []
  R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
  R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
  R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2006-03-27 6144]
  R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
  R3 sfng32;Sonic Focus Plugin for Sigmatel HDA; C:\WINDOWS\system32\drivers\sfng32.sys [2007-03-16 54272]
  R3 SMBios;Intel (R) System Management BIOS Service; C:\WINDOWS\system32\DRIVERS\SMBios.sys [2004-05-12 36484]
  R3 smbusp;Intel(R) SMBus 2.0 Driver; C:\WINDOWS\system32\DRIVERS\intelsmb.sys [2005-03-15 21248]
  R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-05-06 1222840]
  R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
  R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
  R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
  S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
  S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
  S1 fwdrv;Tiny Personal Firewall Driver; C:\WINDOWS\System32\Drivers\fwdrv.sys []
  S2 USBHSB;GeneLink File Transfer Driver; C:\WINDOWS\System32\Drivers\usbhsb.sys []
  S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
  S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
  S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2008-04-13 13696]
  S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
  S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
  S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
  S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
  S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
  S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2012-09-20 83168]
  S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
  S3 FTDIBUS;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2007-06-27 53184]
  S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2007-06-27 71488]
  S3 genmcmn;Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gmfiltr.sys []
  S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
  S3 gtcdcmdm;GTRAN USB CDC Driver (PID 3196); C:\WINDOWS\system32\DRIVERS\gtusbmdm_gpc6400.sys [2011-03-01 74832]
  S3 GTwinUSB;GTwinUSB; C:\WINDOWS\System32\Drivers\GTwinUSB.sys [2002-10-04 61776]
  S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
  S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2008-04-13 49024]
  S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
  S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
  S3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20130531.002\NAVENG.SYS []
  S3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20130531.002\NAVEX15.SYS []
  S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
  S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
  S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
  S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
  S3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\N360\0502000.00D\SRTSP.SYS [2011-03-31 516216]
  S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2012-09-20 181344]
  S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
  S3 TWKSER2K;CHIPDRIVE Serial SmartCardReader; C:\WINDOWS\system32\DRIVERS\TWKSER2K.sys [2004-08-25 185611]
  S3 USBCCID;USB Smart Card reader; C:\WINDOWS\system32\DRIVERS\usbccid.sys [2003-03-19 27136]
  S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
  S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
  S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
  S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
  S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
  S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
  S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys []
  S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
  S3 WinUSB;SAMSUNG Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368]
  S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
  S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
  S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
  
  ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  
  R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672]
  R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-05-14 4937264]
  R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-04-18 283136]
  R2 Diskeeper;Diskeeper; C:\Program Files\Executive Software\Diskeeper\DkService.exe [2005-04-26 622700]
  R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe [2007-12-12 65536]
  R2 iHCService;Intel(R) Desktop Utilities Service; C:\Program Files\Intel\IDU\IDUServ.exe [2005-04-29 1302016]
  R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-05-28 181664]
  R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2006-10-26 335872]
  R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-06-23 259368]
  R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
  R2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
  R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-04-15 3289208]
  R2 STacSV;SigmaTel Audio Service; C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe [2007-05-06 94208]
  R2 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
  R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
  R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
  R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe [2007-12-12 1531989]
  R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
  S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-17 135664]
  S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-10-10 131139]
  S2 PersFw;Tiny Personal Firewall; C:\Program Files\Tiny Personal Firewall\persfw.exe [2001-06-05 438272]
  S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
  S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-03-31 72704]
  S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-16 256904]
  S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
  S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
  S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
  S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-17 135664]
  S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
  S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
  S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
  S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
  S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
  S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
  S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
  S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
  
  -----------------EOF-----------------

HIjackthis

• Logfile of Trend Micro HijackThis v2.0.4
  Scan saved at 20:22:32, on 27.6.2013
  Platform: Windows XP SP3 (WinNT 5.01.2600)
  MSIE: Internet Explorer v8.00 (8.00.6001.18702)
  Boot mode: Normal
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
  C:\Program Files\AVG\AVG2013\avgcsrvx.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\spoolsv.exe
  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  C:\Program Files\AVG\AVG2013\avgidsagent.exe
  C:\Program Files\AVG\AVG2013\avgwdsvc.exe
  C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
  C:\Program Files\Executive Software\Diskeeper\DkService.exe
  C:\WINDOWS\Explorer.EXE
  C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
  C:\WINDOWS\System32\svchost.exe
  C:\Program Files\Intel\IDU\IDUServ.exe
  C:\Program Files\AVG\AVG2013\avgnsx.exe
  C:\Program Files\AVG\AVG2013\avgemcx.exe
  C:\Program Files\Java\jre7\bin\jqs.exe
  C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
  C:\Program Files\PDF Architect\HelperService.exe
  C:\Program Files\PDF Architect\ConversionService.exe
  C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\SearchIndexer.exe
  C:\WINDOWS\system32\wuauclt.exe
  C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
  C:\WINDOWS\system32\wbem\wmiapsrv.exe
  C:\WINDOWS\sttray.exe
  C:\WINDOWS\system32\MSTMON_P.EXE
  C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
  C:\Program Files\QuickTime\QTTask.exe
  C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
  C:\Program Files\Common Files\Java\Java Update\jusched.exe
  C:\Program Files\AVG\AVG2013\avgui.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
  C:\Program Files\Samsung\Kies\Kies.exe
  C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
  C:\Program Files\Samsung\Kies\KiesAirMessage.exe
  C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  C:\Program Files\Windows Media Player\WMPNSCFG.exe
  C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
  C:\Program Files\Google\Drive\googledrivesync.exe
  C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
  C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  C:\REG_ETH\KOMWIN.EXE
  C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  C:\Program Files\Google\Drive\googledrivesync.exe
  C:\Documents and Settings\admin\Plocha\hijackthis.exe
  C:\WINDOWS\system32\SearchProtocolHost.exe
  
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
  R3 - URLSearchHook: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
  R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
  O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
  O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
  O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
  O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
  O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
  O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
  O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
  O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
  O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
  O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  O4 - HKLM\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
  O4 - HKLM\..\Run: [KONICA MINOLTA magicolor2300WStatusDisplay] C:\WINDOWS\system32\MSTMON_P.EXE
  O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
  O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
  O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
  O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
  O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  O4 - HKLM\..\Run: [N360] "C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360\2454B0AB\5.0.0.125\InstStub.exe" /RELAUNCH /RUNONCE /NOPROMPT /PRODID N360
  O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY
  O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
  O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
  O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
  O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
  O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
  O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
  O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-21-861567501-884357618-682003330-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NeroMediaHomeUser.4')
  O4 - HKUS\S-1-5-21-861567501-884357618-682003330-1006\..\RunOnce: [NeroHomeFirstStart] "C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe" (User 'NeroMediaHomeUser.4')
  O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
  O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
  O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
  O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
  O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  O4 - Global Startup: Zástupce - KOMWIN.lnk = C:\REG_ETH\KOMWIN.EXE
  O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
  O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
  O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
  O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
  O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
  O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
  O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
  O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
  O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O15 - Trusted Zone: http://*.google.cz
  O16 - DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - https://ib24.csob.cz/Comp/IcaSignerCZ.cab
  O16 - DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} - https://ib24.csob.cz/Comp/CSOBEnroll.dll
  O16 - DPF: {4ADC518E-B607-11D4-B395-0001020F4519} (SigVer Class) - https://ib24.csob.cz/comp/signer.cab
  O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 5181232765
  O16 - DPF: {8DB83558-B5E6-4449-8E59-B91126580A99} - https://ib24.csob.cz/comp/ICAHsmEngine.dll
  O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
  O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
  O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
  O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
  O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
  O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
  O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
  O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
  O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
  O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
  O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
  O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.exe
  O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
  O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
  O23 - Service: Nero MediaHome 4 Service (NeroMediaHomeService.4) - Nero AG - C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe
  O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
  O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
  O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files\PDF Architect\HelperService.exe
  O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files\PDF Architect\ConversionService.exe
  O23 - Service: Tiny Personal Firewall (PersFw) - Tiny Software - C:\Program Files\Tiny Personal Firewall\persfw.exe
  O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
  O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
  
  --
  End of file - 14103 bytes

RKILL

• Rkill 2.5.3 by Lawrence Abrams (Grinler)
  http://www.bleepingcomputer.com/
  Copyright 2008-2013 BleepingComputer.com
  More Information about Rkill can be found at this link:
  http://www.bleepingcomputer.com/forums/topic308364.html
  
  Program started at: 06/27/2013 08:23:13 PM in x86 mode.
  Windows Version: Microsoft Windows XP Service Pack 3
  
  Checking for Windows services to stop:
  
  * No malware services found to stop.
  
  Checking for processes to terminate:
  
  * C:\WINDOWS\sttray.exe (PID: 2668) [WD-HEUR]
  
  1 proccess terminated!
  
  Checking Registry for malware related settings:
  
  * No issues found in the Registry.
  
  Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  
  Performing miscellaneous checks:
  
  * No issues found.
  
  Checking Windows Service Integrity:
  
  * No issues found.
  
  Searching for Missing Digital Signatures:
  
  * No issues found.
  
  Checking HOSTS File:
  
  * No issues found.
  
  Program finished at: 06/27/2013 08:24:43 PM
  Execution time: 0 hours(s), 1 minute(s), and 29 seconds(s)

COMBOFIX

• ComboFix 13-06-27.01 - admin 27.06.2013 20:31:39.1.2 - x86
  Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1448 [GMT 2:00]
  Spuštěný z: c:\documents and settings\admin\Plocha\ComboFix.exe
  AV: AVG AntiVirus Free Edition 2013 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
  AV: Norton 360 *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
  FW: Norton 360 *Enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
  .
  VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
  .
  .
  ((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
  .
  .
  c:\documents and settings\admin\Data aplikací\ACD Systems\ACDSee\ImageDB.ddf
  c:\documents and settings\admin\WINDOWS
  c:\windows\IsUn0405.exe
  c:\windows\system32\Cache
  c:\windows\system32\Cache\1b3d2edc11299469.fb
  c:\windows\system32\Cache\272512937d9e61a4.fb
  c:\windows\system32\Cache\287204568329e189.fb
  c:\windows\system32\Cache\28bc8f716fd76a47.fb
  c:\windows\system32\Cache\2c53092c95605355.fb
  c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
  c:\windows\system32\Cache\32c84fe32bb74d60.fb
  c:\windows\system32\Cache\3917078cb68ec657.fb
  c:\windows\system32\Cache\590ba23ce359fd0c.fb
  c:\windows\system32\Cache\610289e025a3ee9a.fb
  c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
  c:\windows\system32\Cache\68b9697346453111.fb
  c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
  c:\windows\system32\Cache\6d03dad1035885d3.fb
  c:\windows\system32\Cache\7c1bc9bf40f13da8.fb
  c:\windows\system32\Cache\a8556537add6dfc5.fb
  c:\windows\system32\Cache\ad10a52aff5e038d.fb
  c:\windows\system32\Cache\c1fa887b03019701.fb
  c:\windows\system32\Cache\c4d28dca2e7648be.fb
  c:\windows\system32\Cache\cec76f53889c3cc4.fb
  c:\windows\system32\Cache\d201ef9910cd39de.fb
  c:\windows\system32\Cache\d2e94710a5708128.fb
  c:\windows\system32\Cache\d79b9dfe81484ec4.fb
  c:\windows\system32\Cache\e0de16f883bea794.fb
  c:\windows\system32\Cache\f339d44bf239238d.fb
  c:\windows\system32\Cache\f998975c9cc711ee.fb
  c:\windows\system32\SET3B.tmp
  c:\windows\system32\SET40.tmp
  c:\windows\system32\SET47.tmp
  c:\windows\system32\SET50.tmp
  c:\windows\system32\SET51.tmp
  c:\windows\system32\SET52.tmp
  c:\windows\system32\SET54.tmp
  c:\windows\system32\SET55.tmp
  c:\windows\system32\setb0.tmp
  .
  .
  ((((((((((((((((((((((((( Soubory vytvořené od 2013-05-27 do 2013-06-27 )))))))))))))))))))))))))))))))
  .
  .
  2013-06-27 16:18 . 2013-06-27 16:18 -------- d-----w- c:\documents and settings\admin\Data aplikací\AVG2013
  2013-06-27 16:17 . 2013-06-27 16:17 -------- d-----w- c:\documents and settings\admin\Data aplikací\TuneUp Software
  2013-06-27 16:16 . 2013-06-27 16:16 -------- d-----w- C:\$AVG
  2013-06-27 16:16 . 2013-06-27 18:11 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG2013
  2013-06-27 16:15 . 2013-06-27 16:15 -------- d-----w- c:\program files\AVG
  2013-06-27 16:13 . 2013-06-27 16:20 -------- d-----w- c:\documents and settings\admin\Local Settings\Data aplikací\Avg2013
  2013-06-27 16:13 . 2013-06-27 16:13 -------- d-----w- c:\documents and settings\admin\Local Settings\Data aplikací\MFAData
  2013-06-27 16:13 . 2013-06-27 16:13 -------- d-----w- c:\program files\trend micro
  2013-06-27 16:13 . 2013-06-27 16:13 -------- d-----w- C:\rsit
  2013-06-27 16:00 . 2013-06-27 16:00 -------- d-----w- c:\program files\CCleaner
  2013-06-27 15:43 . 2013-06-27 15:43 -------- d-----w- c:\windows\system32\drivers\etc\bak
  2013-06-27 03:16 . 2013-06-27 03:17 -------- d-----w- C:\NBRT
  2013-06-24 15:59 . 2013-06-24 15:59 -------- d-----w- c:\documents and settings\Default User\Local Settings\Data aplikací\Google
  2013-06-24 15:36 . 2013-06-24 15:55 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
  2013-06-16 15:12 . 2013-06-16 15:12 -------- d-----w- c:\program files\NortonInstaller
  2013-05-31 15:04 . 2013-06-05 09:01 -------- d-----w- c:\windows\system32\drivers\N360\0502000.00D
  .
  .
  .
  (((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
  .
  2013-05-29 12:32 . 2013-05-28 16:00 60872 ----a-w- c:\windows\system32\S32EVNT1.DLL
  2013-05-29 12:32 . 2013-05-28 16:00 126584 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
  2013-05-28 16:24 . 2013-05-28 16:24 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
  2013-05-28 16:24 . 2012-06-28 19:09 866720 ----a-w- c:\windows\system32\npdeployJava1.dll
  2013-05-28 16:24 . 2010-05-29 09:57 788896 ----a-w- c:\windows\system32\deployJava1.dll
  2013-05-28 16:24 . 2007-06-04 16:52 144896 ----a-w- c:\windows\system32\javacpl.cpl
  2013-05-16 16:26 . 2012-05-09 17:35 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
  2013-05-16 16:26 . 2011-06-16 16:10 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
  2013-05-07 22:27 . 2004-08-18 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
  2013-05-07 22:27 . 2004-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
  2013-05-07 22:27 . 2004-08-18 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
  2013-05-07 21:53 . 2004-08-18 12:00 385024 ----a-w- c:\windows\system32\html.iec
  2013-05-03 05:38 . 2004-08-18 12:00 2151936 ----a-w- c:\windows\system32\ntoskrnl.exe
  2013-05-03 05:38 . 2004-08-17 15:45 2030592 ----a-w- c:\windows\system32\ntkrnlpa.exe
  2013-04-12 14:01 . 2004-08-18 12:00 1876352 ----a-w- c:\windows\system32\win32k.sys
  2007-07-14 09:48 . 2007-07-14 09:48 553687 -c--a-w- c:\program files\regcleaner.exe
  2004-10-01 14:00 . 2006-03-23 17:53 40960 ----a-w- c:\program files\Uninstall_CDS.exe
  .
  .
  (((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
  .
  .
  *Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
  REGEDIT4
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
  @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
  [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
  2013-06-06 21:57 578512 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
  .
  [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
  "KiesPreload"="c:\program files\Samsung\Kies\Kies.exe" [2012-10-11 966072]
  "KiesAirMessage"="c:\program files\Samsung\Kies\KiesAirMessage.exe" [2012-10-09 580096]
  "KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-11-10 843208]
  "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2007-01-05 204288]
  "GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2013-06-06 19676256]
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "Easy-PrintToolBox"="c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2006-10-17 398944]
  "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
  "SigmatelSysTrayApp"="sttray.exe" [2007-05-06 405504]
  "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
  "Nero MediaHome 4"="c:\program files\Nero\Nero MediaHome 4\NeroMediaHome.exe" [2009-06-23 4891944]
  "KONICA MINOLTA magicolor2300WStatusDisplay"="c:\windows\system32\MSTMON_P.EXE" [2003-12-22 176128]
  "KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-10-11 309688]
  "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
  "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
  "SearchSettings"="c:\program files\Common Files\Spigot\Search Settings\SearchSettings.exe" [2012-11-28 1123720]
  "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
  "N360"="c:\program files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360\2454B0AB\5.0.0.125\InstStub.exe" [2013-06-27 1262824]
  "AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]
  .
  [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
  "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
  .
  c:\documents and settings\admin\Nabídka Start\Programy\Po spuštění\
  Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-1-8 228448]
  .
  c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
  Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE -b -l [2001-2-13 83360]
  Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe /startup [2008-5-26 123904]
  Zástupce - KOMWIN.lnk - c:\reg_eth\KOMWIN.EXE [2006-8-7 1845760]
  .
  [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
  "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
  .
  [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
  BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe\0c:\progra~1\AVG\AVG2013\avgrsx.exe /sync /restart
  .
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
  @="Driver"
  .
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
  @="Service"
  .
  [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
  "%windir%\\system32\\sessmgr.exe"=
  "c:\\Program Files\\AVG\\AVG2013\\avgnsx.exe"=
  "c:\\Program Files\\AVG\\AVG2013\\avgdiagex.exe"=
  "c:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"=
  "c:\\Program Files\\AVG\\AVG2013\\avgemcx.exe"=
  .
  R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [8.2.2013 4:37 60216]
  R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [8.2.2013 4:37 245048]
  R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [8.2.2013 4:37 39224]
  R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360\0502000.00D\symds.sys [31.5.2013 17:05 340088]
  R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360\0502000.00D\symefa.sys [31.5.2013 17:05 744568]
  R0 TwkMs;CHIPDRIVE Mouse Adapter;c:\windows\system32\drivers\TWKMS.sys [24.4.2003 2:14 4828]
  R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [29.3.2013 2:53 208184]
  R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [1.3.2013 10:32 22328]
  R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [8.2.2013 4:37 170808]
  R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [21.3.2013 3:08 182072]
  R1 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20130515.001\BHDrvx86.sys [15.5.2013 1:00 1000024]
  R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360\0502000.00D\ironx86.sys [31.5.2013 17:05 136312]
  R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [18.4.2013 4:34 283136]
  R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s [?]
  R2 MLPTDR_P;MLPTDR_P;c:\windows\system32\MLPTDR_P.SYS [9.7.2003 16:52 20032]
  R2 PDF Architect Helper Service;PDF Architect Helper Service;c:\program files\PDF Architect\HelperService.exe [9.1.2013 18:34 1324104]
  R2 PDF Architect Service;PDF Architect Service;c:\program files\PDF Architect\ConversionService.exe [9.1.2013 18:36 795208]
  R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [29.5.2013 19:42 106656]
  R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbserver.exe -s [?]
  R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20130530.001\IDSXpx86.sys [31.5.2013 17:06 373728]
  S1 fwdrv;Tiny Personal Firewall Driver;c:\windows\system32\Drivers\fwdrv.sys --> c:\windows\system32\Drivers\fwdrv.sys [?]
  S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [14.5.2013 0:54 4937264]
  S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [15.4.2013 15:27 3289208]
  S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [9.11.2012 12:21 160944]
  S2 USBHSB;GeneLink File Transfer Driver;c:\windows\system32\Drivers\usbhsb.sys --> c:\windows\system32\Drivers\usbhsb.sys [?]
  S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [22.10.2012 12:06 83168]
  S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\c:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt --> c:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt [?]
  S3 gtcdcmdm;GTRAN USB CDC Driver (PID 3196);c:\windows\system32\drivers\GTUSBMDM_GPC6400.SYS [1.3.2011 7:49 74832]
  S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [14.8.2006 22:06 61776]
  S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [22.10.2012 12:06 181344]
  S3 TWKSER2K;CHIPDRIVE Serial SmartCardReader;c:\windows\system32\drivers\TWKSER2K.sys [25.8.2004 15:06 185611]
  S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys --> c:\windows\system32\DRIVERS\wdcsam.sys [?]
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
  2013-06-27 16:00 1165776 ----a-w- c:\program files\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe
  .
  Obsah adresáře 'Naplánované úlohy'
  .
  2013-06-27 c:\windows\Tasks\Adobe Flash Player Updater.job
  - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-09 16:26]
  .
  2013-05-25 c:\windows\Tasks\AppleSoftwareUpdate.job
  - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
  .
  2013-06-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-17 16:29]
  .
  2013-06-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-17 16:29]
  .
  2013-06-27 c:\windows\Tasks\User_Feed_Synchronization-{BDB8BE4A-275B-44AB-8516-B1986F42C17E}.job
  - c:\windows\system32\msfeedssync.exe [2006-10-17 02:31]
  .
  .
  ------- Doplňkový sken -------
  .
  uStart Page = hxxp://www.google.cz/
  uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
  uSearchAssistant = hxxp://www.google.com/ie
  IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
  IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
  Trusted Zone: csob.cz\ib24
  Trusted Zone: google.com
  Trusted Zone: google.cz
  TCP: DhcpNameServer = 10.0.0.138 192.168.1.1
  DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
  DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} - hxxps://ib24.csob.cz/Comp/CSOBEnroll.dll
  DPF: {4ADC518E-B607-11D4-B395-0001020F4519} - hxxps://ib24.csob.cz/comp/signer.cab
  DPF: {8DB83558-B5E6-4449-8E59-B91126580A99} - hxxps://ib24.csob.cz/comp/ICAHsmEngine.dll
  .
  - - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
  .
  URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
  SafeBoot-WudfPf
  SafeBoot-WudfRd
  MSConfigStartUp-NeroFilterCheck - c:\windows\system32\NeroCheck.exe
  AddRemove-Easy-WebPrint - c:\windows\IsUn0405.exe
  AddRemove-IW FTPort Client - c:\windows\IsUn0405.exe
  AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
  AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
  AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
  AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
  AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
  AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
  AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
  AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
  AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
  AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
  AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
  AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
  AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
  AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
  AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
  AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
  AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
  AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
  AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
  .
  .
  .
  **************************************************************************
  .
  catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
  Rootkit scan 2013-06-27 20:40
  Windows 5.1.2600 Service Pack 3 NTFS
  .
  skenování skrytých procesů ...
  .
  skenování skrytých položek 'Po spuštění' ...
  .
  skenování skrytých souborů ...
  .
  sken byl úspešně dokončen
  skryté soubory: 0
  .
  **************************************************************************
  .
  [HKEY_LOCAL_MACHINE\System\ControlSet003\Services\EverestDriver]
  "ImagePath"="\??\c:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
  .
  --------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
  .
  [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
  @Denied: (A 2) (Everyone)
  @="FlashBroker"
  "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
  "Enabled"=dword:00000001
  .
  [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
  @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
  @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
  "Version"=hex:89,f4,74,eb,37,50,73,43,66,ee,e1,79,7f,3d,f5,6a,fb,4b,02,64,54,
  78,05,65,52,73,30,ea,c4,82,cc,ca,9b,1b,36,62,95,dc,03,d1,f0,8b,ed,d8,65,a5,\
  .
  [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
  @Denied: (A 2) (Everyone)
  @="IFlashBroker5"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
  @="{00020424-0000-0000-C000-000000000046}"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
  @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  "Version"="1.0"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
  @="?????????????????? v1"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
  @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
  @="?????????????????? v2"
  .
  [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
  @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
  .
  [HKEY_LOCAL_MACHINE\software\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
  "Version"=hex:89,f4,74,eb,37,50,73,43,66,ee,e1,79,7f,3d,f5,6a,fb,4b,02,64,54,
  78,05,65,52,73,30,ea,c4,82,cc,ca,9b,1b,36,62,95,dc,03,d1,f0,8b,ed,d8,65,a5,\
  .
  Celkový čas: 2013-06-27 20:42:26
  ComboFix-quarantined-files.txt 2013-06-27 18:42
  .
  Před spuštěním: Volných bajtů: 13 891 837 952
  Po spuštění: Volných bajtů: 15 135 031 296
  .
  - - End Of File - - 3057789446F3AD5ED7A9F5990FE58866
  413FC2A0C716421B3158746D63736515

Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe

• Ulozte nejlepe na Plochu
• Spustte tradicne dvouklikem a postupujte dle pokynu utility
• Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte

Security check

• Results of screen317's Security Check version 0.99.68
  Windows XP Service Pack 3 x86
  Internet Explorer 8 Out of date!
  ``````````````Antivirus/Firewall Check:``````````````
  AVG 2013
  `````````Anti-malware/Other Utilities Check:`````````
  CCleaner
  Java 7 Update 21
  Java(TM) SE Runtime Environment 6 Update 1
  Java version out of Date!
  Adobe Flash Player 11.7.700.202
  Adobe Reader 10.1.7 Adobe Reader out of Date!
  Google Chrome 27.0.1453.116
  ````````Process Check: objlist.exe by Laurent````````
  AVG avgwdsvc.exe
  AVG avgrsx.exe
  AVG avgnsx.exe
  AVG avgemc.exe
  `````````````````System Health check`````````````````
  Total Fragmentation on Drive C::
  ````````````````````End of Log``````````````````````

Udelame poradek se zabezpecenim, nejak je tam toho moc. Navic, AVG, to je spise parodie na antivir

Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam

v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti) projedte PC temito utilitami, at se zbavime zbytku antiviru co tam mate

• http://download.avg.com/filedir/util/av ... 3_3341.exe
• ftp://ftp.symantec.com/public/english_u ... l_Tool.exe

Pak tam nainstalujte bud Nortona (pokud na nej mate licenci zakoupenou) nebo treba Avast Free

Dejte novy log z RSIT