VIRY.CZ

Dobrý den,zpomalil se mě PC. Projel jsem PC Avastem, Ccleanerem,Spybot&Destroy, Spyreware Terminator, Advanced Sys. Care. Trochu se to zrychlí ale za chvíli jeviry.cz fórum to stejné jako před tím.viry.cz fórumLogfile of random's system information tool 1.06 (written by random/random)
Run by Ivan - Melkes at 2010-01-13 16:48:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 109 GB (46%) free of 233 GB
Total RAM: 1023 MB (19% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:04:47, on 13.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CodeStuff\Starter\Starter.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTune.exe
C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\SYSTEM32\GEARSec.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ivan - Melkes\My Documents\Ivan - Melkes.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.autocont.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60341
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MagicRotation] C:\Program Files\MagicRotation\MagicPvt.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [SWPROguard] C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe
O4 - HKLM\..\RunOnce: [*Restore] C:\WINDOWS\system32\restore\rstrui.exe -c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [Software Informer] C:\Program Files\Software Informer\softinfo.exe -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [FTweakFCleaner] C:\Program Files\FCleaner\FCleaner.exe
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe" -s
O4 - HKCU\..\RunOnce: [SpywareTerminatorScan] "C:\Program Files\Spyware Terminator\SpywareTerminator.exe" /SCAN
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: CodeStuff Starter.lnk = C:\Program Files\CodeStuff\Starter\Starter.exe
O4 - Global Startup: Color Calibration.lnk = ?
O4 - Global Startup: MagicTune3.6.lnk = ?
O4 - Global Startup: NaturalColorLoad.lnk = ?
O4 - Global Startup: Samsung Multimedia Keyboard.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: + Offline &Explorer: Download the link - file://C:\Program Files\Offline Explorer\Add_UrlO.htm
O8 - Extra context menu item: + Offline E&xplorer: Download the current page - file://C:\Program Files\Offline Explorer\Add_AllO.htm
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.autocont.cz
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - http://www.drivecleaner.com/.freeware/i ... rstart.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AV Engine Scanning Service - Unknown owner - C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Common Toolkit Service - SPAMfighter - C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSec.exe
O23 - Service: Google Update Service (gupdate1c93ad255a5eb50) (gupdate1c93ad255a5eb50) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - Unknown owner - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe (file missing)

--
End of file - 14731 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\SLOW-PCfighter.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-13 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll [2009-11-02 1085080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B71B15CF-3093-459C-B764-AEB2486F2273} - &S-Rank - C:\Program Files\Seznam\Postak\SRank.dll [2005-05-17 266240]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} - IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-07-20 7110656]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-07-20 86016]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"MagicRotation"=C:\Program Files\MagicRotation\MagicPvt.exe [2005-06-03 1089536]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-29 155648]
"NBKeyScan"=C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe [2008-02-21 1647912]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-10-16 2172416]
"SPAMfighter Agent"=C:\Program Files\SPAMfighter\SFAgent.exe [2009-08-27 336520]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-10-10 320832]
"SWPROguard"=C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe [2009-12-11 574088]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"*Restore"=C:\WINDOWS\system32\restore\rstrui.exe [2008-04-14 380416]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-12-21 1803064]
"Google Update"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-04-22 133104]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe [2009-01-31 3399727]
"Software Informer"=C:\Program Files\Software Informer\softinfo.exe [2009-10-07 1949765]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-11-20 2335880]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2009-07-23 3055616]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-22 68856]
"TuneUp MemOptimizer"=C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe [2007-08-18 312576]
"FTweakFCleaner"=C:\Program Files\FCleaner\FCleaner.exe [2009-11-27 1723904]
"SmartRAM"=C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe [2009-02-19 202064]
"Seznam Postak"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe [2009-11-02 448664]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpywareTerminatorScan"=C:\Program Files\Spyware Terminator\SpywareTerminator.exe [2009-10-14 15319920]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
CodeStuff Starter.lnk - C:\Program Files\CodeStuff\Starter\Starter.exe
Color Calibration.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
MagicTune3.6.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTuneTray.exe
NaturalColorLoad.lnk - C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
Samsung Multimedia Keyboard.lnk - C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe

C:\Documents and Settings\Ivan - Melkes\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-08-11 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableChangePassword"=4294967295
"DisableLockWorkstation"=4294967295
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
"SynchronousMachineGroupPolicy"=1
"SynchronousUserGroupPolicy"=1
"PromptOnSecureDesktop"=4294967295
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSMBalloonTip"=1
"MaxRecentDocs"=4294967295

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoStrCmpLogical"=
"NoResolveSearch"=
"NoPopUpsOnBoot"=
"DisableLocalMachineRun"=
"DisableLocalMachineRunOnce"=
"DisableCurrentUserRun"=
"DisableCurrentUserRunOnce"=
"NoResolveTrack"=
"NoViewContextMenu"=
"NoFileAssociate"=
"NoFind"=
"NoRun"=
"NoClose"=
"StartMenuLogoff"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======List of files/folders created in the last 1 months======

2010-01-12 18:08:38 ----D---- C:\rsit
2010-01-12 16:38:58 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-01-08 14:09:05 ----D---- C:\Program Files\Common Files\Common Toolkit Suite
2010-01-08 14:03:53 ----HDC---- C:\Documents and Settings\All Users\Application Data\{7516B6E8-5C01-4895-B079-DFC32A4ADEE1}
2010-01-05 22:47:49 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-12-27 13:03:07 ----D---- C:\Program Files\Seznam.cz
2009-12-27 01:22:40 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-12-22 22:16:35 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Common Toolkit Suite
2009-12-18 11:37:58 ----D---- C:\Documents and Settings\All Users\Application Data\clp
2009-12-18 11:35:08 ----D---- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
2009-12-18 11:27:39 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Fighters
2009-12-16 23:38:27 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\WinPatrol
2009-12-16 23:38:07 ----D---- C:\Program Files\BillP Studios
2009-12-16 14:51:09 ----D---- C:\Program Files\Common Files\Application
2009-12-16 14:50:24 ----D---- C:\Program Files\SPAMfighter

======List of files/folders modified in the last 1 months======

2010-01-13 16:48:29 ----D---- C:\WINDOWS\Temp
2010-01-13 16:15:36 ----D---- C:\WINDOWS\Prefetch
2010-01-13 16:08:15 ----SD---- C:\WINDOWS\Tasks
2010-01-13 11:02:49 ----D---- C:\WINDOWS\Registration
2010-01-13 11:02:47 ----D---- C:\WINDOWS
2010-01-13 11:02:37 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-12 22:58:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-12 16:50:59 ----D---- C:\WINDOWS\security
2010-01-12 16:38:58 ----D---- C:\WINDOWS\system32
2010-01-10 23:07:10 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-01-10 23:05:12 ----D---- C:\Program Files\Spyware Terminator
2010-01-10 22:39:00 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Spyware Terminator
2010-01-10 20:57:14 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-10 16:41:39 ----D---- C:\WINDOWS\system32\config
2010-01-10 16:41:14 ----D---- C:\WINDOWS\system32\wbem
2010-01-10 16:15:17 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Software Informer
2010-01-09 21:56:42 ----D---- C:\Program Files\Wise Registry Cleaner
2010-01-08 18:06:44 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Free Download Manager
2010-01-08 16:19:03 ----RD---- C:\Program Files
2010-01-08 14:10:23 ----D---- C:\WINDOWS\system32\drivers
2010-01-08 14:10:20 ----SHD---- C:\WINDOWS\Installer
2010-01-08 14:10:00 ----HD---- C:\Config.Msi
2010-01-08 14:09:05 ----D---- C:\Program Files\Common Files
2010-01-07 15:12:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-05 23:09:52 ----D---- C:\Program Files\TuneUp Utilities 2009
2010-01-05 22:46:39 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2010-01-05 21:46:18 ----A---- C:\WINDOWS\system32\everest_cpl.ini
2010-01-05 21:35:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-05 13:18:31 ----D---- C:\Program Files\TuneUp Utilities 2007
2009-12-29 20:23:06 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-29 20:16:43 ----D---- C:\WINDOWS\Debug
2009-12-27 14:07:28 ----HD---- C:\WINDOWS\inf
2009-12-27 12:58:49 ----D---- C:\WINDOWS\AppPatch
2009-12-27 00:00:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-12-27 00:00:01 ----HD---- C:\WINDOWS\$hf_mig$
2009-12-22 22:02:39 ----D---- C:\Program Files\Ashampoo
2009-12-21 01:25:00 ----D---- C:\Program Files\FCleaner
2009-12-18 18:31:53 ----D---- C:\Documents and Settings\All Users\Application Data\page
2009-12-18 17:00:13 ----D---- C:\Program Files\Santa Hanta
2009-12-16 15:09:55 ----D---- C:\Program Files\Fighters
2009-12-15 23:37:56 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-12-15 23:37:01 ----RSD---- C:\WINDOWS\Fonts
2009-12-15 23:36:57 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-12-15 23:36:37 ----D---- C:\Program Files\Microsoft Works
2009-12-15 00:21:36 ----D---- C:\Program Files\IObitCom

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 HCW88AUD;Hauppauge WinTV 88x Audio Capture; C:\WINDOWS\system32\drivers\hcw88aud.sys [2006-01-30 11970]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 magicpvt;magicpvt; C:\WINDOWS\system32\drivers\magicpvt.sys [2005-05-13 9728]
R1 MagicTune;MagicTune; C:\WINDOWS\system32\drivers\MTictwl.sys [2004-10-11 12062]
R1 mbmiodrvr;mbmiodrvr; \??\C:\WINDOWS\system32\mbmiodrvr.sys []
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2002-07-17 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\SYSTEM32\drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod; C:\WINDOWS\system32\drivers\hcw88bda.sys [2006-01-30 138816]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture; C:\WINDOWS\system32\drivers\hcw88tse.sys [2006-01-30 299715]
R3 HCW88TUNE;Hauppauge WinTV 88x Tuner; C:\WINDOWS\system32\drivers\hcw88tun.sys [2006-01-30 142913]
R3 hcw88vid;Hauppauge WinTV 88x Video; C:\WINDOWS\system32\drivers\hcw88vid.sys [2006-01-30 494144]
R3 HCW88XBAR;Hauppauge WinTV 88x Crossbar; C:\WINDOWS\system32\drivers\HCW88BAR.sys [2006-01-30 23104]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-07-20 3198368]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2005-08-18 74752]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2003-09-19 45056]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S1 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-13 31744]
S2 acpi32;acpi32; \??\C:\WINDOWS\system32\drivers\acpi32.sys []
S2 ati64si;ati64si; \??\C:\WINDOWS\system32\drivers\ati64si.sys []
S2 fips32cup;fips32cup; \??\C:\WINDOWS\system32\drivers\fips32cup.sys []
S2 ksi32sk;ksi32sk; \??\C:\WINDOWS\system32\drivers\ksi32sk.sys []
S2 netsik;netsik; \??\C:\WINDOWS\system32\drivers\netsik.sys []
S2 port135sik;port135sik; \??\C:\WINDOWS\system32\drivers\port135sik.sys []
S2 systemntmi;systemntmi; \??\C:\WINDOWS\system32\drivers\systemntmi.sys []
S3 AVFSFilter;AVFSFilter; C:\WINDOWS\system32\DRIVERS\avfsfilter.sys [2009-12-11 10264]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-11-17 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2008-11-17 21672]
S3 HidIr;Microsoft Infrared HID Driver; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IrBus;Infrared bus filter driver for eHome remote controls; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.sys []
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-09-18 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-09-18 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-09-18 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-09-18 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-09-18 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-09-18 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-09-18 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Common Toolkit Service;Common Toolkit Service; C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe [2009-12-11 676488]
R2 ehRecvr;Služba přijímače aplikace Media Center; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Služba plánování aplikace Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
R2 GEARSecurity;GEARSecurity; C:\WINDOWS\SYSTEM32\GEARSec.exe [2003-12-01 53248]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-12-26 1181328]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-07-20 127043]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-16 487936]
R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\SPAMfighter\sfus.exe [2009-08-27 189064]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 ASKUpgrade;ASKUpgrade; C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-09 234888]
S2 AV Engine Scanning Service;AV Engine Scanning Service; C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe []
S2 gupdate1c93ad255a5eb50;Google Update Service (gupdate1c93ad255a5eb50); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-10-30 133104]
S2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-02-21 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service; C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe []
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Posílám log z ComboFixuComboFix 10-01-13.06 - Ivan - 13.01.2010 21:08:27.1.2 Melkes - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.1023.469 [GMT 1:00]
Spuštěný z: c: \ Documents and Settings \ Ivan - Melkes \ Desktop \ ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100113-0] * On-povolen přístup skenování * (Aktualizováno) (7591DB91-41F0-48A3-B128-1A293FD8233D)
FW: Sunbelt Personal Firewall povolena * * (82B1150E-9B37-49FC-83EB-D52197D900D0)
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy ))))))))) ))))))))))))))))))))))))))))))))))))))))
.

c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ AD na multimédia
c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ AD NA Multimedia \ eBay Zkratky \ config.ini
c: \ Program Files \ AskSearch \ bin \ DefaultSearch.dll
c: \ windows \ kb913800.exe
c: \ windows \ system32 \ dl.txt
c: \ windows \ system32 \ twain32
c: \ windows \ system32 \ twain32 \ local (2) (2). ds
c: \ windows \ system32 \ twain32 \ local (2) (3). ds
c: \ windows \ system32 \ twain32 \ local (2) (4). ds
c: \ windows \ system32 \ twain32 \ místní (3) (2). ds
c: \ windows \ system32 \ twain32 \ místní (3) (3). ds
c: \ windows \ system32 \ twain32 \ local (4) (2). ds
c: \ windows \ system32 \ twain32 \ local (4) (3). ds
c: \ windows \ system32 \ twain32 \ local (5) (2). ds
c: \ windows \ system32 \ twain32 \ local (5) (3). ds
c: \ windows \ system32 \ twain32 \ local (6) (2). ds
c: \ windows \ system32 \ twain32 \ local (6) (3). ds
c: \ windows \ system32 \ twain32 \ local (7) (2). ds
c: \ windows \ system32 \ twain32 \ local (7) (3). ds
c: \ windows \ system32 \ twain32 \ uživatel (2) (2). ds
c: \ windows \ system32 \ twain32 \ uživatel (2) (3). ds
c: \ windows \ system32 \ twain32 \ uživatelské (3) (2). ds
c: \ windows \ system32 \ twain32 \ uživatel (3) (3). ds
c: \ windows \ system32 \ twain32 \ uživatel (4) (2). ds
c: \ windows \ system32 \ twain32 \ uživatel (4) (3). ds

.
((((((((((((((((((((((((((((((((((((((( Ovladače / Služby )))))))) )))))))))))))))))))))))))))))))))))))))))
.

------- \ Legacy_ATI64SI
------- \ Legacy_FIPS32CUP
------- \ Legacy_I386SI
------- \ Legacy_KSI32SK
------- \ Legacy_NETSIK
------- \ Legacy_NICSK32
------- \ Legacy_PORT135SIK
------- \ Legacy_SYSTEMNTMI
------- \ Legacy_WS2_32SIK
------- \ Service_acpi32
------- \ Service_ati64si
------- \ Service_fips32cup
------- \ Service_ksi32sk
------- \ Service_netsik
------- \ Service_port135sik
------- \ Service_systemntmi


((((((((((((((((((((((((( Soubory Vytvořené od 2009-12-13 do 2010-01-13 ))))))))))) ))))))))))))))))))))
.

2010-01-12 17:08. 2010-01-12 17:08 -------- d ----- w-C: \ rsit
2010-01-12 15:38. 2010-01-12 15:38 -------- d - h - w-c: \ windows \ system32 \ GroupPolicy
2010-01-10 15:41. 2010-01-10 15:41 -------- d ----- w-c: \ windows \ system32 \ wbem \ Repository
2010-01-09 20:44. 2010-01-10 15:40 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ UserData
2010-01-08 13:09. 2010-01-13 20:19 -------- d ----- w-c: \ Program Files \ Common Files \ Common Toolkit Suite
2010-01-08 13:03. 2010-01-08 13:10 -------- dc-h - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1)
2010-01-05 21:47. 2010-01-05 21:47 604488 ---- aw-c: \ windows \ system32 \ TUProgSt.exe
2009-12-27 12:03. 2009-12-27 12:04 -------- d ----- w-c: \ Program Files \ Seznam.cz
2009-12-27 00:22. 2009-11-04 15:07 15880 ---- aw-c: \ windows \ system32 \ lsdelete.exe
2009-12-22 21:16. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Common Toolkit Suite
2009-12-22 19:49. 2010-01-09 20:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz
2009-12-18 10:37. 2009-12-18 11:21 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ CLP
2009-12-18 10:35. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Common Toolkit Suite
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Fighters
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ PackageAware
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ WinPatrol
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Program Files \ BillP Studios
2009-12-16 13:51. 2009-12-16 13:51 -------- d ----- w-c: \ Program Files \ Common Files \ Application
2009-12-16 13:50. 2010-01-13 20:19 -------- d ----- w-c: \ Program Files \ SPAMfighter

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis )))))))) ))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-13 20:19. 2006-06-19 08:01 16 ---- aw-c: \ windows \ system32 \ magicpvt.dat
2010-01-13 20:19. 2006-06-19 08:02 32 ---- aw-c: \ windows \ system32 \ driver.dat
2010-01-13 19:49. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Spyware Terminator
2010-01-13 19:44. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spyware Terminator
2010-01-13 19:39. 2009-07-23 11:56 -------- d ----- w-c: \ Program Files \ Spyware Terminator
2010-01-10 21:27. 2006-11-26 15:36 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ Data aplikací \ Zoner
2010-01-10 15:15. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Software Informer
2010-01-09 20:56. 2009-06-27 15:01 -------- d ----- w-c: \ Program Files \ Wise Registry Cleaner
2010-01-08 17:06. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Free Download Manager
2010-01-07 15:07. 2009-11-04 15:07 6296864 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Resources.dll
2010-01-07 00:15. 2006-11-03 17:17 38192 ---- aw-c: \ Documents and Settings \ Ivan Melkes 2 \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2010-01-05 22:09. 2009-08-07 10:30 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2009
2010-01-05 21:46. 2009-08-07 10:29 -------- d-sh - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (55A29068-F2CE-456C-9148-C869879E2357)
2010-01-05 20:35. 2006-05-30 08:28 -------- d - h - w-c: \ Program Files \ InstallShield Installation informace
2010-01-05 12:18. 2009-05-13 21:50 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2007
2009-12-29 19:23. 2009-03-21 14:59 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spybot - Search & Destroy
2009-12-26 15:08. 2009-10-17 14:07 862040 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ threatwork.exe
2009-12-26 15:08. 2009-10-17 14:07 206944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavamessage.dll
2009-12-26 15:08. 2009-10-17 14:07 390288 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavalicense.dll
2009-12-26 15:08. 2009-10-17 14:07 537576 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ aawapi.dll
2009-12-26 15:08. 2009-10-17 14:07 370744 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ UpdateManager.dll
2009-12-26 15:08. 2009-10-17 14:07 194104 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Savapibridge.dll
2009-12-26 15:07. 2009-10-17 14:07 933120 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ CEAPI.dll
2009-12-26 15:07. 2009-10-17 14:07 816272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareCommand.exe
2009-12-26 15:07. 2009-10-17 14:07 822904 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareAdmin.exe
2009-12-26 15:07. 2009-10-17 14:07 1643272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-Aware.exe
2009-12-26 15:07. 2009-10-17 14:07 788880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWTray.exe
2009-12-26 15:07. 2009-10-17 14:07 1181328 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWService.exe
2009-12-22 21:02. 2009-10-14 13:42 -------- d ----- w-c: \ Program Files \ Ashampoo
2009-12-21 00:25. 2009-12-02 21:24 -------- d ----- w-c: \ Program Files \ FCleaner
2009-12-18 17:31. 2009-10-14 13:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ stránku
2009-12-18 16:00. 2006-11-05 11:40 -------- d ----- w-c: \ Program Files \ Santa Hanta
2009-12-16 14:09. 2009-06-04 13:12 -------- d ----- w-c: \ Program Files \ Fighters
2009-12-16 13:37. 2006-06-02 13:06 38192 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2009-12-15 22:37. 2009-06-26 10:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Microsoft Help
2009-12-15 22:36. 2009-06-26 10:46 -------- d ----- w-c: \ Program Files \ Microsoft Works
2009-12-14 23:21. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ IObitCom
2009-12-11 12:44. 2010-01-08 13:10 2969208-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SPYWAREfighter.exe
2009-12-11 12:44. 2010-01-08 13:05 463496-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 25C348B6 \ 7973EFCA \ FighterSuiteClient.dll
2009-12-11 12:44. 2010-01-08 13:05 676488-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 1EE46BE9 \ 7973EFCA \ FighterSuiteService.exe
2009-12-11 12:44. 2010-01-08 13:05 225928-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 6C72E19E \ 7973EFCA \ FighterLauncher.exe
2009-12-11 12:44. 2010-01-08 13:05 774792-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 53462D78 \ 3C94288E \ swpro.dll
2009-12-11 12:44. 2010-01-08 13:05 2330248-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 6904C2BB \ 3C94288E \ sfhtml.dll
2009-12-11 12:44. 2010-01-08 13:05 574088-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 2C0CE245 \ 3C94288E \ swproTray.exe
2009-12-09 14:21. 2009-12-02 21:39 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Registry Převodové
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ FTWeak
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ FTWeak
2009-11-24 23:54. 2006-06-02 16:12 1280480 ---- aw-c: \ windows \ system32 \ aswBoot.exe
2009-11-24 23:51. 2009-05-23 11:51 93424 ---- aw-c: \ windows \ system32 \ drivers \ aswmon.sys
2009-11-24 23:49. 2009-05-23 11:51 48560 ---- aw-c: \ windows \ system32 \ drivers \ aswTdi.sys
2009-11-24 23:48. 2006-06-02 16:12 23120 ---- aw-c: \ windows \ system32 \ drivers \ aswRdr.sys
2009-11-24 23:47. 2009-05-23 11:51 27408 ---- aw-c: \ windows \ system32 \ drivers \ aavmker4.sys
2009-11-24 23:47. 2006-06-02 16:12 97480 ---- aw-c: \ windows \ system32 \ AVASTSS.scr
2009-11-21 15:51. 1980-01-01 00:00 471552 ---- aw-c: \ windows \ AppPatch \ aclayers.dll
2009-11-21 15:07. 2009-10-17 14:07 163728 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ ShellExt.dll
2009-11-21 15:07. 2009-10-17 14:07 327000 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ RPAPI.dll
2009-11-21 15:07. 2009-10-17 14:07 87496 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ PrivacyClean.dll
2009-11-21 15:07. 2009-10-17 14:07 641632 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AutoLaunch.exe
2009-11-16 14:13. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ Conduit
2009-11-16 14:13. 2009-01-29 13:26 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit
2009-11-04 15:49. 2009-11-16 14:13 635664 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit \ Common \ TB_Helper.exe
2009-11-04 15:07. 2009-11-04 15:08 93360 ---- aw-c: \ windows \ system32 \ drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 93360 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 554280 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ sbap.dll
2009-11-04 15:07. 2009-11-04 15:07 15880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lsdelete.exe
2009-11-04 15:07. 2009-11-04 15:07 283944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Vipre.dll
2009-11-04 15:07. 2009-11-04 15:07 212480 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ VipreBridge.dll
2009-11-04 15:07. 2009-11-04 15:07 1223976 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBTE.dll
2009-11-04 15:07. 2009-11-04 15:07 242984 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBRE.dll
2009-11-02 19:42. 2009-10-07 14:14 195456 ------ w-c: \ windows \ system32 \ MpSigStub.exe
2009-10-29 05:38. 1980-01-01 00:00 667136 ---- aw-c: \ windows \ system32 \ wininet.dll
2009-10-21 05:38. 1980-01-01 00:00 75776 ---- aw-c: \ windows \ system32 \ strmfilt.dll
2009-10-21 05:38. 1980-01-01 00:00 25088 ---- aw-c: \ windows \ system32 \ httpapi.dll
2009-10-20 16:20. 2004-08-03 23:00 265728 ---- aw-c: \ windows \ system32 \ drivers \ HTTP.SYS
.

(((((((((((((((((((((((((((((((((( Spouštěcí tělo v registru )))))))))))) )))))))))))))))))))))))))))))))))
.
.
* Poznámka * prázdné záznamy legitimní Výchozí údaje nejsou Zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (201f27d4-3704-41d6-89c1-aa35e39143ed)]
2008-12-09 16:40 333192 ---- aw-c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]
2009-10-01 16:29 2166296 ---- aw-c: \ Program Files \ IObitCom \ tbIObi.dll

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
"(3041d03e-fd4b-44e0-b742-2d9b88305f98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]
"(31c7d459-9cc3-44f2-9dca-fc11795309b4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CURRENT_USER \ Software \ Microsoft \ Internet Explorer \ Toolbar \ prvek WebBrowser]
"(31C7D459-9CC3-44F2-9DCA-FC11795309B4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]
"(3041D03E-FD4B-44E0-B742-2D9B88305F98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"ccleaner" = "c: \ Program Files \ CCleaner \ CCleaner.exe" [2009-12-21 1803064]
"Google Update" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe" [2009-04-22 133104]
"RocketDock" = "c: \ Program Files \ RocketDock \ RocketDock.exe" [2007-09-02 495616]
"BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)" = "c: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe" [2007-06-27 152872]
"MSMSGS" = "c: \ Program Files \ Spybot - Search & Destroy \ SUPERAntiSpyware.exe" [2009-03-05 2260480]
"Free Download Manager" = "c: \ Program Files \ Free Download Manager \ fdm.exe" [2009-01-31 3399727]
"Software Informer" = "c: \ Program Files \ Software Informer \ softinfo.exe" [2009-10-07 1949765]
"Advanced SystemCare 3" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ AWC.exe" [2009-11-20 2335880]
"SpywareTerminatorUpdate" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorUpdate.exe" [2009-07-23 3055616]
"swg" = "c: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL" [2008-09-22 68856]
"TuneUp MemOptimizer" = "c: \ Program Files \ TuneUp Utilities 2007 \ MemOptimizer.exe" [2007-08-18 312576]
"FTweakFCleaner" = "c: \ Program Files \ FCleaner \ FCleaner.exe" [2009-11-27 1723904]
"SmartRAM" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ Sup_SmartRAM.exe" [2009-02-19 202064]
"Seznam Postak" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz \ postak.exe" [2009-11-02 448664]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ RunOnce]
"SpywareTerminatorScan" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminator.exe" [2009-10-14 15319920]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"NvMediaCenter" = "c: \ windows \ system32 \ NvMcTray.dll" [2005-07-20 7110656]
"BluetoothAuthenticationAgent" = "" C "[2005-07-20 1519616]
"RTHDCPL" = "c: \ windows \ system32 \ ctfmon.exe" [2005-07-20 86016]
"ehTray" = "c: \ windows \ ehome \ ehtray.exe" [2005-08-05 64512]
"High Definition Audio Nemovitosti Page Zkrátit" = "HDAShCut.exe" [2005-01-07 61952]
"NeroFilterCheck" = "c: \ windows \ system32 \ ctfmon.exe" [2001-07-09 155648]
"MagicRotation" = "c: \ Program Files \ MagicRotation \ MagicPvt.exe" [2005-06-03 1089536]
"SoundMAX" = "c: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe" [2004-11-02 32768]
"Easy-PrintToolBox" = "c: \ Program Files \ Canon \ Easy-PrintToolBox \ BJPSMAIN.EXE" [2004-01-14 409600]
"SSBkgdUpdate" = "c: \ Program Files \ Common Files \ ScanSoft Shared \ SSBkgdUpdate \ SSBkgdupdate.exe" [2003-09-29 155648]
"DAEMON Tools" = "c: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBKeyScan.exe" [2008-02-21 1647912]
"avast!" = "c: \ progra ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe" [2009-11-24 81000]
"Windows Defender" = "c: \ Program Files \ Windows Defender \ MSASCui.exe" [2006-11-03 866584]
"Adobe ARM" = "c: \ Program Files \ Common Files \ Adobe \ ARM \ 1.0 \ AdobeARM.exe" [2009-09-04 935288]
"OpwareSE4" = "c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpwareSE4.exe" [2006-03-21 69632]
"SpywareTerminator" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorShield.exe" [2009-10-16 2172416]
"SPAMfighter Agent" = "c: \ Program Files \ SPAMfighter \ SFAgent.exe" [2009-08-27 336520]
"WinPatrol" = "c: \ Program Files \ BillP Studios \ WinPatrol \ winpatrol.exe" [2009-10-10 320832]
"SWPROguard" = "c: \ Program Files \ Fighters \ SPYWAREfighter \ SWPROTray.exe" [2009-12-11 574088]

[HKEY_USERS \. DEFAULT \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"CTFMON.EXE" = "c: \ windows \ system32 \ CTFMON.EXE" [2008-04-14 15360]

c: \ Documents and Settings \ Ivan - Melkes \ Nabídka Start \ Programy \ Po spuštění \
Věýezy obrazovky spuçtŘn aplikace OneNote 2007.lnk - C: \ Program Files \ Microsoft Office \ Office12 \ Onenotem.exe [2008-10-25 98696]

c: \ Documents and Settings \ All Users \ Nabídka Start \ Programy \ Po spuštění \
CodeStuff Starter.lnk - c: \ Program Files \ CodeStuff \ Starter \ Starter.exe [2005-7-3 380928]
Barva Calibration.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ GammaTray.exe [2006-6-19 36864]
MagicTune3.6.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ MagicTuneTray.exe [2006-6-19 45056]
NaturalColorLoad.lnk - c: \ Program Files \ SEC \ Natural Color \ NaturalColorLoad.exe [2006-6-2 155715]
Samsung Multimedia Keyboard.lnk - c: \ Program Files \ Samsung \ Samsung Multimedia Keyboard \ gpkbd.exe [2006-6-20 585728]

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"SynchronousMachineGroupPolicy" = 1 (0x1)
"SynchronousUserGroupPolicy" = 1 (0x1)
"PromptOnSecureDesktop" = -1 (0xffffffff)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"DisableChangePassword" = -1 (0xffffffff)
"DisableLockWorkstation" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoStrCmpLogical" = 0 (0x0)
"NoPopUpsOnBoot" = 1 (0x1)
"DisableCurrentUserRun" = -1 (0xffffffff)
"DisableCurrentUserRunOnce" = -1 (0xffffffff)
"NoResolveTrack" = 1 (0x1)
"NoFileAssociate" = 0 (0x0)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoSMBalloonTip" = 1 (0x1)
"MaxRecentDocs" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ Lavasoft Ad-Aware Service]
@ = "Service"

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ WinDefend]
@ = "Service"

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ run-]
"Adobe Reader Speed Launcher" = "c: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
"Sony Ericsson PC Suite" = "c: \ Program Files \ Sony Ericsson \ Mobile2 \ Application Launcher \ Application Launcher.exe" / startoptions

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile]
"EnableFirewall" = 0 (0x0)

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ AuthorizedApplications \ List]
"% windir% \ \ system32 \ \ Sessmgr.exe" =
"c: \ \ Program Files \ \ Microsoft Office \ \ Office12 \ \ Onenote.exe" =
"c: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe" = C: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync RAPI Manager
"c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •" = c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Connection Manager
"c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe" = c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Aplikace

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ GloballyOpenPorts \ List]
"26675: TCP" = 26675: TCP: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Service

R0 Lbd, Lbd c: \ windows \ system32 \ drivers \ Lbd.sys [14.10.2009 15:06 64288]
R1 aswSP; avast! Self Protection; c: \ windows \ system32 \ drivers \ aswSP.sys [23.5.2009 12:51 114768]
R1 HCW88AUD; Hauppauge WinTV 88x Audio Capture; c: \ windows \ system32 \ drivers \ hcw88aud.sys [30.1.2006 17:05 11970]
R1 magicpvt, magicpvt c: \ windows \ system32 \ drivers \ magicpvt.sys [19.6.2006 9:02 9728]
R1 SbFw, SbFw c: \ windows \ system32 \ drivers \ SbFw.sys [26.5.2009 11:04 270888]
R1 sbhips; Sunbelt HIPS Driver; c: \ windows \ system32 \ drivers \ sbhips.sys [21.6.2008 3:54 66600]
R1 sp_rsdrv2; Spyware Terminator Driver 2; c: \ windows \ system32 \ drivers \ sp_rsdrv2.sys [23.7.2009 12:56 142592]
R2 aswFsBlk; aswFsBlk; c: \ windows \ system32 \ drivers \ aswFsBlk.sys [23.5.2009 12:51 20560]
R2 Společný Toolkit Service; obecný Toolkit Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ FighterSuiteService.exe [11.12.2009 13:44 676488]
R2 Lavasoft Ad-Aware Service, Lavasoft Ad-Aware Service C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe [24.9.2009 12:17 1181328]
R2 Prvflder, Prvflder c: \ windows \ system32 \ drivers \ prvflder.sys [21.4.2006 7:22 70912]
R2 SbPF.Launcher, SbPF.Launcher c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFLnch.exe [31.10.2008 6:24 95528]
R2 SPAMfighter Update Service; SPAMfighter Update Service; c: \ Program Files \ SPAMfighter \ sfus.exe [27.8.2009 9:24 189064]
R2 SPF4; Sunbelt Personal Firewall 4; c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFSvc.exe [31.10.2008 6:24 1365288]
R2 WinDefend, Windows Defender, c: \ Program Files \ Windows Defender \ MsMpEng.exe [3.11.2006 18:19 13592]
R3 HCW88BDA; Hauppauge WinTV 88x DVB Tuner / IQ, c: \ windows \ system32 \ drivers \ hcw88bda.sys [30.1.2006 17:05 138816]
R3 HCW88TSE; Hauppauge WinTV 88x MPEG / TS Capture; c: \ windows \ system32 \ drivers \ hcw88tse.sys [30.1.2006 17:06 299715]
R3 HCW88TUNE; Hauppauge WinTV 88x Tuner; c: \ windows \ system32 \ drivers \ hcw88tun.sys [30.1.2006 18:17 142913]
R3 hcw88vid; Hauppauge WinTV 88x Video; c: \ windows \ system32 \ drivers \ hcw88vid.sys [30.1.2006 17:04 494144]
R3 HCW88XBAR; Hauppauge WinTV 88x Crossbar c: \ windows \ system32 \ drivers \ hcw88bar.sys [30.1.2006 17:04 23104]
R3 SBFWIMCL; Sunbelt Software Firewall NDIS IM Filtr Miniport; c: \ windows \ system32 \ drivers \ SbFwIm.sys [26.5.2009 11:04 65576]
S2 ASKUpgrade, ASKUpgrade c: \ Program Files \ AskBarDis \ bar \ bin \ ASKUpgrade.exe [13.7.2009 15:12 234888]
S2 AV Motor Scanning Service; AV Motor Scanning Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ AVEngine \ AVScanningService.exe [11.12.2009 13:34 661888]
S2 gupdate1c93ad255a5eb50; Google Update Service (gupdate1c93ad255a5eb50), c: \ Program Files \ Google \ Update \ GoogleUpdate.exe [30.10.2008 21:58 133104]
S3 AVFSFilter, AVFSFilter c: \ windows \ system32 \ drivers \ avfsfilter.sys [11.12.2009 13:34 10.264]
S3 ggflt; SEMC USB Flash Driver Filter; c: \ windows \ system32 \ drivers \ ggflt.sys [17.11.2008 18:01 13352]
.
Obsah adresáře 'Naplánované úlohy'

2010-01-13 c: \ windows \ Tasks \ Ad-Aware Update (den 1). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-13 c: \ windows \ Tasks \ Ad-Aware Update (den 2). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-13 c: \ windows \ Tasks \ Ad-Aware Update (Daily 3). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-13 c: \ windows \ Tasks \ Ad-Aware Update (Daily 4). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-13 c: \ windows \ Tasks \ Ad-Aware Update (týdenní). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-13 c: \ windows \ Tasks \ GoogleUpdateTaskMachineCore.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-13 c: \ windows \ Tasks \ GoogleUpdateTaskMachineUA.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-13 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-13 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-13 c: \ windows \ Tasks \ MP Scheduled Scan.job
- C: \ Program Files \ Windows Defender \ MpCmdRun.exe [2006-11-03 17:20]

2010-01-13 c: \ windows \ Tasks \ SLOW-PCfighter.job
- C: \ Program Files \ Fighters \ SLOW-PCfighter \ SLOW-PCfighter.exe [2009-11-17 13:07]

2010-01-08 c: \ windows \ Tasks \ Úklid 1 kliknutím.job
- C: \ Program Files \ TuneUp Utilities 2007 \ SystemOptimizer.exe [2007-05-20 17:17]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp: / / www.seznam.cz
uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q searchTerms = () & sourceid = ie7 & rls = com.microsoft: en-US & ie = utf8 & oe = utf8
uInternet Settings, ProxyOverride = 127.0.0.1
uSearchAssistant = hxxp: / / www.google.com / ie
uSearchURL, (Default) = hxxp: / / www.google.com/keyword/% s
IE: + Offline & Explorer: Download link - file: / / c: \ Program Files \ Offline Explorer \ Add_UrlO.htm
IE: + Offline E & Xplorer: Stáhněte si aktuální stránku - file: / / c: \ Program Files \ Offline Explorer \ Add_AllO.htm
IE: Crawler Search - tbr: iemenu
IE: E & xportovat do aplikace Microsoft Excel - c: \ progra ~ 1 \ Microsoft Office \ Office12 \ EXCEL.EXE/3000
IE: Stáhnout Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dllink.htm
IE: Stáhnout video Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlselected.htm
IE: Stáhnout vše Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlall.htm
IE: WikiKomentáře Google ... - C: \ Program Files \ Google \ Google Toolbar \ Složka \ GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
Handler: tbr - (4D25FB7A-8902-4291-960E-9ADA051CFBBF) - c: \ progra ~ 1 \ Crawler \ Toolbar \ ctbr.dll
.

************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit / stealth malware detektoru GMER, http://www.gmer.net
Rootkit scan 2010-01-13 21:21
Okna 5.1.2600 Service Pack 3. NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po Spuštění' ...

skenování skrytých souborů ...

sken Byl úspěšně dokončen
skryté soubory: 0

************************************************** ************************

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"
.
--------------------- Zamknuté Klíče v registru ---------------------

[HKEY_USERS \ S-1-5-21-3762901291-1285979262-2613963444-1005 \ Software \ Microsoft \ SystemCertificates \ AddressBook *]
Povolené @: (Číst) (RestrictedCode)
Povolené @: (Číst) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - -> 'Explorer.exe' (4060)
c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ Highlight.dll
c: \ Program Files \ BillP Studios \ WinPatrol \ PATROLPRO.DLL
c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpHookSE4.dll
c: \ Program Files \ Samsung \ Samsung Multimedia Keyboard \ yskbhk.DLL
c: \ Program Files \ Common Files \ Ahead \ Lib \ NeroSearchBar.dll
c: \ Program Files \ Common Files \ Ahead \ Lib \ MFC71U.DLL
c: \ Program Files \ Common Files \ Ahead \ Lib \ BCGCBPRO860un71.dll
c: \ windows \ system32 \ WPDShServiceObj.dll
c: \ Program Files \ Microsoft Private Folder 1.0 \ ShellExt.dll
c: \ windows \ system32 \ PFLib.dll
c: \ windows \ system32 \ PortableDeviceTypes.dll
c: \ windows \ system32 \ PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ----------------------- --
.
c: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
c: \ windows \ eHome \ ehRecvr.exe
c: \ windows \ eHome \ ehSched.exe
c: \ windows \ system32 \ GEARSec.exe
c: \ windows \ system32 \ nvsvc32.exe
c: \ Program Files \ Microsoft Private Folder 1.0 \ PrfldSvc.exe
c: \ Program Files \ Spyware Terminator \ sp_rsser.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
c: \ windows \ system32 \ wbem \ unsecapp.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
c: \ windows \ system32 \ Dllhost.exe
c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFCl.exe
c: \ windows \ eHome \ ehmsas.exe
c: \ Program Files \ Lavasoft \ Ad-Aware \ AAWTray.exe
c: \ windows \ system32 \ msiexec.exe
c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ MagicTune.exe
.
************************************************** ************************
.
Celkový čas: 2010-01-13 21:30:19 - počítač restartován Byl
ComboFix-quarantined-files.txt 2010-01-13 20:30

Před spuštěním: 113 666 920 448 bajtů zdarma
Po Spuštění: Volných bajtů: 113 581 404 160

WindowsXP-KB310994-SP2-Pro-Bootdisk-CSY.exe
[boot loader]
timeout = 2
default = multi (0) disk (0) rdisk (0) partition (1) \ WINDOWS
[operating systems]
c: \ cmdcons \ BOOTSECT.DAT = "Microsoft Windows konzolu pro zotavení" / cmdcons
multi (0) disk (0) rdisk (0) partition (1) \ WINDOWS = "Windows XP Media Center Edition" / noexecute = OptIn / fastdetect

- - End of file - - 4E0C3779CC28A38EC886715DDACFA60E

Otevřte poznámkový blok a zkopírujte do něj:

Folder::
c:\Program Files\AskBarDis

Driver::
ASKUpgrade

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\(201f27d4-3704-41d6-89c1-aa35e39143ed)]
[-HKEY_CLASSES_ROOT\clsid\(3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"(3041d03e-fd4b-44e0-b742-2d9b88305f98)"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\prvek WebBrowser]
"(3041D03E-FD4B-44E0-B742-2D9B88305F98)"=-
[-HKEY_CLASSES_ROOT\clsid\(3041d03e-fd4b-44e0-b742-2d9b88305f98)]

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu Combofix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Díky za Vaše rady, posílám log z ComboFixu.ComboFix 10-01-13.0C - Ivan - 14.01.2010 15:21:38.2.2 Melkes - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.1023.249 [GMT 1:00]
Spuštěný z: c: \ Documents and Settings \ Ivan - Melkes \ Desktop \ ComboFix.exe
Použité ovládací přepínače:: C: \ Documents and Settings \ Ivan - Melkes \ Desktop \ CFScript .. txt .. txt
AV: avast! antivirus 4.8.1368 [VPS 100114-1] * On-Access scanning postižených * (Aktualizováno) (7591DB91-41F0-48A3-B128-1A293FD8233D)
FW: Sunbelt Personal Firewall povolena * * (82B1150E-9B37-49FC-83EB-D52197D900D0)
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy ))))))))) ))))))))))))))))))))))))))))))))))))))))
.

.
((((((((((((((((((((((((((((((((((((((( Ovladače / Služby )))))))) )))))))))))))))))))))))))))))))))))))))))
.

------- \ Legacy_ASKUPGRADE
------- \ Service_ASKUpgrade


((((((((((((((((((((((((( Soubory Vytvořené od 2009-12-14 do 2010-01-14 ))))))))))) ))))))))))))))))))))
.

2010-01-12 17:08. 2010-01-12 17:08 -------- d ----- w-C: \ rsit
2010-01-12 15:38. 2010-01-12 15:38 -------- d - h - w-c: \ windows \ system32 \ GroupPolicy
2010-01-10 15:41. 2010-01-10 15:41 -------- d ----- w-c: \ windows \ system32 \ wbem \ Repository
2010-01-09 20:44. 2010-01-10 15:40 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ UserData
2010-01-08 13:09. 2010-01-14 14:33 -------- d ----- w-c: \ Program Files \ Common Files \ Common Toolkit Suite
2010-01-08 13:03. 2010-01-08 13:10 -------- dc-h - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1)
2010-01-05 21:47. 2010-01-05 21:47 604488 ---- aw-c: \ windows \ system32 \ TUProgSt.exe
2009-12-27 12:03. 2009-12-27 12:04 -------- d ----- w-c: \ Program Files \ Seznam.cz
2009-12-27 00:22. 2009-11-04 15:07 15880 ---- aw-c: \ windows \ system32 \ lsdelete.exe
2009-12-22 21:16. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Common Toolkit Suite
2009-12-22 19:49. 2010-01-09 20:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz
2009-12-18 10:37. 2009-12-18 11:21 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ CLP
2009-12-18 10:35. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Common Toolkit Suite
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Fighters
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ PackageAware
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ WinPatrol
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Program Files \ BillP Studios
2009-12-16 13:51. 2009-12-16 13:51 -------- d ----- w-c: \ Program Files \ Common Files \ Application
2009-12-16 13:50. 2010-01-14 14:36 -------- d ----- w-c: \ Program Files \ SPAMfighter

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis )))))))) ))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 14:33. 2006-06-19 08:01 16 ---- aw-c: \ windows \ system32 \ magicpvt.dat
2010-01-14 14:32. 2006-06-19 08:02 32 ---- aw-c: \ windows \ system32 \ driver.dat
2010-01-14 14:13. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Spyware Terminator
2010-01-14 13:46. 2009-03-21 14:59 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spybot - Search & Destroy
2010-01-13 19:44. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spyware Terminator
2010-01-13 19:39. 2009-07-23 11:56 -------- d ----- w-c: \ Program Files \ Spyware Terminator
2010-01-10 21:27. 2006-11-26 15:36 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ Data aplikací \ Zoner
2010-01-10 15:15. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Software Informer
2010-01-09 20:56. 2009-06-27 15:01 -------- d ----- w-c: \ Program Files \ Wise Registry Cleaner
2010-01-08 17:06. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Free Download Manager
2010-01-07 15:07. 2009-11-04 15:07 6296864 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Resources.dll
2010-01-07 00:15. 2006-11-03 17:17 38192 ---- aw-c: \ Documents and Settings \ Ivan Melkes 2 \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2010-01-05 22:09. 2009-08-07 10:30 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2009
2010-01-05 21:46. 2009-08-07 10:29 -------- d-sh - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (55A29068-F2CE-456C-9148-C869879E2357)
2010-01-05 20:35. 2006-05-30 08:28 -------- d - h - w-c: \ Program Files \ InstallShield Installation informace
2010-01-05 12:18. 2009-05-13 21:50 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2007
2009-12-26 15:08. 2009-10-17 14:07 862040 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ threatwork.exe
2009-12-26 15:08. 2009-10-17 14:07 206944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavamessage.dll
2009-12-26 15:08. 2009-10-17 14:07 390288 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavalicense.dll
2009-12-26 15:08. 2009-10-17 14:07 537576 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ aawapi.dll
2009-12-26 15:08. 2009-10-17 14:07 370744 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ UpdateManager.dll
2009-12-26 15:08. 2009-10-17 14:07 194104 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Savapibridge.dll
2009-12-26 15:07. 2009-10-17 14:07 933120 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ CEAPI.dll
2009-12-26 15:07. 2009-10-17 14:07 816272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareCommand.exe
2009-12-26 15:07. 2009-10-17 14:07 822904 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareAdmin.exe
2009-12-26 15:07. 2009-10-17 14:07 1643272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-Aware.exe
2009-12-26 15:07. 2009-10-17 14:07 788880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWTray.exe
2009-12-26 15:07. 2009-10-17 14:07 1181328 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWService.exe
2009-12-22 21:02. 2009-10-14 13:42 -------- d ----- w-c: \ Program Files \ Ashampoo
2009-12-21 00:25. 2009-12-02 21:24 -------- d ----- w-c: \ Program Files \ FCleaner
2009-12-18 17:31. 2009-10-14 13:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ stránku
2009-12-18 16:00. 2006-11-05 11:40 -------- d ----- w-c: \ Program Files \ Santa Hanta
2009-12-16 14:09. 2009-06-04 13:12 -------- d ----- w-c: \ Program Files \ Fighters
2009-12-16 13:37. 2006-06-02 13:06 38192 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2009-12-15 22:37. 2009-06-26 10:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Microsoft Help
2009-12-15 22:36. 2009-06-26 10:46 -------- d ----- w-c: \ Program Files \ Microsoft Works
2009-12-14 23:21. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ IObitCom
2009-12-11 12:44. 2010-01-08 13:10 2969208-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SPYWAREfighter.exe
2009-12-11 12:44. 2010-01-08 13:05 463496-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 25C348B6 \ 7973EFCA \ FighterSuiteClient.dll
2009-12-11 12:44. 2010-01-08 13:05 676488-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 1EE46BE9 \ 7973EFCA \ FighterSuiteService.exe
2009-12-11 12:44. 2010-01-08 13:05 225928-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 6C72E19E \ 7973EFCA \ FighterLauncher.exe
2009-12-11 12:44. 2010-01-08 13:05 774792-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 53462D78 \ 3C94288E \ swpro.dll
2009-12-11 12:44. 2010-01-08 13:05 2330248-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 6904C2BB \ 3C94288E \ sfhtml.dll
2009-12-11 12:44. 2010-01-08 13:05 574088-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 2C0CE245 \ 3C94288E \ swproTray.exe
2009-12-09 14:21. 2009-12-02 21:39 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Registry Převodové
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ FTWeak
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ FTWeak
2009-11-24 23:54. 2006-06-02 16:12 1280480 ---- aw-c: \ windows \ system32 \ aswBoot.exe
2009-11-24 23:51. 2009-05-23 11:51 93424 ---- aw-c: \ windows \ system32 \ drivers \ aswmon.sys
2009-11-24 23:49. 2009-05-23 11:51 48560 ---- aw-c: \ windows \ system32 \ drivers \ aswTdi.sys
2009-11-24 23:48. 2006-06-02 16:12 23120 ---- aw-c: \ windows \ system32 \ drivers \ aswRdr.sys
2009-11-24 23:47. 2009-05-23 11:51 27408 ---- aw-c: \ windows \ system32 \ drivers \ aavmker4.sys
2009-11-24 23:47. 2006-06-02 16:12 97480 ---- aw-c: \ windows \ system32 \ AVASTSS.scr
2009-11-21 15:51. 1980-01-01 00:00 471552 ---- aw-c: \ windows \ AppPatch \ aclayers.dll
2009-11-21 15:07. 2009-10-17 14:07 163728 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ ShellExt.dll
2009-11-21 15:07. 2009-10-17 14:07 327000 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ RPAPI.dll
2009-11-21 15:07. 2009-10-17 14:07 87496 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ PrivacyClean.dll
2009-11-21 15:07. 2009-10-17 14:07 641632 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AutoLaunch.exe
2009-11-16 14:13. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ Conduit
2009-11-16 14:13. 2009-01-29 13:26 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit
2009-11-04 15:49. 2009-11-16 14:13 635664 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit \ Common \ TB_Helper.exe
2009-11-04 15:07. 2009-11-04 15:08 93360 ---- aw-c: \ windows \ system32 \ drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 93360 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 554280 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ sbap.dll
2009-11-04 15:07. 2009-11-04 15:07 15880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lsdelete.exe
2009-11-04 15:07. 2009-11-04 15:07 283944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Vipre.dll
2009-11-04 15:07. 2009-11-04 15:07 212480 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ VipreBridge.dll
2009-11-04 15:07. 2009-11-04 15:07 1223976 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBTE.dll
2009-11-04 15:07. 2009-11-04 15:07 242984 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBRE.dll
2009-11-02 19:42. 2009-10-07 14:14 195456 ------ w-c: \ windows \ system32 \ MpSigStub.exe
2009-10-29 05:38. 1980-01-01 00:00 667136 ------ w-c: \ windows \ system32 \ wininet.dll
2009-10-21 05:38. 1980-01-01 00:00 75776 ---- aw-c: \ windows \ system32 \ strmfilt.dll
2009-10-21 05:38. 1980-01-01 00:00 25088 ---- aw-c: \ windows \ system32 \ httpapi.dll
2009-10-20 16:20. 2004-08-03 23:00 265728 ---- aw-c: \ windows \ system32 \ drivers \ HTTP.SYS
.

(((((((((((((((((((((((((((((((((( Spouštěcí tělo v registru )))))))))))) )))))))))))))))))))))))))))))))))
.
.
* Poznámka * prázdné záznamy legitimní Výchozí údaje nejsou Zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (201f27d4-3704-41d6-89c1-aa35e39143ed)]
2008-12-09 16:40 333192 ---- aw-c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]
2009-10-01 16:29 2166296 ---- aw-c: \ Program Files \ IObitCom \ tbIObi.dll

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
"(3041d03e-fd4b-44e0-b742-2d9b88305f98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]
"(31c7d459-9cc3-44f2-9dca-fc11795309b4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CURRENT_USER \ Software \ Microsoft \ Internet Explorer \ Toolbar \ prvek WebBrowser]
"(31C7D459-9CC3-44F2-9DCA-FC11795309B4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]
"(3041D03E-FD4B-44E0-B742-2D9B88305F98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"ccleaner" = "c: \ Program Files \ CCleaner \ CCleaner.exe" [2009-12-21 1803064]
"Google Update" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe" [2009-04-22 133104]
"RocketDock" = "c: \ Program Files \ RocketDock \ RocketDock.exe" [2007-09-02 495616]
"BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)" = "c: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe" [2007-06-27 152872]
"MSMSGS" = "c: \ Program Files \ Spybot - Search & Destroy \ SUPERAntiSpyware.exe" [2009-03-05 2260480]
"Free Download Manager" = "c: \ Program Files \ Free Download Manager \ fdm.exe" [2009-01-31 3399727]
"Software Informer" = "c: \ Program Files \ Software Informer \ softinfo.exe" [2009-10-07 1949765]
"Advanced SystemCare 3" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ AWC.exe" [2009-11-20 2335880]
"SpywareTerminatorUpdate" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorUpdate.exe" [2009-07-23 3055616]
"swg" = "c: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL" [2008-09-22 68856]
"TuneUp MemOptimizer" = "c: \ Program Files \ TuneUp Utilities 2007 \ MemOptimizer.exe" [2007-08-18 312576]
"FTweakFCleaner" = "c: \ Program Files \ FCleaner \ FCleaner.exe" [2009-11-27 1723904]
"SmartRAM" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ Sup_SmartRAM.exe" [2009-02-19 202064]
"Seznam Postak" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz \ postak.exe" [2009-11-02 448664]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ RunOnce]
"SpywareTerminatorScan" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminator.exe" [2009-10-14 15319920]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"NvMediaCenter" = "c: \ windows \ system32 \ NvMcTray.dll" [2005-07-20 7110656]
"BluetoothAuthenticationAgent" = "" C "[2005-07-20 1519616]
"RTHDCPL" = "c: \ windows \ system32 \ ctfmon.exe" [2005-07-20 86016]
"ehTray" = "c: \ windows \ ehome \ ehtray.exe" [2005-08-05 64512]
"High Definition Audio Nemovitosti Page Zkrátit" = "HDAShCut.exe" [2005-01-07 61952]
"NeroFilterCheck" = "c: \ windows \ system32 \ ctfmon.exe" [2001-07-09 155648]
"MagicRotation" = "c: \ Program Files \ MagicRotation \ MagicPvt.exe" [2005-06-03 1089536]
"SoundMAX" = "c: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe" [2004-11-02 32768]
"Easy-PrintToolBox" = "c: \ Program Files \ Canon \ Easy-PrintToolBox \ BJPSMAIN.EXE" [2004-01-14 409600]
"SSBkgdUpdate" = "c: \ Program Files \ Common Files \ ScanSoft Shared \ SSBkgdUpdate \ SSBkgdupdate.exe" [2003-09-29 155648]
"DAEMON Tools" = "c: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBKeyScan.exe" [2008-02-21 1647912]
"avast!" = "c: \ progra ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe" [2009-11-24 81000]
"Windows Defender" = "c: \ Program Files \ Windows Defender \ MSASCui.exe" [2006-11-03 866584]
"Adobe ARM" = "c: \ Program Files \ Common Files \ Adobe \ ARM \ 1.0 \ AdobeARM.exe" [2009-09-04 935288]
"OpwareSE4" = "c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpwareSE4.exe" [2006-03-21 69632]
"SpywareTerminator" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorShield.exe" [2009-10-16 2172416]
"SPAMfighter Agent" = "c: \ Program Files \ SPAMfighter \ SFAgent.exe" [2009-08-27 336520]
"WinPatrol" = "c: \ Program Files \ BillP Studios \ WinPatrol \ winpatrol.exe" [2009-10-10 320832]
"SWPROguard" = "c: \ Program Files \ Fighters \ SPYWAREfighter \ SWPROTray.exe" [2009-12-11 574088]

[HKEY_USERS \. DEFAULT \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"CTFMON.EXE" = "c: \ windows \ system32 \ CTFMON.EXE" [2008-04-14 15360]

c: \ Documents and Settings \ Ivan - Melkes \ Nabídka Start \ Programy \ Po spuštění \
Věýezy obrazovky spuçtŘn aplikace OneNote 2007.lnk - C: \ Program Files \ Microsoft Office \ Office12 \ Onenotem.exe [2008-10-25 98696]

c: \ Documents and Settings \ All Users \ Nabídka Start \ Programy \ Po spuštění \
CodeStuff Starter.lnk - c: \ Program Files \ CodeStuff \ Starter \ Starter.exe [2005-7-3 380928]
Barva Calibration.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ GammaTray.exe [2006-6-19 36864]
MagicTune3.6.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ MagicTuneTray.exe [2006-6-19 45056]
NaturalColorLoad.lnk - c: \ Program Files \ SEC \ Natural Color \ NaturalColorLoad.exe [2006-6-2 155715]
Samsung Multimedia Keyboard.lnk - c: \ Program Files \ Samsung \ Samsung Multimedia Keyboard \ gpkbd.exe [2006-6-20 585728]

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"SynchronousMachineGroupPolicy" = 1 (0x1)
"SynchronousUserGroupPolicy" = 1 (0x1)
"PromptOnSecureDesktop" = -1 (0xffffffff)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"DisableChangePassword" = -1 (0xffffffff)
"DisableLockWorkstation" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoStrCmpLogical" = 0 (0x0)
"NoPopUpsOnBoot" = 1 (0x1)
"DisableCurrentUserRun" = -1 (0xffffffff)
"DisableCurrentUserRunOnce" = -1 (0xffffffff)
"NoResolveTrack" = 1 (0x1)
"NoFileAssociate" = 0 (0x0)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoSMBalloonTip" = 1 (0x1)
"MaxRecentDocs" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ Lavasoft Ad-Aware Service]
@ = "Service"

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ WinDefend]
@ = "Service"

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ run-]
"Adobe Reader Speed Launcher" = "c: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
"Sony Ericsson PC Suite" = "c: \ Program Files \ Sony Ericsson \ Mobile2 \ Application Launcher \ Application Launcher.exe" / startoptions

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile]
"EnableFirewall" = 0 (0x0)

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ AuthorizedApplications \ List]
"% windir% \ \ system32 \ \ Sessmgr.exe" =
"c: \ \ Program Files \ \ Microsoft Office \ \ Office12 \ \ Onenote.exe" =
"c: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe" = C: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync RAPI Manager
"c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •" = c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Connection Manager
"c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe" = c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Aplikace

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ GloballyOpenPorts \ List]
"26675: TCP" = 26675: TCP: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Service

R0 Lbd, Lbd c: \ windows \ system32 \ drivers \ Lbd.sys [14.10.2009 15:06 64288]
R1 aswSP; avast! Self Protection; c: \ windows \ system32 \ drivers \ aswSP.sys [23.5.2009 12:51 114768]
R1 HCW88AUD; Hauppauge WinTV 88x Audio Capture; c: \ windows \ system32 \ drivers \ hcw88aud.sys [30.1.2006 17:05 11970]
R1 magicpvt, magicpvt c: \ windows \ system32 \ drivers \ magicpvt.sys [19.6.2006 9:02 9728]
R1 SbFw, SbFw c: \ windows \ system32 \ drivers \ SbFw.sys [26.5.2009 11:04 270888]
R1 sbhips; Sunbelt HIPS Driver; c: \ windows \ system32 \ drivers \ sbhips.sys [21.6.2008 3:54 66600]
R1 sp_rsdrv2; Spyware Terminator Driver 2; c: \ windows \ system32 \ drivers \ sp_rsdrv2.sys [23.7.2009 12:56 142592]
R2 aswFsBlk; aswFsBlk; c: \ windows \ system32 \ drivers \ aswFsBlk.sys [23.5.2009 12:51 20560]
R2 Společný Toolkit Service; obecný Toolkit Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ FighterSuiteService.exe [11.12.2009 13:44 676488]
R2 Lavasoft Ad-Aware Service, Lavasoft Ad-Aware Service C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe [24.9.2009 12:17 1181328]
R2 Prvflder, Prvflder c: \ windows \ system32 \ drivers \ prvflder.sys [21.4.2006 7:22 70912]
R2 SbPF.Launcher, SbPF.Launcher c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFLnch.exe [31.10.2008 6:24 95528]
R2 SPAMfighter Update Service; SPAMfighter Update Service; c: \ Program Files \ SPAMfighter \ sfus.exe [27.8.2009 9:24 189064]
R2 SPF4; Sunbelt Personal Firewall 4; c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFSvc.exe [31.10.2008 6:24 1365288]
R2 WinDefend, Windows Defender, c: \ Program Files \ Windows Defender \ MsMpEng.exe [3.11.2006 18:19 13592]
R3 HCW88BDA; Hauppauge WinTV 88x DVB Tuner / IQ, c: \ windows \ system32 \ drivers \ hcw88bda.sys [30.1.2006 17:05 138816]
R3 HCW88TSE; Hauppauge WinTV 88x MPEG / TS Capture; c: \ windows \ system32 \ drivers \ hcw88tse.sys [30.1.2006 17:06 299715]
R3 HCW88TUNE; Hauppauge WinTV 88x Tuner; c: \ windows \ system32 \ drivers \ hcw88tun.sys [30.1.2006 18:17 142913]
R3 hcw88vid; Hauppauge WinTV 88x Video; c: \ windows \ system32 \ drivers \ hcw88vid.sys [30.1.2006 17:04 494144]
R3 HCW88XBAR; Hauppauge WinTV 88x Crossbar c: \ windows \ system32 \ drivers \ hcw88bar.sys [30.1.2006 17:04 23104]
R3 SBFWIMCL; Sunbelt Software Firewall NDIS IM Filtr Miniport; c: \ windows \ system32 \ drivers \ SbFwIm.sys [26.5.2009 11:04 65576]
S2 AV Motor Scanning Service; AV Motor Scanning Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ AVEngine \ AVScanningService.exe [11.12.2009 13:34 661888]
S2 gupdate1c93ad255a5eb50; Google Update Service (gupdate1c93ad255a5eb50), c: \ Program Files \ Google \ Update \ GoogleUpdate.exe [30.10.2008 21:58 133104]
S3 AVFSFilter, AVFSFilter c: \ windows \ system32 \ drivers \ avfsfilter.sys [11.12.2009 13:34 10.264]
S3 ggflt; SEMC USB Flash Driver Filter; c: \ windows \ system32 \ drivers \ ggflt.sys [17.11.2008 18:01 13352]
.
Obsah adresáře 'Naplánované úlohy'

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (den 1). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (den 2). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (Daily 3). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (Daily 4). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (týdenní). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ GoogleUpdateTaskMachineCore.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-14 c: \ windows \ Tasks \ GoogleUpdateTaskMachineUA.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-13 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-14 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-14 c: \ windows \ Tasks \ MP Scheduled Scan.job
- C: \ Program Files \ Windows Defender \ MpCmdRun.exe [2006-11-03 17:20]

2010-01-14 c: \ windows \ Tasks \ SLOW-PCfighter.job
- C: \ Program Files \ Fighters \ SLOW-PCfighter \ SLOW-PCfighter.exe [2009-11-17 13:07]

2010-01-08 c: \ windows \ Tasks \ Úklid 1 kliknutím.job
- C: \ Program Files \ TuneUp Utilities 2007 \ SystemOptimizer.exe [2007-05-20 17:17]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp: / / www.seznam.cz
uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q searchTerms = () & sourceid = ie7 & rls = com.microsoft: en-US & ie = utf8 & oe = utf8
uSearch Page = hxxp: / / www.google.com
uInternet Settings, ProxyOverride = 127.0.0.1
uSearchAssistant = hxxp: / / www.google.com / ie
uSearchURL, (Default) = hxxp: / / www.google.com/search?q =% s
IE: + Offline & Explorer: Download link - file: / / c: \ Program Files \ Offline Explorer \ Add_UrlO.htm
IE: + Offline E & Xplorer: Stáhněte si aktuální stránku - file: / / c: \ Program Files \ Offline Explorer \ Add_AllO.htm
IE: Crawler Search - tbr: iemenu
IE: E & xportovat do aplikace Microsoft Excel - c: \ progra ~ 1 \ Microsoft Office \ Office12 \ EXCEL.EXE/3000
IE: Stáhnout Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dllink.htm
IE: Stáhnout video Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlselected.htm
IE: Stáhnout vše Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlall.htm
IE: WikiKomentáře Google ... - C: \ Program Files \ Google \ Google Toolbar \ Složka \ GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
Handler: tbr - (4D25FB7A-8902-4291-960E-9ADA051CFBBF) - c: \ progra ~ 1 \ Crawler \ Toolbar \ ctbr.dll
.

************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit / stealth malware detektoru GMER, http://www.gmer.net
Rootkit scan 2010-01-14 15:34
Okna 5.1.2600 Service Pack 3. NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po Spuštění' ...

skenování skrytých souborů ...

sken Byl úspěšně dokončen
skryté soubory: 0

************************************************** ************************

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"
.
--------------------- Zamknuté Klíče v registru ---------------------

[HKEY_USERS \ S-1-5-21-3762901291-1285979262-2613963444-1005 \ Software \ Microsoft \ SystemCertificates \ AddressBook *]
Povolené @: (Číst) (RestrictedCode)
Povolené @: (Číst) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - -> 'Explorer.exe' (444)
c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ Highlight.dll
c: \ Program Files \ BillP Studios \ WinPatrol \ PATROLPRO.DLL
c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpHookSE4.dll
c: \ Program Files \ Common Files \ Ahead \ Lib \ NeroSearchBar.dll
c: \ Program Files \ Common Files \ Ahead \ Lib \ MFC71U.DLL
c: \ Program Files \ Common Files \ Ahead \ Lib \ BCGCBPRO860un71.dll
c: \ windows \ system32 \ WPDShServiceObj.dll
c: \ Program Files \ Microsoft Private Folder 1.0 \ ShellExt.dll
c: \ windows \ system32 \ PFLib.dll
c: \ windows \ system32 \ PortableDeviceTypes.dll
c: \ windows \ system32 \ PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ----------------------- --
.
c: \ Program Files \ Alwil Software \ Avast4 \ aswUpdSv.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
c: \ windows \ eHome \ ehRecvr.exe
c: \ windows \ eHome \ ehSched.exe
c: \ windows \ system32 \ GEARSec.exe
c: \ windows \ system32 \ nvsvc32.exe
c: \ Program Files \ Microsoft Private Folder 1.0 \ PrfldSvc.exe
c: \ Program Files \ Spyware Terminator \ sp_rsser.exe
c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFCl.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
c: \ windows \ system32 \ wbem \ unsecapp.exe
c: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
c: \ windows \ system32 \ Dllhost.exe
c: \ windows \ eHome \ ehmsas.exe
c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ MagicTune.exe
c: \ Program Files \ Lavasoft \ Ad-Aware \ AAWTray.exe
.
************************************************** ************************
.
Celkový čas: 2010-01-14 15:45:57 - počítač restartován Byl
ComboFix-quarantined-files.txt 2010-01-14 14:45
ComboFix2.txt 2010-01-13 20:30

Před spuštěním: 113 550 098 432 bytů zdarma
Po Spuštění: Volných bajtů: 113 499 578 368

- - End of file - - 4B88D88B10762B848837B8AC650B99A5

Zkuste to ještě jednou tímto skriptem:

Folder::
c: \ Program Files \ AskBarDis

Registry::
[-HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (201f27d4-3704-41d6-89c1-aa35e39143ed)]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
"(3041d03e-fd4b-44e0-b742-2d9b88305f98)" =-
[-HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CURRENT_USER \ Software \ Microsoft \ Internet Explorer \ Toolbar \ prvek WebBrowser]
"(3041D03E-FD4B-44E0-B742-2D9B88305F98)" =-
[-HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]

prosím o kontrolu.ComboFix 10-01-14.01 - Ivan - 14.01.2010 19:38:26.3.2 Melkes - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1033.18.1023.266 [GMT 1:00]
Spuštěný z: c: \ Documents and Settings \ Ivan - Melkes \ Desktop \ ComboFix.exe
Použité ovládací přepínače:: C: \ Documents and Settings \ Ivan - Melkes \ Desktop \ CFScript.txt .. txt
AV: avast! antivirus 4.8.1368 [VPS 100114-1] * On-Access scanning postižených * (Aktualizováno) (7591DB91-41F0-48A3-B128-1A293FD8233D)
FW: Sunbelt Personal Firewall povolena * * (82B1150E-9B37-49FC-83EB-D52197D900D0)
.

((((((((((((((((((((((((( Soubory Vytvořené od 2009-12-14 do 2010-01-14 ))))))))))) ))))))))))))))))))))
.

2010-01-12 17:08. 2010-01-12 17:08 -------- d ----- w-C: \ rsit
2010-01-12 15:38. 2010-01-12 15:38 -------- d - h - w-c: \ windows \ system32 \ GroupPolicy
2010-01-10 15:41. 2010-01-10 15:41 -------- d ----- w-c: \ windows \ system32 \ wbem \ Repository
2010-01-09 20:44. 2010-01-10 15:40 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ UserData
2010-01-08 13:10. 2009-12-11 12:44 2969208-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SPYWAREfighter.exe
2010-01-08 13:09. 2010-01-14 14:33 -------- d ----- w-c: \ Program Files \ Common Files \ Common Toolkit Suite
2010-01-08 13:05. 2009-12-11 12:44 774792-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 53462D78 \ 3C94288E \ swpro.dll
2010-01-08 13:05. 2009-12-11 12:44 2330248-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 6904C2BB \ 3C94288E \ sfhtml.dll
2010-01-08 13:05. 2009-12-11 12:44 574088-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 2C0CE245 \ 3C94288E \ swproTray.exe
2010-01-08 13:05. 2009-12-11 12:34 659456-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 9D95263A \ B0EB1015 \ QtNetwork4.dll
2010-01-08 13:05. 2009-12-11 12:34 344064-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 9D95263A \ B0EB1015 \ QtXml4.dll
2010-01-08 13:05. 2009-12-11 12:34 2121728-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ 9D95263A \ B0EB1015 \ QtCore4.dll
2010-01-08 13:05. 2009-07-02 01:51 101888-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ mIDEFunc.dll \ mEXEFunc.dll
2010-01-08 13:05. 2009-07-02 01:51 508416-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ SWPRO \ mDown.dll \ mDownExec.dll
2010-01-08 13:05. 2009-12-11 12:44 463496-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 25C348B6 \ 7973EFCA \ FighterSuiteClient.dll
2010-01-08 13:05. 2009-12-11 12:44 676488-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 1EE46BE9 \ 7973EFCA \ FighterSuiteService.exe
2010-01-08 13:05. 2009-12-11 12:44 225928-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Toolkit \ 6C72E19E \ 7973EFCA \ FighterLauncher.exe
2010-01-05 21:47. 2010-01-05 21:47 604488 ---- aw-c: \ windows \ system32 \ TUProgSt.exe
2009-12-27 12:03. 2009-12-27 12:04 -------- d ----- w-c: \ Program Files \ Seznam.cz
2009-12-27 00:22. 2009-11-04 15:07 15880 ---- aw-c: \ windows \ system32 \ lsdelete.exe
2009-12-22 21:16. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Common Toolkit Suite
2009-12-22 19:49. 2010-01-09 20:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz
2009-12-18 10:37. 2009-12-18 11:21 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ CLP
2009-12-18 10:35. 2010-01-08 13:10 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Common Toolkit Suite
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Fighters
2009-12-18 10:27. 2009-12-18 10:27 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ PackageAware
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ WinPatrol
2009-12-16 22:38. 2009-12-16 22:38 -------- d ----- w-c: \ Program Files \ BillP Studios
2009-12-16 13:51. 2009-12-16 13:51 -------- d ----- w-c: \ Program Files \ Common Files \ Application
2009-12-16 13:50. 2010-01-14 14:36 -------- d ----- w-c: \ Program Files \ SPAMfighter

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis )))))))) ))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 18:34. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spyware Terminator
2010-01-14 18:33. 2009-07-23 11:56 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Spyware Terminator
2010-01-14 15:45. 2009-03-21 14:59 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Spybot - Search & Destroy
2010-01-14 14:33. 2006-06-19 08:01 16 ---- aw-c: \ windows \ system32 \ magicpvt.dat
2010-01-14 14:32. 2006-06-19 08:02 32 ---- aw-c: \ windows \ system32 \ driver.dat
2010-01-13 19:39. 2009-07-23 11:56 -------- d ----- w-c: \ Program Files \ Spyware Terminator
2010-01-10 21:27. 2006-11-26 15:36 -------- d ----- w-c: \ Documents and Settings \ Ivan Melkes 2 \ Data aplikací \ Zoner
2010-01-10 15:15. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Software Informer
2010-01-09 20:56. 2009-06-27 15:01 -------- d ----- w-c: \ Program Files \ Wise Registry Cleaner
2010-01-08 17:06. 2009-06-23 12:42 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ Free Download Manager
2010-01-08 13:10. 2010-01-08 13:03 -------- dc-h - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1)
2010-01-07 15:07. 2009-11-04 15:07 6296864 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Resources.dll
2010-01-07 00:15. 2006-11-03 17:17 38192 ---- aw-c: \ Documents and Settings \ Ivan Melkes 2 \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2010-01-05 22:09. 2009-08-07 10:30 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2009
2010-01-05 21:46. 2009-08-07 10:29 -------- d-sh - w-c: \ Documents and Settings \ All Users \ Data aplikací \ (55A29068-F2CE-456C-9148-C869879E2357)
2010-01-05 20:35. 2006-05-30 08:28 -------- d - h - w-c: \ Program Files \ InstallShield Installation informace
2010-01-05 12:18. 2009-05-13 21:50 -------- d ----- w-c: \ Program Files \ TuneUp Utilities 2007
2009-12-26 15:08. 2009-10-17 14:07 862040 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ threatwork.exe
2009-12-26 15:08. 2009-10-17 14:07 206944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavamessage.dll
2009-12-26 15:08. 2009-10-17 14:07 390288 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lavalicense.dll
2009-12-26 15:08. 2009-10-17 14:07 537576 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ aawapi.dll
2009-12-26 15:08. 2009-10-17 14:07 370744 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ UpdateManager.dll
2009-12-26 15:08. 2009-10-17 14:07 194104 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Savapibridge.dll
2009-12-26 15:07. 2009-10-17 14:07 933120 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ CEAPI.dll
2009-12-26 15:07. 2009-10-17 14:07 816272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareCommand.exe
2009-12-26 15:07. 2009-10-17 14:07 822904 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-AwareAdmin.exe
2009-12-26 15:07. 2009-10-17 14:07 1643272 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Ad-Aware.exe
2009-12-26 15:07. 2009-10-17 14:07 788880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWTray.exe
2009-12-26 15:07. 2009-10-17 14:07 1181328 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AAWService.exe
2009-12-22 21:02. 2009-10-14 13:42 -------- d ----- w-c: \ Program Files \ Ashampoo
2009-12-21 00:25. 2009-12-02 21:24 -------- d ----- w-c: \ Program Files \ FCleaner
2009-12-18 17:31. 2009-10-14 13:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ stránku
2009-12-18 16:00. 2006-11-05 11:40 -------- d ----- w-c: \ Program Files \ Santa Hanta
2009-12-16 14:09. 2009-06-04 13:12 -------- d ----- w-c: \ Program Files \ Fighters
2009-12-16 13:37. 2006-06-02 13:06 38192 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ GDIPFONTCACHEV1.DAT
2009-12-15 22:37. 2009-06-26 10:42 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Microsoft Help
2009-12-15 22:36. 2009-06-26 10:46 -------- d ----- w-c: \ Program Files \ Microsoft Works
2009-12-14 23:21. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ IObitCom
2009-12-11 12:34. 2010-01-08 13:03 13720-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ 1AAF4B16 \ 784E0F06 \ avfsfilter.sys
2009-12-11 12:34. 2010-01-08 13:03 10264-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ A9BBB5E0 \ 22F9FC7F \ avfsfilter.sys
2009-12-11 12:34. 2009-12-11 12:34 10264 ---- aw-c: \ windows \ system32 \ drivers \ avfsfilter.sys
2009-12-11 12:34. 2010-01-08 13:03 661888-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ 1282CB8D \ B0EB1015 \ AVScanningService.exe
2009-12-11 12:34. 2010-01-08 13:03 659456-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ B22E4B26 \ B0EB1015 \ QtNetwork4.dll
2009-12-11 12:34. 2010-01-08 13:03 373488-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ B22E4B26 \ B0EB1015 \ VBAdapter.dll
2009-12-11 12:34. 2010-01-08 13:03 344064-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ B22E4B26 \ B0EB1015 \ QtXml4.dll
2009-12-11 12:34. 2010-01-08 13:03 241648-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ D075E43B \ B0EB1015 \ AVEngine.dll
2009-12-11 12:34. 2010-01-08 13:03 2121728-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ B22E4B26 \ B0EB1015 \ QtCore4.dll
2009-12-11 12:34. 2010-01-08 13:03 1205720-c - aw-c: \ Documents and Settings \ All Users \ Data aplikací \ (7516B6E8-5C01-4895-B079-DFC32A4ADEE1) \ Common \ B22E4B26 \ B0EB1015 \ vbengnt.dll
2009-12-09 14:21. 2009-12-02 21:39 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ Registry Převodové
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ FTWeak
2009-12-02 21:24. 2009-12-02 21:24 -------- d ----- w-c: \ Documents and Settings \ All Users \ Data aplikací \ FTWeak
2009-11-24 23:54. 2006-06-02 16:12 1280480 ---- aw-c: \ windows \ system32 \ aswBoot.exe
2009-11-24 23:51. 2009-05-23 11:51 93424 ---- aw-c: \ windows \ system32 \ drivers \ aswmon.sys
2009-11-24 23:49. 2009-05-23 11:51 48560 ---- aw-c: \ windows \ system32 \ drivers \ aswTdi.sys
2009-11-24 23:48. 2006-06-02 16:12 23120 ---- aw-c: \ windows \ system32 \ drivers \ aswRdr.sys
2009-11-24 23:47. 2009-05-23 11:51 27408 ---- aw-c: \ windows \ system32 \ drivers \ aavmker4.sys
2009-11-24 23:47. 2006-06-02 16:12 97480 ---- aw-c: \ windows \ system32 \ AVASTSS.scr
2009-11-21 15:51. 1980-01-01 00:00 471552 ---- aw-c: \ windows \ AppPatch \ aclayers.dll
2009-11-21 15:07. 2009-10-17 14:07 163728 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ ShellExt.dll
2009-11-21 15:07. 2009-10-17 14:07 327000 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ RPAPI.dll
2009-11-21 15:07. 2009-10-17 14:07 87496 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ PrivacyClean.dll
2009-11-21 15:07. 2009-10-17 14:07 641632 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ AutoLaunch.exe
2009-11-16 14:13. 2009-11-16 14:13 -------- d ----- w-c: \ Program Files \ Conduit
2009-11-16 14:13. 2009-01-29 13:26 -------- d ----- w-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit
2009-11-04 15:49. 2009-11-16 14:13 635664 ---- aw-c: \ Documents and Settings \ Ivan - Melkes \ Data aplikací \ IObit \ Common \ TB_Helper.exe
2009-11-04 15:07. 2009-11-04 15:08 93360 ---- aw-c: \ windows \ system32 \ drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 93360 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Drivers \ SBREDrv.sys
2009-11-04 15:07. 2009-11-04 15:07 554280 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ sbap.dll
2009-11-04 15:07. 2009-11-04 15:07 15880 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ lsdelete.exe
2009-11-04 15:07. 2009-11-04 15:07 283944 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ Vipre.dll
2009-11-04 15:07. 2009-11-04 15:07 212480 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ VipreBridge.dll
2009-11-04 15:07. 2009-11-04 15:07 1223976 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBTE.dll
2009-11-04 15:07. 2009-11-04 15:07 242984 ---- aw-c: \ Documents and Settings \ All Users \ Data aplikací \ Lavasoft \ Ad-Aware \ Update \ SBRE.dll
2009-11-02 19:42. 2009-10-07 14:14 195456 ------ w-c: \ windows \ system32 \ MpSigStub.exe
2009-10-29 05:38. 1980-01-01 00:00 667136 ------ w-c: \ windows \ system32 \ wininet.dll
2009-10-21 05:38. 1980-01-01 00:00 75776 ---- aw-c: \ windows \ system32 \ strmfilt.dll
2009-10-21 05:38. 1980-01-01 00:00 25088 ---- aw-c: \ windows \ system32 \ httpapi.dll
2009-10-20 16:20. 2004-08-03 23:00 265728 ---- aw-c: \ windows \ system32 \ drivers \ HTTP.SYS
.

(((((((((((((((((((((((((((((((((( Spouštěcí tělo v registru )))))))))))) )))))))))))))))))))))))))))))))))
.
.
* Poznámka * prázdné záznamy legitimní Výchozí údaje nejsou Zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (201f27d4-3704-41d6-89c1-aa35e39143ed)]
2008-12-09 16:40 333192 ---- aw-c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll

[HKEY_LOCAL_MACHINE \ ~ \ Browser Helper Objects \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]
2009-10-01 16:29 2166296 ---- aw-c: \ Program Files \ IObitCom \ tbIObi.dll

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
"(3041d03e-fd4b-44e0-b742-2d9b88305f98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]
"(31c7d459-9cc3-44f2-9dca-fc11795309b4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CURRENT_USER \ Software \ Microsoft \ Internet Explorer \ Toolbar \ prvek WebBrowser]
"(31C7D459-9CC3-44F2-9DCA-FC11795309B4)" = "c: \ Program Files \ IObitCom \ tbIObi.dll" [2009-10-01 2166296]
"(3041D03E-FD4B-44E0-B742-2D9B88305F98)" = "c: \ Program Files \ AskBarDis \ bar \ bin \ askBar.dll" [2008-12-09 333192]

[HKEY_CLASSES_ROOT \ clsid \ (31c7d459-9cc3-44f2-9dca-fc11795309b4)]

[HKEY_CLASSES_ROOT \ clsid \ (3041d03e-fd4b-44e0-b742-2d9b88305f98)]
[HKEY_CLASSES_ROOT \ TypeLib \ (4b1c1e16-6b34-430E-b074-5928eca4c150)]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"ccleaner" = "c: \ Program Files \ CCleaner \ CCleaner.exe" [2009-12-21 1803064]
"Google Update" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe" [2009-04-22 133104]
"RocketDock" = "c: \ Program Files \ RocketDock \ RocketDock.exe" [2007-09-02 495616]
"BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)" = "c: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe" [2007-06-27 152872]
"MSMSGS" = "c: \ Program Files \ Spybot - Search & Destroy \ SUPERAntiSpyware.exe" [2009-03-05 2260480]
"Free Download Manager" = "c: \ Program Files \ Free Download Manager \ fdm.exe" [2009-01-31 3399727]
"Software Informer" = "c: \ Program Files \ Software Informer \ softinfo.exe" [2009-10-07 1949765]
"Advanced SystemCare 3" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ AWC.exe" [2009-11-20 2335880]
"SpywareTerminatorUpdate" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorUpdate.exe" [2009-07-23 3055616]
"swg" = "c: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL" [2008-09-22 68856]
"TuneUp MemOptimizer" = "c: \ Program Files \ TuneUp Utilities 2007 \ MemOptimizer.exe" [2007-08-18 312576]
"FTweakFCleaner" = "c: \ Program Files \ FCleaner \ FCleaner.exe" [2009-11-27 1723904]
"SmartRAM" = "c: \ Program Files \ IObit \ nastavení a různých funkcích 3 \ Sup_SmartRAM.exe" [2009-02-19 202064]
"Seznam Postak" = "c: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Seznam.cz \ postak.exe" [2009-11-02 448664]

[HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ RunOnce]
"SpywareTerminatorScan" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminator.exe" [2009-10-14 15319920]

[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run]
"NvMediaCenter" = "c: \ windows \ system32 \ NvMcTray.dll" [2005-07-20 7110656]
"BluetoothAuthenticationAgent" = "" C "[2005-07-20 1519616]
"RTHDCPL" = "c: \ windows \ system32 \ ctfmon.exe" [2005-07-20 86016]
"ehTray" = "c: \ windows \ ehome \ ehtray.exe" [2005-08-05 64512]
"High Definition Audio Nemovitosti Page Zkrátit" = "HDAShCut.exe" [2005-01-07 61952]
"NeroFilterCheck" = "c: \ windows \ system32 \ ctfmon.exe" [2001-07-09 155648]
"MagicRotation" = "c: \ Program Files \ MagicRotation \ MagicPvt.exe" [2005-06-03 1089536]
"SoundMAX" = "c: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe" [2004-11-02 32768]
"Easy-PrintToolBox" = "c: \ Program Files \ Canon \ Easy-PrintToolBox \ BJPSMAIN.EXE" [2004-01-14 409600]
"SSBkgdUpdate" = "c: \ Program Files \ Common Files \ ScanSoft Shared \ SSBkgdUpdate \ SSBkgdupdate.exe" [2003-09-29 155648]
"DAEMON Tools" = "c: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBKeyScan.exe" [2008-02-21 1647912]
"avast!" = "c: \ progra ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe" [2009-11-24 81000]
"Windows Defender" = "c: \ Program Files \ Windows Defender \ MSASCui.exe" [2006-11-03 866584]
"Adobe ARM" = "c: \ Program Files \ Common Files \ Adobe \ ARM \ 1.0 \ AdobeARM.exe" [2009-09-04 935288]
"OpwareSE4" = "c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpwareSE4.exe" [2006-03-21 69632]
"SpywareTerminator" = "c: \ Program Files \ Spyware Terminator \ SpywareTerminatorShield.exe" [2009-10-16 2172416]
"SPAMfighter Agent" = "c: \ Program Files \ SPAMfighter \ SFAgent.exe" [2009-08-27 336520]
"WinPatrol" = "c: \ Program Files \ BillP Studios \ WinPatrol \ winpatrol.exe" [2009-10-10 320832]
"SWPROguard" = "c: \ Program Files \ Fighters \ SPYWAREfighter \ SWPROTray.exe" [2009-12-11 574088]

[HKEY_USERS \. DEFAULT \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"CTFMON.EXE" = "c: \ windows \ system32 \ CTFMON.EXE" [2008-04-14 15360]

c: \ Documents and Settings \ Ivan - Melkes \ Nabídka Start \ Programy \ Po spuštění \
Věýezy obrazovky spuçtŘn aplikace OneNote 2007.lnk - C: \ Program Files \ Microsoft Office \ Office12 \ Onenotem.exe [2008-10-25 98696]

c: \ Documents and Settings \ All Users \ Nabídka Start \ Programy \ Po spuštění \
CodeStuff Starter.lnk - c: \ Program Files \ CodeStuff \ Starter \ Starter.exe [2005-7-3 380928]
Barva Calibration.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ GammaTray.exe [2006-6-19 36864]
MagicTune3.6.lnk - c: \ Program Files \ SEC \ MagicTune3.6_Client_pivot \ MagicTuneTray.exe [2006-6-19 45056]
NaturalColorLoad.lnk - c: \ Program Files \ SEC \ Natural Color \ NaturalColorLoad.exe [2006-6-2 155715]
Samsung Multimedia Keyboard.lnk - c: \ Program Files \ Samsung \ Samsung Multimedia Keyboard \ gpkbd.exe [2006-6-20 585728]

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"SynchronousMachineGroupPolicy" = 1 (0x1)
"SynchronousUserGroupPolicy" = 1 (0x1)
"PromptOnSecureDesktop" = -1 (0xffffffff)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ system]
"DisableChangePassword" = -1 (0xffffffff)
"DisableLockWorkstation" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoStrCmpLogical" = 0 (0x0)
"NoPopUpsOnBoot" = 1 (0x1)
"DisableCurrentUserRun" = -1 (0xffffffff)
"DisableCurrentUserRunOnce" = -1 (0xffffffff)
"NoResolveTrack" = 1 (0x1)
"NoFileAssociate" = 0 (0x0)

[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoSMBalloonTip" = 1 (0x1)
"MaxRecentDocs" = -1 (0xffffffff)

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ Lavasoft Ad-Aware Service]
@ = "Service"

[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ SafeBoot \ Minimální \ WinDefend]
@ = "Service"

[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ run-]
"Adobe Reader Speed Launcher" = "c: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
"Sony Ericsson PC Suite" = "c: \ Program Files \ Sony Ericsson \ Mobile2 \ Application Launcher \ Application Launcher.exe" / startoptions

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile]
"EnableFirewall" = 0 (0x0)

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ AuthorizedApplications \ List]
"% windir% \ \ system32 \ \ Sessmgr.exe" =
"c: \ \ Program Files \ \ Microsoft Office \ \ Office12 \ \ Onenote.exe" =
"c: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe" = C: \ Program Files \ Microsoft ActiveSync \ rapimgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync RAPI Manager
"c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •" = c: \ Program Files \ Microsoft ActiveSync \ Wcescomm.exe •: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Connection Manager
"c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe" = c: \ Program Files \ Microsoft ActiveSync \ WCESMgr.exe: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Aplikace

[HKLM \ ~ \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ GloballyOpenPorts \ List]
"26675: TCP" = 26675: TCP: 169.254.2.0/255.255.255.0: Enabled: ActiveSync Service

R0 Lbd, Lbd c: \ windows \ system32 \ drivers \ Lbd.sys [14.10.2009 15:06 64288]
R1 aswSP; avast! Self Protection; c: \ windows \ system32 \ drivers \ aswSP.sys [23.5.2009 12:51 114768]
R1 HCW88AUD; Hauppauge WinTV 88x Audio Capture; c: \ windows \ system32 \ drivers \ hcw88aud.sys [30.1.2006 17:05 11970]
R1 magicpvt, magicpvt c: \ windows \ system32 \ drivers \ magicpvt.sys [19.6.2006 9:02 9728]
R1 SbFw, SbFw c: \ windows \ system32 \ drivers \ SbFw.sys [26.5.2009 11:04 270888]
R1 sbhips; Sunbelt HIPS Driver; c: \ windows \ system32 \ drivers \ sbhips.sys [21.6.2008 3:54 66600]
R1 sp_rsdrv2; Spyware Terminator Driver 2; c: \ windows \ system32 \ drivers \ sp_rsdrv2.sys [23.7.2009 12:56 142592]
R2 aswFsBlk; aswFsBlk; c: \ windows \ system32 \ drivers \ aswFsBlk.sys [23.5.2009 12:51 20560]
R2 Společný Toolkit Service; obecný Toolkit Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ FighterSuiteService.exe [11.12.2009 13:44 676488]
R2 Lavasoft Ad-Aware Service, Lavasoft Ad-Aware Service C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe [24.9.2009 12:17 1181328]
R2 Prvflder, Prvflder c: \ windows \ system32 \ drivers \ prvflder.sys [21.4.2006 7:22 70912]
R2 SbPF.Launcher, SbPF.Launcher c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFLnch.exe [31.10.2008 6:24 95528]
R2 SPAMfighter Update Service; SPAMfighter Update Service; c: \ Program Files \ SPAMfighter \ sfus.exe [27.8.2009 9:24 189064]
R2 SPF4; Sunbelt Personal Firewall 4; c: \ Program Files \ Sunbelt Software \ Personal Firewall \ SbPFSvc.exe [31.10.2008 6:24 1365288]
R2 WinDefend, Windows Defender, c: \ Program Files \ Windows Defender \ MsMpEng.exe [3.11.2006 18:19 13592]
R3 HCW88BDA; Hauppauge WinTV 88x DVB Tuner / IQ, c: \ windows \ system32 \ drivers \ hcw88bda.sys [30.1.2006 17:05 138816]
R3 HCW88TSE; Hauppauge WinTV 88x MPEG / TS Capture; c: \ windows \ system32 \ drivers \ hcw88tse.sys [30.1.2006 17:06 299715]
R3 HCW88TUNE; Hauppauge WinTV 88x Tuner; c: \ windows \ system32 \ drivers \ hcw88tun.sys [30.1.2006 18:17 142913]
R3 hcw88vid; Hauppauge WinTV 88x Video; c: \ windows \ system32 \ drivers \ hcw88vid.sys [30.1.2006 17:04 494144]
R3 HCW88XBAR; Hauppauge WinTV 88x Crossbar c: \ windows \ system32 \ drivers \ hcw88bar.sys [30.1.2006 17:04 23104]
R3 SBFWIMCL; Sunbelt Software Firewall NDIS IM Filtr Miniport; c: \ windows \ system32 \ drivers \ SbFwIm.sys [26.5.2009 11:04 65576]
S2 AV Motor Scanning Service; AV Motor Scanning Service; c: \ Program Files \ Common Files \ Common Toolkit Suite \ AVEngine \ AVScanningService.exe [11.12.2009 13:34 661888]
S2 gupdate1c93ad255a5eb50; Google Update Service (gupdate1c93ad255a5eb50), c: \ Program Files \ Google \ Update \ GoogleUpdate.exe [30.10.2008 21:58 133104]
S3 AVFSFilter, AVFSFilter c: \ windows \ system32 \ drivers \ avfsfilter.sys [11.12.2009 13:34 10.264]
S3 ggflt; SEMC USB Flash Driver Filter; c: \ windows \ system32 \ drivers \ ggflt.sys [17.11.2008 18:01 13352]
.
Obsah adresáře 'Naplánované úlohy'

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (den 1). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (den 2). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (Daily 3). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (Daily 4). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ Ad-Aware Update (týdenní). Práci
- C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-AwareAdmin.exe [2009-10-01 15:07]

2010-01-14 c: \ windows \ Tasks \ GoogleUpdateTaskMachineCore.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-14 c: \ windows \ Tasks \ GoogleUpdateTaskMachineUA.job
- C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2008-10-30 21:10]

2010-01-13 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-14 C: \ WINDOWS \ Tasks \ GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
- C: \ Documents and Settings \ Ivan - Melkes \ Local Settings \ Data aplikací \ Google \ Update \ GoogleUpdate.exe [2009-04-22 20:34]

2010-01-14 c: \ windows \ Tasks \ MP Scheduled Scan.job
- C: \ Program Files \ Windows Defender \ MpCmdRun.exe [2006-11-03 17:20]

2010-01-14 c: \ windows \ Tasks \ SLOW-PCfighter.job
- C: \ Program Files \ Fighters \ SLOW-PCfighter \ SLOW-PCfighter.exe [2009-11-17 13:07]

2010-01-08 c: \ windows \ Tasks \ Úklid 1 kliknutím.job
- C: \ Program Files \ TuneUp Utilities 2007 \ SystemOptimizer.exe [2007-05-20 17:17]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp: / / www.seznam.cz
uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q searchTerms = () & sourceid = ie7 & rls = com.microsoft: en-US & ie = utf8 & oe = utf8
uSearch Page = hxxp: / / www.google.com
uSearch Bar = hxxp: / / www.google.com / ie
uInternet Settings, ProxyOverride = 127.0.0.1
uSearchAssistant = hxxp: / / www.google.com / ie
uSearchURL, (Default) = hxxp: / / www.google.com/search?q =% s
IE: + Offline & Explorer: Download link - file: / / c: \ Program Files \ Offline Explorer \ Add_UrlO.htm
IE: + Offline E & Xplorer: Stáhněte si aktuální stránku - file: / / c: \ Program Files \ Offline Explorer \ Add_AllO.htm
IE: Crawler Search - tbr: iemenu
IE: E & xportovat do aplikace Microsoft Excel - c: \ progra ~ 1 \ Microsoft Office \ Office12 \ EXCEL.EXE/3000
IE: Stáhnout Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dllink.htm
IE: Stáhnout video Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlselected.htm
IE: Stáhnout vše Free Download Managerem - file: / / c: \ Program Files \ Free Download Manager \ dlall.htm
IE: WikiKomentáře Google ... - C: \ Program Files \ Google \ Google Toolbar \ Složka \ GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
Handler: tbr - (4D25FB7A-8902-4291-960E-9ADA051CFBBF) - c: \ progra ~ 1 \ Crawler \ Toolbar \ ctbr.dll
.

************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit / stealth malware detektoru GMER, http://www.gmer.net
Rootkit scan 2010-01-14 19:48
Okna 5.1.2600 Service Pack 3. NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po Spuštění' ...

skenování skrytých souborů ...

sken Byl úspěšně dokončen
skryté soubory: 0

************************************************** ************************

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"

[HKEY_LOCAL_MACHINE \ System \ ControlSet001 \ Services \ AV Motor Scanning Service]
"ImagePath" = "C: / Program Files / Common Files / Společná Toolkit Suite / AVEngine / AVScanningService.exe"
.
--------------------- Zamknuté Klíče v registru ---------------------

[HKEY_USERS \ S-1-5-21-3762901291-1285979262-2613963444-1005 \ Software \ Microsoft \ SystemCertificates \ AddressBook *]
Povolené @: (Číst) (RestrictedCode)
Povolené @: (Číst) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - -> 'Explorer.exe' (3468)
c: \ Program Files \ BillP Studios \ WinPatrol \ PATROLPRO.DLL
c: \ Program Files \ ScanSoft \ OmniPageSE4.0 \ OpHookSE4.dll
c: \ Program Files \ Common Files \ Ahead \ Lib \ NeroSearchBar.dll
c: \ Program Files \ Common Files \ Ahead \ Lib \ MFC71U.DLL
c: \ Program Files \ Common Files \ Ahead \ Lib \ BCGCBPRO860un71.dll
c: \ windows \ system32 \ WPDShServiceObj.dll
c: \ windows \ system32 \ PortableDeviceTypes.dll
c: \ windows \ system32 \ PortableDeviceApi.dll
.
Celkový čas: 2010-01-14 19:53:18
ComboFix-quarantined-files.txt 2010-01-14 18:53
ComboFix2.txt 2010-01-14 14:46
ComboFix3.txt 2010-01-13 20:30

Před spuštěním: 113 439 608 832 bajtů zdarma
Po Spuštění: Volných bajtů: 113 438 904 320

- - End of file - - 4A01685628560497B8A5D85CFC7CCFF5

Nějak to nejde. Zkusíme to ručně. nejprve smažte podle návodu: http://www.viry.cz/forum/viewtopic.php?f=15&t=2791 ve skriptu vypsané registry klíče a nakonec celý adresář AskBarDis .

Nevím přesně co mám zmazat. Po Otevření registru jsou v okně Tyto klíče registru
HKEY TŘÍDY ROOT
HKEY BĚŽNÉ UŽIVATELE
HKEY LOCAL MACHINE
HKEY UŽIVATELÉ
HKEY AKTUÁLNÍ CONFIC
/ dle pokynů mám zmazat ve skryptu vepsané klíče registru / Co mám zmazat, Nerad bych Udělal nějakou nevratnou chybu.
AshBarDis Našel jsem v HKEY LOCAL MACHINE, software, AskBarDis - Bar, Pop.
Zatím jsem nic nemazal, až po poradě s Vámi
dík za radu

Klikněte v regeditu na Úpravy>najít, do okénka zadejte AskBarDis. Prohledejte celé registry a všechny klíče, či hodnoty, které obsahují tento řetězec, smažte.

Dobrý večer, vymazal jsem z registrů AskBarDis posílám lod, DíkLogfile of random's system information tool 1.06 (written by random/random)
Run by Ivan - Melkes at 2010-01-15 21:30:02
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 108 GB (46%) free of 233 GB
Total RAM: 1023 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:27, on 15.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\MagicRotation\MagicPvt.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\SYSTEM32\GEARSec.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe
C:\Program Files\CodeStuff\Starter\Starter.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTune.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Adobe\Updater6\Adobe_Updater.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
C:\Program Files\TuneUp Utilities 2007\RegistryCleaner.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Ivan - Melkes\My Documents\RSIT.exe
C:\Documents and Settings\Ivan - Melkes\My Documents\Ivan - Melkes.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MagicRotation] C:\Program Files\MagicRotation\MagicPvt.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [SWPROguard] C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [Software Informer] C:\Program Files\Software Informer\softinfo.exe -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [FTweakFCleaner] C:\Program Files\FCleaner\FCleaner.exe
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [SpywareTerminatorScan] "C:\Program Files\Spyware Terminator\SpywareTerminator.exe" /SCAN
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: CodeStuff Starter.lnk = C:\Program Files\CodeStuff\Starter\Starter.exe
O4 - Global Startup: Color Calibration.lnk = ?
O4 - Global Startup: MagicTune3.6.lnk = ?
O4 - Global Startup: NaturalColorLoad.lnk = ?
O4 - Global Startup: Samsung Multimedia Keyboard.lnk = ?
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: + Offline &Explorer: Download the link - file://C:\Program Files\Offline Explorer\Add_UrlO.htm
O8 - Extra context menu item: + Offline E&xplorer: Download the current page - file://C:\Program Files\Offline Explorer\Add_AllO.htm
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.autocont.cz
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AV Engine Scanning Service - Unknown owner - C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Common Toolkit Service - SPAMfighter - C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSec.exe
O23 - Service: Google Update Service (gupdate1c93ad255a5eb50) (gupdate1c93ad255a5eb50) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - Unknown owner - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe (file missing)

--
End of file - 15108 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\SLOW-PCfighter.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-13 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll [2009-11-02 1085080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B71B15CF-3093-459C-B764-AEB2486F2273} - &S-Rank - C:\Program Files\Seznam\Postak\SRank.dll [2005-05-17 266240]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} - IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-07-20 7110656]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-07-20 86016]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"MagicRotation"=C:\Program Files\MagicRotation\MagicPvt.exe [2005-06-03 1089536]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-29 155648]
"NBKeyScan"=C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe [2008-02-21 1647912]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-10-16 2172416]
"SPAMfighter Agent"=C:\Program Files\SPAMfighter\SFAgent.exe [2009-08-27 336520]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-10-10 320832]
"SWPROguard"=C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe [2009-12-11 574088]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-12-21 1803064]
"Google Update"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-04-22 133104]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe [2009-01-31 3399727]
"Software Informer"=C:\Program Files\Software Informer\softinfo.exe [2009-10-07 1949765]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-11-20 2335880]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2009-07-23 3055616]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-22 68856]
"TuneUp MemOptimizer"=C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe [2007-08-18 312576]
"FTweakFCleaner"=C:\Program Files\FCleaner\FCleaner.exe [2009-11-27 1723904]
"SmartRAM"=C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe [2009-02-19 202064]
"Seznam Postak"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe [2009-11-02 448664]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpywareTerminatorScan"=C:\Program Files\Spyware Terminator\SpywareTerminator.exe [2009-10-14 15319920]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
CodeStuff Starter.lnk - C:\Program Files\CodeStuff\Starter\Starter.exe
Color Calibration.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
MagicTune3.6.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTuneTray.exe
NaturalColorLoad.lnk - C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
Samsung Multimedia Keyboard.lnk - C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe

C:\Documents and Settings\Ivan - Melkes\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-08-11 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableChangePassword"=4294967295
"DisableLockWorkstation"=4294967295

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
"SynchronousMachineGroupPolicy"=1
"SynchronousUserGroupPolicy"=1
"PromptOnSecureDesktop"=4294967295
"ShutdownWithoutLogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMBalloonTip"=1
"MaxRecentDocs"=4294967295
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoStrCmpLogical"=
"NoResolveSearch"=
"NoPopUpsOnBoot"=
"DisableCurrentUserRun"=
"DisableCurrentUserRunOnce"=
"NoResolveTrack"=
"NoFileAssociate"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======List of files/folders created in the last 1 months======

2010-01-14 19:54:21 ----SHD---- C:\RECYCLER
2010-01-14 19:53:22 ----A---- C:\ComboFix.txt
2010-01-13 21:05:05 ----A---- C:\Boot.bak
2010-01-13 21:04:58 ----RASHD---- C:\cmdcons
2010-01-13 21:02:04 ----A---- C:\WINDOWS\zip.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWSC.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWREG.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\sed.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\PEV.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\NIRCMD.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\MBR.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\grep.exe
2010-01-13 21:01:46 ----D---- C:\WINDOWS\ERDNT
2010-01-13 20:51:32 ----D---- C:\Qoobox
2010-01-12 18:08:38 ----D---- C:\rsit
2010-01-12 16:38:58 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-01-08 14:09:05 ----D---- C:\Program Files\Common Files\Common Toolkit Suite
2010-01-08 14:03:53 ----HDC---- C:\Documents and Settings\All Users\Application Data\{7516B6E8-5C01-4895-B079-DFC32A4ADEE1}
2010-01-05 22:47:49 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-12-27 13:03:07 ----D---- C:\Program Files\Seznam.cz
2009-12-27 01:22:40 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-12-22 22:16:35 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Common Toolkit Suite
2009-12-18 11:37:58 ----D---- C:\Documents and Settings\All Users\Application Data\clp
2009-12-18 11:35:08 ----D---- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
2009-12-18 11:27:39 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Fighters
2009-12-16 23:38:27 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\WinPatrol
2009-12-16 23:38:07 ----D---- C:\Program Files\BillP Studios
2009-12-16 14:51:09 ----D---- C:\Program Files\Common Files\Application
2009-12-16 14:50:24 ----D---- C:\Program Files\SPAMfighter

======List of files/folders modified in the last 1 months======

2010-01-15 21:30:11 ----D---- C:\WINDOWS\Temp
2010-01-15 16:53:07 ----D---- C:\WINDOWS
2010-01-15 16:38:47 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-01-15 16:24:54 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Spyware Terminator
2010-01-15 16:24:33 ----D---- C:\Program Files\Spyware Terminator
2010-01-15 16:21:45 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-01-15 16:18:49 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-15 16:15:22 ----D---- C:\WINDOWS\Debug
2010-01-15 16:08:24 ----SD---- C:\WINDOWS\Tasks
2010-01-15 11:40:53 ----D---- C:\WINDOWS\Registration
2010-01-15 11:40:01 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-15 06:33:30 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-01-14 19:48:27 ----A---- C:\WINDOWS\system.ini
2010-01-14 19:44:07 ----D---- C:\WINDOWS\system32\drivers
2010-01-14 19:44:07 ----D---- C:\WINDOWS\system32
2010-01-14 19:44:07 ----D---- C:\WINDOWS\AppPatch
2010-01-14 19:44:03 ----D---- C:\Program Files\Common Files
2010-01-14 15:31:48 ----D---- C:\WINDOWS\system32\config
2010-01-13 21:05:05 ----RASH---- C:\boot.ini
2010-01-13 21:01:52 ----D---- C:\WINDOWS\Prefetch
2010-01-13 18:57:13 ----HD---- C:\WINDOWS\inf
2010-01-13 18:57:07 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-13 18:56:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-12 16:50:59 ----D---- C:\WINDOWS\security
2010-01-10 20:57:14 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-10 16:41:14 ----D---- C:\WINDOWS\system32\wbem
2010-01-10 16:15:17 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Software Informer
2010-01-09 21:56:42 ----D---- C:\Program Files\Wise Registry Cleaner
2010-01-08 18:06:44 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Free Download Manager
2010-01-08 16:19:03 ----RD---- C:\Program Files
2010-01-08 14:10:20 ----SHD---- C:\WINDOWS\Installer
2010-01-08 14:10:00 ----D---- C:\Config.Msi
2010-01-07 15:12:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-05 23:09:52 ----D---- C:\Program Files\TuneUp Utilities 2009
2010-01-05 22:46:39 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2010-01-05 21:46:18 ----A---- C:\WINDOWS\system32\everest_cpl.ini
2010-01-05 21:35:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-05 13:18:31 ----D---- C:\Program Files\TuneUp Utilities 2007
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2009-12-22 22:02:39 ----D---- C:\Program Files\Ashampoo
2009-12-21 01:25:00 ----D---- C:\Program Files\FCleaner
2009-12-18 18:31:53 ----D---- C:\Documents and Settings\All Users\Application Data\page
2009-12-18 17:00:13 ----D---- C:\Program Files\Santa Hanta
2009-12-16 15:09:55 ----D---- C:\Program Files\Fighters

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 HCW88AUD;Hauppauge WinTV 88x Audio Capture; C:\WINDOWS\system32\drivers\hcw88aud.sys [2006-01-30 11970]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 magicpvt;magicpvt; C:\WINDOWS\system32\drivers\magicpvt.sys [2005-05-13 9728]
R1 MagicTune;MagicTune; C:\WINDOWS\system32\drivers\MTictwl.sys [2004-10-11 12062]
R1 mbmiodrvr;mbmiodrvr; \??\C:\WINDOWS\system32\mbmiodrvr.sys []
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2002-07-17 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\SYSTEM32\drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod; C:\WINDOWS\system32\drivers\hcw88bda.sys [2006-01-30 138816]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture; C:\WINDOWS\system32\drivers\hcw88tse.sys [2006-01-30 299715]
R3 HCW88TUNE;Hauppauge WinTV 88x Tuner; C:\WINDOWS\system32\drivers\hcw88tun.sys [2006-01-30 142913]
R3 hcw88vid;Hauppauge WinTV 88x Video; C:\WINDOWS\system32\drivers\hcw88vid.sys [2006-01-30 494144]
R3 HCW88XBAR;Hauppauge WinTV 88x Crossbar; C:\WINDOWS\system32\drivers\HCW88BAR.sys [2006-01-30 23104]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-07-20 3198368]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2005-08-18 74752]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2003-09-19 45056]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S1 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-13 31744]
S3 AVFSFilter;AVFSFilter; C:\WINDOWS\system32\DRIVERS\avfsfilter.sys [2009-12-11 10264]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-11-17 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2008-11-17 21672]
S3 HidIr;Microsoft Infrared HID Driver; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IrBus;Infrared bus filter driver for eHome remote controls; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.sys []
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-09-18 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-09-18 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-09-18 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-09-18 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-09-18 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-09-18 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-09-18 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Common Toolkit Service;Common Toolkit Service; C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe [2009-12-11 676488]
R2 ehRecvr;Služba přijímače aplikace Media Center; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Služba plánování aplikace Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
R2 GEARSecurity;GEARSecurity; C:\WINDOWS\SYSTEM32\GEARSec.exe [2003-12-01 53248]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-12-26 1181328]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-07-20 127043]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-16 487936]
R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\SPAMfighter\sfus.exe [2009-08-27 189064]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
S2 AV Engine Scanning Service;AV Engine Scanning Service; C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe []
S2 gupdate1c93ad255a5eb50;Google Update Service (gupdate1c93ad255a5eb50); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-10-30 133104]
S2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-02-21 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service; C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe []
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Ještě smažte adresář C:\Program Files\AskBarDis.

Můžete mě zdělit, jak se k výše uvedenému programu dostanu? děkuji

Přes průzkumník Windows, ev. nějaký souborový manažer (je-li nainstalován) a konečně přes Tento počítač.

Provedl jsem opravu a posílám log. děkujiLogfile of random's system information tool 1.06 (written by random/random)
Run by Ivan - Melkes at 2010-01-16 18:49:07
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 109 GB (47%) free of 233 GB
Total RAM: 1023 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:49:25, on 16.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\MagicRotation\MagicPvt.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\SYSTEM32\GEARSec.exe
C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\CodeStuff\Starter\Starter.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTune.exe
C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Documents and Settings\Ivan - Melkes\My Documents\RSIT.exe
C:\Documents and Settings\Ivan - Melkes\My Documents\Ivan - Melkes.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - (no file)
O2 - BHO: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: IObitCom Toolbar - {31c7d459-9cc3-44f2-9dca-fc11795309b4} - C:\Program Files\IObitCom\tbIObi.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MagicRotation] C:\Program Files\MagicRotation\MagicPvt.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [SWPROguard] C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [Software Informer] C:\Program Files\Software Informer\softinfo.exe -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [FTweakFCleaner] C:\Program Files\FCleaner\FCleaner.exe
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [SpywareTerminatorScan] "C:\Program Files\Spyware Terminator\SpywareTerminator.exe" /SCAN
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: CodeStuff Starter.lnk = C:\Program Files\CodeStuff\Starter\Starter.exe
O4 - Global Startup: Color Calibration.lnk = ?
O4 - Global Startup: MagicTune3.6.lnk = ?
O4 - Global Startup: NaturalColorLoad.lnk = ?
O4 - Global Startup: Samsung Multimedia Keyboard.lnk = ?
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: + Offline &Explorer: Download the link - file://C:\Program Files\Offline Explorer\Add_UrlO.htm
O8 - Extra context menu item: + Offline E&xplorer: Download the current page - file://C:\Program Files\Offline Explorer\Add_AllO.htm
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.autocont.cz
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AV Engine Scanning Service - Unknown owner - C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Common Toolkit Service - SPAMfighter - C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSec.exe
O23 - Service: Google Update Service (gupdate1c93ad255a5eb50) (gupdate1c93ad255a5eb50) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - Unknown owner - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe (file missing)

--
End of file - 14479 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3762901291-1285979262-2613963444-1005UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\SLOW-PCfighter.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-13 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\core.2.dll [2009-11-02 1085080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B71B15CF-3093-459C-B764-AEB2486F2273} - &S-Rank - C:\Program Files\Seznam\Postak\SRank.dll [2005-05-17 266240]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - []
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2009-11-17 1218000]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} - IObitCom Toolbar - C:\Program Files\IObitCom\tbIObi.dll [2009-10-01 2166296]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-07-20 7110656]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-07-20 86016]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"MagicRotation"=C:\Program Files\MagicRotation\MagicPvt.exe [2005-06-03 1089536]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-29 155648]
"NBKeyScan"=C:\Program Files\Nero\Nero 7\Nero BackItUp\NBKeyScan.exe [2008-02-21 1647912]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-10-16 2172416]
"SPAMfighter Agent"=C:\Program Files\SPAMfighter\SFAgent.exe [2009-08-27 336520]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-10-10 320832]
"SWPROguard"=C:\Program Files\Fighters\SPYWAREfighter\SWPROTray.exe [2009-12-11 574088]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-12-21 1803064]
"Google Update"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-04-22 133104]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe [2009-01-31 3399727]
"Software Informer"=C:\Program Files\Software Informer\softinfo.exe [2009-10-07 1949765]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-11-20 2335880]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2009-07-23 3055616]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-22 68856]
"TuneUp MemOptimizer"=C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe [2007-08-18 312576]
"FTweakFCleaner"=C:\Program Files\FCleaner\FCleaner.exe [2009-11-27 1723904]
"SmartRAM"=C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe [2009-02-19 202064]
"Seznam Postak"=C:\Documents and Settings\Ivan - Melkes\Local Settings\Application Data\Seznam.cz\postak.exe [2009-11-02 448664]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpywareTerminatorScan"=C:\Program Files\Spyware Terminator\SpywareTerminator.exe [2009-10-14 15319920]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
CodeStuff Starter.lnk - C:\Program Files\CodeStuff\Starter\Starter.exe
Color Calibration.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\GammaTray.exe
MagicTune3.6.lnk - C:\Program Files\SEC\MagicTune3.6_Client_pivot\MagicTuneTray.exe
NaturalColorLoad.lnk - C:\Program Files\SEC\Natural Color\NaturalColorLoad.exe
Samsung Multimedia Keyboard.lnk - C:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe

C:\Documents and Settings\Ivan - Melkes\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-08-11 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableChangePassword"=4294967295
"DisableLockWorkstation"=4294967295

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
"SynchronousMachineGroupPolicy"=1
"SynchronousUserGroupPolicy"=1
"PromptOnSecureDesktop"=4294967295
"ShutdownWithoutLogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMBalloonTip"=1
"MaxRecentDocs"=4294967295
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoStrCmpLogical"=
"NoResolveSearch"=
"NoPopUpsOnBoot"=
"DisableCurrentUserRun"=
"DisableCurrentUserRunOnce"=
"NoResolveTrack"=
"NoFileAssociate"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======List of files/folders created in the last 1 months======

2010-01-14 19:54:21 ----SHD---- C:\RECYCLER
2010-01-14 19:53:22 ----A---- C:\ComboFix.txt
2010-01-13 21:05:05 ----A---- C:\Boot.bak
2010-01-13 21:04:58 ----RASHD---- C:\cmdcons
2010-01-13 21:02:04 ----A---- C:\WINDOWS\zip.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWSC.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\SWREG.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\sed.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\PEV.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\NIRCMD.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\MBR.exe
2010-01-13 21:02:04 ----A---- C:\WINDOWS\grep.exe
2010-01-13 21:01:46 ----D---- C:\WINDOWS\ERDNT
2010-01-13 20:51:32 ----D---- C:\Qoobox
2010-01-12 18:08:38 ----D---- C:\rsit
2010-01-12 16:38:58 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-01-08 14:09:05 ----D---- C:\Program Files\Common Files\Common Toolkit Suite
2010-01-08 14:03:53 ----HDC---- C:\Documents and Settings\All Users\Application Data\{7516B6E8-5C01-4895-B079-DFC32A4ADEE1}
2010-01-05 22:47:49 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-12-27 13:03:07 ----D---- C:\Program Files\Seznam.cz
2009-12-27 01:22:40 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-12-22 22:16:35 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Common Toolkit Suite
2009-12-18 11:37:58 ----D---- C:\Documents and Settings\All Users\Application Data\clp
2009-12-18 11:35:08 ----D---- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
2009-12-18 11:27:39 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Fighters

======List of files/folders modified in the last 1 months======

2010-01-16 18:49:16 ----D---- C:\WINDOWS\Prefetch
2010-01-16 18:49:12 ----D---- C:\WINDOWS\Temp
2010-01-16 18:48:32 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Spyware Terminator
2010-01-16 16:48:44 ----SD---- C:\WINDOWS\Tasks
2010-01-16 16:48:05 ----D---- C:\Program Files\SPAMfighter
2010-01-16 16:46:53 ----D---- C:\WINDOWS\Registration
2010-01-16 16:46:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-16 16:45:54 ----D---- C:\WINDOWS
2010-01-16 16:44:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-15 16:38:47 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2010-01-15 16:24:33 ----D---- C:\Program Files\Spyware Terminator
2010-01-15 16:21:45 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-01-15 16:18:49 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-15 16:15:22 ----D---- C:\WINDOWS\Debug
2010-01-14 19:48:27 ----A---- C:\WINDOWS\system.ini
2010-01-14 19:44:07 ----D---- C:\WINDOWS\system32\drivers
2010-01-14 19:44:07 ----D---- C:\WINDOWS\system32
2010-01-14 19:44:07 ----D---- C:\WINDOWS\AppPatch
2010-01-14 19:44:03 ----D---- C:\Program Files\Common Files
2010-01-14 15:31:48 ----D---- C:\WINDOWS\system32\config
2010-01-13 21:05:05 ----RASH---- C:\boot.ini
2010-01-13 18:57:13 ----HD---- C:\WINDOWS\inf
2010-01-13 18:57:07 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-13 18:56:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-12 16:50:59 ----D---- C:\WINDOWS\security
2010-01-10 20:57:14 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-10 16:41:14 ----D---- C:\WINDOWS\system32\wbem
2010-01-10 16:15:17 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Software Informer
2010-01-09 21:56:42 ----D---- C:\Program Files\Wise Registry Cleaner
2010-01-08 18:06:44 ----D---- C:\Documents and Settings\Ivan - Melkes\Application Data\Free Download Manager
2010-01-08 16:19:03 ----RD---- C:\Program Files
2010-01-08 14:10:20 ----SHD---- C:\WINDOWS\Installer
2010-01-08 14:10:00 ----D---- C:\Config.Msi
2010-01-07 15:12:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-05 23:09:52 ----D---- C:\Program Files\TuneUp Utilities 2009
2010-01-05 22:46:39 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2010-01-05 21:46:18 ----A---- C:\WINDOWS\system32\everest_cpl.ini
2010-01-05 21:35:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-05 13:18:31 ----D---- C:\Program Files\TuneUp Utilities 2007
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2009-12-22 22:02:39 ----D---- C:\Program Files\Ashampoo
2009-12-21 01:25:00 ----D---- C:\Program Files\FCleaner
2009-12-18 18:31:53 ----D---- C:\Documents and Settings\All Users\Application Data\page
2009-12-18 17:00:13 ----D---- C:\Program Files\Santa Hanta

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 HCW88AUD;Hauppauge WinTV 88x Audio Capture; C:\WINDOWS\system32\drivers\hcw88aud.sys [2006-01-30 11970]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 magicpvt;magicpvt; C:\WINDOWS\system32\drivers\magicpvt.sys [2005-05-13 9728]
R1 MagicTune;MagicTune; C:\WINDOWS\system32\drivers\MTictwl.sys [2004-10-11 12062]
R1 mbmiodrvr;mbmiodrvr; \??\C:\WINDOWS\system32\mbmiodrvr.sys []
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2002-07-17 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\SYSTEM32\drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod; C:\WINDOWS\system32\drivers\hcw88bda.sys [2006-01-30 138816]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture; C:\WINDOWS\system32\drivers\hcw88tse.sys [2006-01-30 299715]
R3 HCW88TUNE;Hauppauge WinTV 88x Tuner; C:\WINDOWS\system32\drivers\hcw88tun.sys [2006-01-30 142913]
R3 hcw88vid;Hauppauge WinTV 88x Video; C:\WINDOWS\system32\drivers\hcw88vid.sys [2006-01-30 494144]
R3 HCW88XBAR;Hauppauge WinTV 88x Crossbar; C:\WINDOWS\system32\drivers\HCW88BAR.sys [2006-01-30 23104]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-07-20 3198368]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2005-08-18 74752]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2003-09-19 45056]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S1 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-13 31744]
S3 AVFSFilter;AVFSFilter; C:\WINDOWS\system32\DRIVERS\avfsfilter.sys [2009-12-11 10264]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-11-17 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2008-11-17 21672]
S3 HidIr;Microsoft Infrared HID Driver; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IrBus;Infrared bus filter driver for eHome remote controls; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.sys []
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-09-18 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-09-18 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-09-18 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-09-18 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-09-18 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-09-18 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-09-18 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Common Toolkit Service;Common Toolkit Service; C:\Program Files\Common Files\Common Toolkit Suite\FighterSuiteService.exe [2009-12-11 676488]
R2 ehRecvr;Služba přijímače aplikace Media Center; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Služba plánování aplikace Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
R2 GEARSecurity;GEARSecurity; C:\WINDOWS\SYSTEM32\GEARSec.exe [2003-12-01 53248]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-12-26 1181328]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-07-20 127043]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-16 487936]
R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\SPAMfighter\sfus.exe [2009-08-27 189064]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
S2 AV Engine Scanning Service;AV Engine Scanning Service; C:/Program Files/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe []
S2 gupdate1c93ad255a5eb50;Google Update Service (gupdate1c93ad255a5eb50); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-10-30 133104]
S2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-02-21 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TUWinStylerThemeSvc;TuneUp WinStyler Theme Service; C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe []
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------