VIRY.CZ

prosim o kontrolu nb ....neustale mi tu vyskakuje z anntiviraku upozornenia na trojskeho kona dakujem

Logfile of random's system information tool 1.06 (written by random/random)
Run by leebusha at 2010-01-23 11:30:43
Microsoft® Windows Vista™ Home Premium
System drive C: has 57 GB (19%) free of 295 GB
Total RAM: 3069 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:31:01, on 23. 1. 2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Windows\LockStatusTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Symantec AntiVirus\DWHWIZRD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Symantec AntiVirus\SavUI.exe
C:\Users\leebusha\Downloads\RSIT.exe
C:\Program Files\trend micro\leebusha.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=sk&s=gen
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll
R3 - URLSearchHook: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe" /mode2
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LockStatusTray] C:\Windows\LockStatusTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [AWMON] "C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-18\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{5644A4B8-64D5-4441-BA8F-035F91C4C4F4}: NameServer = 195.146.132.59,195.146.128.60
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\STacSV.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE

--
End of file - 13484 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{257D1B99-FF71-4B8A-840D-99E4CEED46D0}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files\Winamp Toolbar\winamptb.dll [2008-07-16 1266992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2008-09-17 503808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
TorrentMan Toolbar - C:\Program Files\TorrentMan\tbTorr.dll [2008-07-27 1606680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2008-07-16 1266992]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2008-09-17 503808]
{7c5c0f58-e061-457d-9033-77307f5ed00c} - TorrentMan Toolbar - C:\Program Files\TorrentMan\tbTorr.dll [2008-07-27 1606680]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-09-03 1006264]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2008-06-26 442467]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-03 178712]
"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2008-03-12 3563520]
"Dell Webcam Central"=C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe [2008-06-03 446635]
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2008-01-14 132392]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-11-22 107112]
"vptray"=C:\PROGRA~1\SYMANT~1\VPTray.exe [2006-11-28 134808]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-10 689488]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-03 1848648]
"PCSuiteTrayApplication"=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [2006-11-08 222208]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"LockStatusTray"=C:\Windows\LockStatusTray.exe [2008-02-19 192512]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"NPSStartup"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2006-11-02 125440]
"AWMON"=C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe [2005-05-25 517632]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2005-09-08 94208]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe [2009-02-03 240544]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe

C:\Users\leebusha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
Yahoo! Widgets.lnk - C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4a10a338-da95-11de-b3aa-806e6f6e6963}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5c18586c-dcc0-11de-abd1-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6b9744eb-dc05-11de-b1e7-0021707e8ec7}]
shell\AutoRun\command - F:\UbiLaunch.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a523e1af-da61-11de-b301-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{acdc8b38-dddb-11de-88fd-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d32988c0-dc64-11de-ae88-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d32988df-dc64-11de-ae88-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f62b78f4-dddd-11de-9dcd-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f62b790e-dddd-11de-9dcd-0021707e8ec7}]
shell\AutoRun\command - G:\AutoRun.exe


======List of files/folders created in the last 1 months======

2010-01-05 18:43:15 ----D---- C:\Users\leebusha\AppData\Roaming\Miranda
2010-01-05 18:43:07 ----D---- C:\Program Files\Miranda IM
2009-12-25 17:33:02 ----D---- C:\Program Files\DIFX
2009-12-25 17:29:51 ----D---- C:\Windows\system32\Samsung_USB_Drivers
2009-12-25 17:29:19 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2009-12-25 17:29:18 ----A---- C:\Windows\system32\FsUsbExService.Exe
2009-12-25 17:28:54 ----D---- C:\Users\leebusha\AppData\Roaming\Samsung
2009-12-25 17:28:17 ----D---- C:\Program Files\MarkAny
2009-12-25 17:27:05 ----D---- C:\Program Files\Samsung

======List of files/folders modified in the last 1 months======

2010-01-23 11:31:02 ----D---- C:\Windows\temp
2010-01-23 11:30:55 ----D---- C:\Windows\Prefetch
2010-01-23 11:30:46 ----D---- C:\Program Files\trend micro
2010-01-23 11:18:45 ----D---- C:\Users\leebusha\AppData\Roaming\Skype
2010-01-23 08:01:37 ----D---- C:\Users\leebusha\AppData\Roaming\skypePM
2010-01-22 16:33:51 ----SHD---- C:\System Volume Information
2010-01-18 18:27:32 ----D---- C:\Windows\system32\catroot2
2010-01-17 02:48:04 ----D---- C:\Users\leebusha\AppData\Roaming\Vso
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-01-13 22:37:49 ----D---- C:\Windows\System32
2010-01-13 22:37:49 ----D---- C:\Windows\inf
2010-01-13 22:37:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-01-13 18:13:03 ----SHD---- C:\Windows\Installer
2010-01-13 18:12:52 ----D---- C:\Windows\system32\Tasks
2010-01-07 17:52:12 ----D---- C:\Program Files\Mozilla Firefox
2010-01-05 18:43:07 ----RD---- C:\Program Files
2009-12-26 09:14:55 ----D---- C:\Windows
2009-12-25 18:56:59 ----D---- C:\Program Files\WEPKeyGen
2009-12-25 18:55:49 ----D---- C:\Program Files\Ubisoft
2009-12-25 18:53:15 ----D---- C:\Program Files\Winamp
2009-12-25 17:33:30 ----D---- C:\Windows\system32\catroot
2009-12-25 17:32:59 ----D---- C:\Windows\system32\drivers
2009-12-25 17:32:58 ----DC---- C:\Windows\system32\DRVSTORE
2009-12-25 17:32:40 ----D---- C:\Program Files\PC Connectivity Solution
2009-12-25 17:32:35 ----D---- C:\Windows\winsxs
2009-12-25 17:28:32 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-08-27 371248]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2006-10-06 406672]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2006-11-22 247144]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2006-11-22 25448]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2006-10-26 185744]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2005-08-03 32512]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-03-11 46592]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-03-11 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2008-03-11 38400]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-06-30 170032]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-05-04 3548672]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2008-03-12 18424]
R3 BCM43XX;Ovladač bezdrátové karty Dell WLAN; C:\Windows\system32\DRIVERS\bcmwl6.sys [2008-03-12 1205240]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-09-03 14208]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-08-27 102448]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2008-11-22 25280]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2008-03-14 54784]
R3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2008-03-11 203264]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100122.007\NAVENG.SYS [2009-08-27 84912]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100122.007\NAVEX15.SYS [2009-08-27 1323568]
R3 OA001Ufd;Creative Camera OA001 Upper Filter Driver; C:\Windows\system32\DRIVERS\OA001Ufd.sys [2008-03-11 149208]
R3 OA001Vid;Creative Camera OA001 Function Driver; C:\Windows\system32\DRIVERS\OA001Vid.sys [2008-03-11 277624]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2008-10-02 47360]
R3 RLDesignVirtualAudioCableWdm;Live! Cam Virtual; C:\Windows\system32\DRIVERS\livecamv.sys [2007-01-15 31616]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-09-03 82432]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2008-06-26 380928]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2008-09-13 109744]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2006-10-26 26384]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-09-03 11264]
S1 InCDPass;InCDPass; C:\Windows\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\Windows\system32\drivers\InCDRm.sys []
S3 abdi8kxa;abdi8kxa; C:\Windows\system32\drivers\abdi8kxa.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-09-03 19456]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2006-11-02 92160]
S3 BthPort;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-09-03 220160]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-09-03 29184]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-03-11 81960]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2008-03-11 100392]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-03-11 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-03-11 17448]
S3 catchme;catchme; \??\C:\Users\leebusha\AppData\Local\Temp\catchme.sys []
S3 dot4;Ovladač MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2006-11-02 131584]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2006-11-02 16384]
S3 Dot4Scan;Ovladač skenování pro rozhraní IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2006-11-02 10752]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2006-11-02 36864]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-02-28 92032]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\k750mdfl.sys [2005-02-11 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\Windows\system32\DRIVERS\k750mdm.sys [2005-02-11 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\Windows\system32\DRIVERS\k750mgmt.sys [2005-02-11 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\Windows\system32\DRIVERS\k750obex.sys [2005-02-11 79488]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 Nokia USB Generic;Nokia USB Generic; C:\Windows\system32\drivers\nmwcdc.sys [2006-10-10 9216]
S3 Nokia USB Modem;Nokia USB Modem; C:\Windows\system32\drivers\nmwcdcm.sys [2006-10-10 12800]
S3 Nokia USB Phone Parent;Nokia USB Phone Parent; C:\Windows\system32\drivers\nmwcd.sys [2006-10-10 138240]
S3 Nokia USB Port;Nokia USB Port; C:\Windows\system32\drivers\nmwcdcj.sys [2006-10-10 12800]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-05-04 3548672]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2006-11-02 49664]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2006-11-22 274328]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2006-11-02 14848]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S4 InCDFs;InCD File System; C:\Windows\system32\drivers\InCDFs.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\aestsrv.exe [2008-06-26 73728]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-05-04 667648]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-02-08 518696]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-11-28 30872]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-03 358936]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\STacSV.exe [2008-06-26 221273]
R2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-11-28 1962136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2008-03-12 24064]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-09-10 536872]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-07-16 72704]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-10-31 2541248]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2005-08-02 86016]
S3 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-11-28 122008]

-----------------EOF-----------------

Nic nebezpečného nevidím. Udělejte sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Malwarebytes' Anti-Malware 1.44
Verze databáze: 3620
Windows 6.0.6000
Internet Explorer 7.0.6000.16711

23. 1. 2010 23:52:20
mbam-log-2010-01-23 (23-52-08).txt

Typ kontroly: Kompletní kontrola (C:\|D:\|)
Zkontrolované objekty: 329595
Uplynulý čas: 3 hour(s), 49 minute(s), 38 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 111

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
C:\Program Files\ALCATech\BPM-Studio Profi\UNWISE.EXE (Malware.Packer.Morphine) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH1096.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH6EF.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHC50D.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHC6A2.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH2F20.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH9B3F.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH9BA7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH9D26.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHED6D.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHED7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH52B3.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH52B4.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH5404.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH54E1.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH1712.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH18A8.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHDA98.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHDAA0.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHDAED.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH600E.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH3E8F.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHAC6A.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF739.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF921.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF98E.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCF82.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHE4A6.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHBA8C.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHBBF8.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH4B75.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH4BA9.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH4D66.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH76E8.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH78DB.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7939.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8E43.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH673D.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF2AB.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHB566.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7E5F.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7EA.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7EF8.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7F46.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH1DD.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH74B1.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7551.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHD55B.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH44AE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCADE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCB10.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCBA.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCC26.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH865E.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH86C2.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH884A.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8996.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH296D.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH32D9.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH345E.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH3BAE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH3CF6.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH3D7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH5795.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH5801.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHFC3.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHFEB9.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHE5FD.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHEE88.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF097.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF0D7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH494C.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH4AD0.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHB86D.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHB1B7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH64AE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHBCE9.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHBE45.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHF3D5.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH194C.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH1AA5.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH75FE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8A52.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8B83.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH6FE7.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7004.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH712F.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH721.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH6933.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH69E.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHCD77.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH79B0.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH7B6.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHC227.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHC299.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHC39A.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH851F.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8582.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH85A6.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH2CAE.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHA8C8.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHAA27.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH36C0.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH8140.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHE054.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWHE1A.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH2771.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH278.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH91B.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH920B.tmp (Trojan.Downloader) -> No action taken.
C:\Users\leebusha\AppData\Local\temp\DWH933C.tmp (Trojan.Downloader) -> No action taken.

Vše smažte.

treba znovu poslat log?

Nemusíte, pokud problém pominul.

ako nahle som to vymazal antivir mi zacal vyhadzovat zas tir trojany (mam symantec) a uplne ma zacal brzdit comp

este som ho nechal preskenovat search and destroy a ad watchom od lavasoftu a uvidim ako sa bude tvarit po restarte

Kde ty trojáky našel?

hned ako som ho restartoval

Myslím ve kterých souborech. V logu nic nevidím.

poslem este raz log ? cez rsit ?

V logu RSIT nejsou vidět. To bych se takto neptal. Bude mi stačit, když řeknete, ve kterých souborech je antivir našel.

no po znovom restarte uz nenabehli
zvlastne
tak asi je vsetko ok

Asi ano.