Pro motji prosim o kontrolu

[Marwin]

Dobry den uz dlouho sem tu nebyl dostal se mi do ruky notas s vistou,pada vni IE8 a antivir je nejakej podivnej,prosim o kontrolu byla tam nejaka havet co se mi povedlo odstranit ale verim tomu ze tam jeste neco bude

log RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by vista at 2010-02-09 17:01:54
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 74 GB (49%) free of 153 GB
Total RAM: 3070 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:02:04, on 9.2.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Windows\AsScrPro.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Users\vista\AppData\Local\Seznam.cz\postak.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\vista\Desktop\RSIT.exe
C:\Program Files\trend micro\vista.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: PCCBHO.CPCCBHO - {22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF} - C:\Program Files\Winferno\PC Confidential\PCCBHO.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [HControlUser] "C:\Program Files\ATK Hotkey\HcontrolUser.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] "C:\Program Files\P4P\P4P.exe"
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\vista\AppData\Local\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra 'Tools' menuitem: PC Confidential - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: PC Confidential - {925DAB62-F9AC-4221-806A-057BFB1014AA} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\APSHook.dll C:\Windows\System32\avgrsstx.dll C:\Windows\System32\avgrsstx.dll
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - Unknown owner - C:\PROGRA~1\AVG\AVG8\avgemc.exe (file missing)
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--
End of file - 8633 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000UA.job
C:\Windows\tasks\PCConfidential.job
C:\Windows\tasks\RegPowerClean.job
C:\Windows\tasks\RPCReminder.job
C:\Windows\tasks\User_Feed_Synchronization-{C124C52C-7FAE-40AA-9357-D496259DA27F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF}]
PCCBHO.CPCCBHO - C:\Program Files\Winferno\PC Confidential\PCCBHO.dll [2008-04-01 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-02-09 1484056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-21 70928]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"HControlUser"=C:\Program Files\ATK Hotkey\HcontrolUser.exe [2008-01-12 98304]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-23 7766016]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-16 178712]
"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2008-05-03 33304]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-07-16 6253088]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2009-05-05 1466368]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-07 1029416]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-22 17920]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2008-02-01 61440]
"PowerForPhone"=C:\Program Files\P4P\P4P.exe [2007-08-03 778240]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2008-09-23 3054136]
"ASUS Camera ScreenSaver"=C:\Windows\AsScrProlog.exe [2008-09-23 47672]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NokiaMusic FastStart"=C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe [2009-11-06 2090272]
"Skytel"=C:\Windows\Skytel.exe [2008-07-16 1833504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-06-09 2363392]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Seznam Postak"=C:\Users\vista\AppData\Local\Seznam.cz\postak.exe [2009-07-22 416408]
"ICQ"=C:\Program Files\ICQ6.5\ICQ.exe [2009-11-16 172792]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-12 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2008-07-18 104936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2Go_Menu]
C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]
C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE [2008-12-05 460216]

C:\Users\vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 2.4.lnk - C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\APSHook.dll C:\Windows\System32\avgrsstx.dll C:\Windows\System32\avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-02-09 17:01:54 ----D---- C:\rsit
2010-02-09 17:01:54 ----D---- C:\Program Files\trend micro
2010-02-09 16:49:59 ----SHD---- C:\$RECYCLE.BIN
2010-02-09 16:49:56 ----D---- C:\Windows\temp
2010-02-09 16:49:54 ----A---- C:\ComboFix.txt
2010-02-09 16:41:36 ----A---- C:\Windows\zip.exe
2010-02-09 16:41:36 ----A---- C:\Windows\SWSC.exe
2010-02-09 16:41:36 ----A---- C:\Windows\SWREG.exe
2010-02-09 16:41:36 ----A---- C:\Windows\sed.exe
2010-02-09 16:41:36 ----A---- C:\Windows\PEV.exe
2010-02-09 16:41:36 ----A---- C:\Windows\NIRCMD.exe
2010-02-09 16:41:36 ----A---- C:\Windows\MBR.exe
2010-02-09 16:41:36 ----A---- C:\Windows\grep.exe
2010-02-09 16:41:22 ----D---- C:\ComboFix
2010-02-09 16:40:41 ----D---- C:\Qoobox
2010-02-09 16:40:28 ----A---- C:\Windows\SWXCACLS.exe
2010-02-09 16:35:53 ----D---- C:\Config.Msi
2010-02-09 14:40:13 ----D---- C:\Program Files\Common Files\Skype
2010-02-09 14:40:12 ----RD---- C:\Program Files\Skype
2010-02-09 13:59:18 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2010-02-09 13:59:05 ----D---- C:\Users\vista\AppData\Roaming\SUPERAntiSpyware.com
2010-02-09 13:59:05 ----D---- C:\Program Files\SUPERAntiSpyware
2010-02-09 13:15:20 ----D---- C:\Program Files\CCleaner
2010-02-09 10:17:41 ----D---- C:\Users\vista\AppData\Roaming\Malwarebytes
2010-02-09 10:17:36 ----D---- C:\ProgramData\Malwarebytes
2010-02-09 10:03:32 ----A---- C:\Windows\system32\NETw5r32.dll
2010-02-09 09:57:32 ----D---- C:\ProgramData\Symantec
2010-02-09 09:48:39 ----D---- C:\Program Files\Windows Portable Devices
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIRibbon.dll
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIAnimation.dll
2010-02-09 09:41:01 ----A---- C:\Windows\system32\WMPhoto.dll
2010-02-09 09:41:00 ----A---- C:\Windows\system32\cdd.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\xpsservices.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsPrint.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-02-09 09:40:59 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\OpcServices.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\FntCache.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxgi.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxdiagn.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxdiag.exe
2010-02-09 09:40:59 ----A---- C:\Windows\system32\DWrite.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d11.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10warp.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10level9.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10core.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d2d1.dll
2010-02-09 09:40:58 ----A---- C:\Windows\system32\d3d10_1.dll
2010-02-09 09:40:58 ----A---- C:\Windows\system32\d3d10.dll
2010-02-09 09:40:23 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2010-02-09 09:40:23 ----A---- C:\Windows\system32\wpdbusenum.dll
2010-02-09 09:40:23 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2010-02-09 09:40:18 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2010-02-09 09:40:16 ----A---- C:\Windows\system32\WpdMtpUS.dll
2010-02-09 09:40:16 ----A---- C:\Windows\system32\WpdConns.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WPDSp.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\wpdshext.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WpdMtp.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\wpd_ci.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\UIAutomationCore.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\oleaccrc.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\oleacc.dll
2010-02-09 09:19:19 ----D---- C:\Windows\system32\vi-VN
2010-02-09 09:19:19 ----D---- C:\Windows\system32\eu-ES
2010-02-09 09:19:19 ----D---- C:\Windows\system32\ca-ES
2010-02-08 16:50:52 ----D---- C:\Windows\ERDNT
2010-02-08 15:21:04 ----D---- C:\Windows\system32\EventProviders
2010-02-05 09:50:05 ----RD---- C:\assembly
2010-01-30 17:52:51 ----D---- C:\Program Files\Testy Autoškola
2010-01-30 17:50:27 ----D---- C:\Windows\system32\URTTEMP
2010-01-25 18:38:52 ----D---- C:\Users\vista\AppData\Roaming\CyberLink
2010-01-24 09:58:02 ----A---- C:\Windows\system32\mshtml.dll
2010-01-24 09:58:01 ----A---- C:\Windows\system32\ieframe.dll
2010-01-24 09:57:59 ----A---- C:\Windows\system32\iertutil.dll
2010-01-24 09:57:58 ----A---- C:\Windows\system32\wininet.dll
2010-01-24 09:57:58 ----A---- C:\Windows\system32\urlmon.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\occache.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-24 09:57:56 ----A---- C:\Windows\system32\ieui.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-24 09:57:55 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\iepeers.dll
2010-01-24 09:57:54 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-24 09:57:51 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-24 09:57:51 ----A---- C:\Windows\system32\iesetup.dll
2010-01-24 09:57:51 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-24 09:57:50 ----A---- C:\Windows\system32\iernonce.dll
2010-01-15 20:42:53 ----D---- C:\Program Files\TopCD
2010-01-13 19:54:57 ----A---- C:\Windows\system32\t2embed.dll
2010-01-13 19:54:57 ----A---- C:\Windows\system32\fontsub.dll

======List of files/folders modified in the last 1 months======

2010-02-09 17:01:54 ----RD---- C:\Program Files
2010-02-09 16:49:56 ----D---- C:\Windows
2010-02-09 16:48:16 ----A---- C:\Windows\system.ini
2010-02-09 16:47:40 ----D---- C:\Program Files\ICQ6.5
2010-02-09 16:44:38 ----D---- C:\Windows\system32\drivers
2010-02-09 16:44:38 ----D---- C:\Windows\System32
2010-02-09 16:44:38 ----D---- C:\Windows\AppPatch
2010-02-09 16:44:37 ----D---- C:\Program Files\Common Files
2010-02-09 16:36:43 ----D---- C:\Program Files\Mozilla Firefox
2010-02-09 16:35:59 ----SHD---- C:\Windows\Installer
2010-02-09 16:35:15 ----SHD---- C:\System Volume Information
2010-02-09 15:56:33 ----D---- C:\Users\vista\AppData\Roaming\Skype
2010-02-09 15:46:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-09 15:46:23 ----D---- C:\Windows\inf
2010-02-09 15:41:13 ----D---- C:\Users\vista\AppData\Roaming\OpenOffice.org2
2010-02-09 15:39:27 ----A---- C:\Windows\system32\acovcnt.exe
2010-02-09 14:41:28 ----D---- C:\Users\vista\AppData\Roaming\skypePM
2010-02-09 14:40:27 ----D---- C:\Windows\system32\Tasks
2010-02-09 14:40:12 ----D---- C:\ProgramData\Skype
2010-02-09 14:17:23 ----A---- C:\Windows\system32\avgrsstx.dll
2010-02-09 14:05:36 ----D---- C:\ProgramData\avg8
2010-02-09 14:04:02 ----D---- C:\ProgramData
2010-02-09 14:03:00 ----SD---- C:\Users\vista\AppData\Roaming\Microsoft
2010-02-09 14:02:49 ----D---- C:\ProgramData\avg9
2010-02-09 14:01:49 ----D---- C:\Windows\Prefetch
2010-02-09 13:57:56 ----D---- C:\Windows\winsxs
2010-02-09 13:57:52 ----D---- C:\Windows\system32\catroot
2010-02-09 13:18:13 ----D---- C:\Windows\Debug
2010-02-09 13:08:10 ----D---- C:\Windows\rescache
2010-02-09 13:07:53 ----D---- C:\Windows\system32\migration
2010-02-09 13:07:53 ----D---- C:\Windows\system32\cs-CZ
2010-02-09 13:07:53 ----D---- C:\Program Files\Internet Explorer
2010-02-09 13:07:52 ----D---- C:\Windows\system32\en-US
2010-02-09 13:07:52 ----D---- C:\Windows\PolicyDefinitions
2010-02-09 13:03:50 ----D---- C:\Windows\system32\catroot2
2010-02-09 11:51:51 ----D---- C:\Windows\Branding
2010-02-09 10:28:15 ----D---- C:\Windows\DigitalLocker
2010-02-09 09:57:37 ----D---- C:\Windows\Microsoft.NET
2010-02-09 09:57:36 ----RSD---- C:\Windows\assembly
2010-02-09 09:57:36 ----D---- C:\ProgramData\Norton
2010-02-09 09:57:36 ----D---- C:\Program Files\Norton Security Scan
2010-02-09 09:57:33 ----D---- C:\Windows\Tasks
2010-02-09 09:48:32 ----D---- C:\Windows\system32\wbem
2010-02-09 09:48:29 ----D---- C:\Windows\system32\zh-HK
2010-02-09 09:48:29 ----D---- C:\Windows\system32\uk-UA
2010-02-09 09:48:29 ----D---- C:\Windows\system32\sl-SI
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pt-PT
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pt-BR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pl-PL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\nl-NL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\ko-KR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\it-IT
2010-02-09 09:48:29 ----D---- C:\Windows\system32\hu-HU
2010-02-09 09:48:29 ----D---- C:\Windows\system32\hr-HR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\he-IL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\el-GR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\bg-BG
2010-02-09 09:48:28 ----D---- C:\Windows\system32\zh-TW
2010-02-09 09:48:28 ----D---- C:\Windows\system32\tr-TR
2010-02-09 09:48:28 ----D---- C:\Windows\system32\th-TH
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sv-SE
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sr-Latn-CS
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sk-SK
2010-02-09 09:48:28 ----D---- C:\Windows\system32\lv-LV
2010-02-09 09:48:28 ----D---- C:\Windows\system32\lt-LT
2010-02-09 09:48:28 ----D---- C:\Windows\system32\fr-FR
2010-02-09 09:48:28 ----D---- C:\Windows\system32\fi-FI
2010-02-09 09:48:28 ----D---- C:\Windows\system32\et-EE
2010-02-09 09:48:28 ----D---- C:\Windows\system32\es-ES
2010-02-09 09:48:28 ----D---- C:\Windows\system32\de-DE
2010-02-09 09:48:25 ----D---- C:\Windows\system32\zh-CN
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ru-RU
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ro-RO
2010-02-09 09:48:25 ----D---- C:\Windows\system32\nb-NO
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ja-JP
2010-02-09 09:48:25 ----D---- C:\Windows\system32\da-DK
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ar-SA
2010-02-09 09:32:54 ----D---- C:\Boot
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Sidebar
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Photo Gallery
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Media Player
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Mail
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Journal
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Collaboration
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Calendar
2010-02-09 09:19:58 ----D---- C:\Program Files\Movie Maker
2010-02-09 09:19:58 ----D---- C:\Program Files\Common Files\System
2010-02-09 09:19:57 ----D---- C:\Windows\servicing
2010-02-09 09:19:57 ----D---- C:\Windows\ehome
2010-02-09 09:19:57 ----D---- C:\Program Files\Windows Defender
2010-02-09 09:19:48 ----D---- C:\Windows\system32\XPSViewer
2010-02-09 09:19:48 ----D---- C:\Windows\system32\oobe
2010-02-09 09:19:48 ----D---- C:\Windows\IME
2010-02-09 09:19:47 ----D---- C:\Windows\system32\setup
2010-02-09 09:19:47 ----D---- C:\Windows\system32\cs
2010-02-09 09:19:47 ----D---- C:\Windows\system32\AdvancedInstallers
2010-02-09 09:19:46 ----D---- C:\Windows\system32\SLUI
2010-02-09 09:19:46 ----D---- C:\Windows\system32\manifeststore
2010-02-09 09:19:40 ----D---- C:\Windows\system32\migwiz
2010-02-09 09:19:27 ----RSD---- C:\Windows\Fonts
2010-02-09 09:19:19 ----D---- C:\Windows\system32\Boot
2010-02-09 09:17:22 ----D---- C:\Windows\system32\RTCOM
2010-02-08 17:02:32 ----D---- C:\Windows\system32\config
2010-02-08 15:43:49 ----D---- C:\Windows\system32\WDI
2010-02-08 15:12:37 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-02-08 15:00:50 ----D---- C:\Users\vista\AppData\Roaming\ICQ
2010-02-05 09:55:45 ----D---- C:\Windows\Registration
2010-01-25 18:38:56 ----D---- C:\ProgramData\CyberLink
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2010-02-09 333192]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2010-02-09 28424]
R1 AvgTdiX;AVG8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2010-02-09 360584]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-08-09 45568]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-03-28 3544064]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-06-17 146824]
R3 catchme;catchme; \??\C:\Users\vista\AppData\Local\Temp\catchme.sys []
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-07-16 2156312]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-25 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2009-05-28 4233728]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2009-12-20 234016]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-05-05 1095808]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2007-10-01 1769984]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-12-07 196400]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer; \??\E:\I386\AsProcOb.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-03-17 81960]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2008-03-17 100392]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-01-29 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-03-17 17320]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 mbr;mbr; \??\C:\Users\vista\AppData\Local\Temp\mbr.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbser;Nokia USB Serial Port; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-03-28 667648]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-08-31 297752]
R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2009-12-07 906520]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-02-09 285392]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-04-10 518696]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-16 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
S2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-03 94208]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
S2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 ServiceLayer;ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2009-09-17 651776]

-----------------EOF-----------------


log combofix:

ComboFix 10-02-08.09 - vista 09.02.2010 16:42:14.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3070.1532 [GMT 1:00]
Spuštěný z: c:\users\vista\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\ICQ6.5\ICQLRun.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-09 do 2010-02-09 )))))))))))))))))))))))))))))))
.

2010-02-09 15:48 . 2010-02-09 15:48 -------- d-----w- c:\users\vista\AppData\Local\temp
2010-02-09 15:48 . 2010-02-09 15:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-02-09 12:15 . 2010-02-09 12:15 -------- d-----w- c:\program files\CCleaner
2010-02-09 09:29 . 2010-02-09 09:29 -------- d-----w- c:\users\vista\AppData\Local\ATI
2010-02-09 09:17 . 2010-02-09 09:17 -------- d-----w- c:\users\vista\AppData\Roaming\Malwarebytes
2010-02-09 09:17 . 2010-02-09 09:17 -------- d-----w- c:\programdata\Malwarebytes
2010-02-09 09:03 . 2009-06-19 10:33 2756608 ----a-w- c:\windows\system32\NETw5r32.dll
2010-02-09 09:03 . 2009-05-28 21:41 4233728 ----a-w- c:\windows\system32\drivers\NETw5v32.sys
2010-02-09 08:57 . 2010-02-09 08:57 -------- d-----w- c:\programdata\Symantec
2010-02-09 08:48 . 2010-02-09 08:48 -------- d-----w- c:\program files\Windows Portable Devices
2010-02-09 08:41 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2010-02-09 08:41 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2010-02-09 08:41 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2010-02-09 08:41 . 2009-09-25 01:33 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2010-02-09 08:41 . 2009-09-24 22:54 258048 ----a-w- c:\windows\system32\winspool.drv
2010-02-09 08:41 . 2009-09-25 01:27 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2010-02-09 08:41 . 2009-09-25 01:27 37888 ----a-w- c:\windows\system32\cdd.dll
2010-02-09 08:39 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2010-02-09 08:39 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2010-02-09 08:39 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\ca-ES
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\eu-ES
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\vi-VN
2010-02-08 14:21 . 2010-02-08 14:21 -------- d-----w- c:\windows\system32\EventProviders
2010-02-05 08:50 . 2010-02-05 08:50 -------- d-----r- C:\assembly
2010-01-30 16:53 . 2010-01-30 16:53 93 ----a-w- c:\users\vista\AppData\Local\fusioncache.dat
2010-01-30 16:52 . 2010-01-30 16:56 766 ----a-r- c:\users\vista\AppData\Roaming\Microsoft\Installer\{8BB65964-56E7-4DC7-B65D-3EF5FEC9842A}\_4ae13d6c.exe
2010-01-30 16:52 . 2010-01-30 16:56 766 ----a-r- c:\users\vista\AppData\Roaming\Microsoft\Installer\{8BB65964-56E7-4DC7-B65D-3EF5FEC9842A}\_2cd672ae.exe
2010-01-30 16:52 . 2010-01-30 16:56 -------- d-----w- c:\program files\Testy Autoškola
2010-01-30 16:50 . 2010-01-30 16:50 -------- d-----w- c:\windows\system32\URTTEMP
2010-01-26 18:25 . 2010-01-18 17:08 1260800 ----a-w- c:\programdata\avg9\update\backup\avgfrw.exe
2010-01-25 17:38 . 2010-01-25 17:38 -------- d-----w- c:\users\vista\AppData\Roaming\CyberLink
2010-01-25 17:38 . 2010-01-25 17:38 -------- d-----w- c:\users\Public\CyberLink
2010-01-18 17:09 . 2010-01-18 17:08 3777280 ----a-w- c:\programdata\avg9\update\backup\setup.exe
2010-01-15 19:42 . 2010-01-24 08:48 -------- d-----w- c:\program files\TopCD
2010-01-13 18:54 . 2009-10-19 13:38 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-01-13 18:54 . 2009-10-19 13:35 72704 ----a-w- c:\windows\system32\fontsub.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-09 15:47 . 2010-01-03 18:39 -------- d-----w- c:\program files\ICQ6.5
2010-02-09 15:36 . 2010-02-09 12:59 -------- d-----w- c:\users\vista\AppData\Roaming\SUPERAntiSpyware.com
2010-02-09 15:35 . 2010-02-09 12:59 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-02-09 14:56 . 2009-04-17 18:03 -------- d-----w- c:\users\vista\AppData\Roaming\Skype
2010-02-09 14:46 . 2008-04-17 10:34 652646 ----a-w- c:\windows\system32\perfh005.dat
2010-02-09 14:46 . 2008-04-17 10:34 141570 ----a-w- c:\windows\system32\perfc005.dat
2010-02-09 14:41 . 2008-11-25 13:39 -------- d-----w- c:\users\vista\AppData\Roaming\OpenOffice.org2
2010-02-09 14:39 . 2008-11-25 12:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2010-02-09 14:38 . 2008-09-23 01:41 12 ----a-w- c:\windows\bthservsdp.dat
2010-02-09 13:41 . 2009-04-17 18:07 -------- d-----w- c:\users\vista\AppData\Roaming\skypePM
2010-02-09 13:40 . 2010-02-09 13:40 -------- d-----w- c:\program files\Common Files\Skype
2010-02-09 13:40 . 2010-02-09 13:40 -------- d-----r- c:\program files\Skype
2010-02-09 13:40 . 2009-04-17 18:03 -------- d-----w- c:\programdata\Skype
2010-02-09 13:17 . 2009-01-31 10:48 360584 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-02-09 13:17 . 2008-11-25 13:30 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-02-09 13:17 . 2008-11-25 13:29 28424 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-02-09 13:05 . 2008-11-25 13:29 -------- d-----w- c:\programdata\avg8
2010-02-09 13:05 . 2010-02-09 13:17 360584 ----a-w- c:\programdata\avg9\update\backup\avgtdix.sys
2010-02-09 13:05 . 2010-02-09 13:17 28424 ----a-w- c:\programdata\avg9\update\backup\avgmfx86.sys
2010-02-09 13:05 . 2008-11-25 13:30 333192 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-02-09 13:03 . 2010-02-09 13:17 502040 ----a-w- c:\programdata\avg9\update\backup\avgrsx.exe
2010-02-09 13:03 . 2010-02-09 13:14 842520 ----a-w- c:\programdata\avg9\update\backup\avgupd.exe
2010-02-09 13:03 . 2010-02-09 13:14 798488 ----a-w- c:\programdata\avg9\update\backup\avginet.dll
2010-02-09 13:03 . 2010-02-09 13:14 610072 ----a-w- c:\programdata\avg9\update\backup\avgiproxy.exe
2010-02-09 13:03 . 2010-02-09 13:14 1656088 ----a-w- c:\programdata\avg9\update\backup\avgupd.dll
2010-02-09 13:02 . 2009-12-07 17:57 -------- d-----w- c:\programdata\avg9
2010-02-09 12:59 . 2010-02-09 12:59 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2010-02-09 08:57 . 2009-10-30 17:01 -------- d-----w- c:\programdata\Norton
2010-02-09 08:57 . 2009-01-25 15:53 -------- d-----w- c:\program files\Norton Security Scan
2010-02-09 08:48 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-02-09 08:48 . 2010-02-09 08:48 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2010-02-09 08:47 . 2010-02-09 08:47 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-02-09 08:19 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-02-08 14:12 . 2008-09-23 02:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-02-08 14:00 . 2009-03-16 12:40 -------- d-----w- c:\users\vista\AppData\Roaming\ICQ
2010-01-30 16:56 . 2010-01-30 16:52 -------- d-----w- c:\program files\Testy Autoškola
2010-01-25 17:38 . 2009-07-22 17:15 -------- d-----w- c:\programdata\CyberLink
2010-01-14 10:12 . 2009-10-02 16:15 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-04 15:30 . 2009-03-16 12:41 -------- d-----w- c:\program files\ICQ6Toolbar
2010-01-03 18:48 . 2009-03-16 12:41 -------- d-----w- c:\programdata\ICQ
2010-01-02 06:38 . 2010-01-24 08:57 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-24 08:57 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 06:32 . 2010-01-24 08:57 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 04:57 . 2010-01-24 08:57 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-27 13:22 . 2008-11-25 13:39 1 ----a-w- c:\users\vista\AppData\Roaming\OpenOffice.org2\user\uno_packages\cache\stamp.sys
2009-12-20 09:53 . 2009-12-20 09:53 234016 ----a-w- c:\windows\system32\drivers\Rtlh86.sys
2009-12-18 09:08 . 2009-12-18 09:08 515848 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-12-13 17:04 . 2009-10-30 17:01 -------- d-----w- c:\programdata\NortonInstaller
2009-12-07 17:28 . 2008-11-25 12:46 107136 ----a-w- c:\users\vista\AppData\Local\GDIPFONTCACHEV1.DAT
2009-12-03 08:27 . 2009-12-03 08:27 80416 ----a-w- c:\windows\system32\RtNicProp32.dll
2009-12-03 08:27 . 2009-12-03 08:27 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0009\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0005\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0000\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 1657 ----a-w- c:\windows\inf\Ovi Player\tmp78BE.tmp
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Seznam Postak"="c:\users\vista\AppData\Local\Seznam.cz\postak.exe" [2009-07-22 416408]
"ICQ"="c:\program files\ICQ6.5\ICQ.exe" [2009-11-16 172792]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-12 98304]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-16 178712]
"IaNvSrv"="c:\program files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2008-05-03 33304]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-16 6253088]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2009-05-05 1466368]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-07 1029416]
"CognizanceTS"="c:\progra~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll" [2003-12-22 17920]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2008-02-01 61440]
"PowerForPhone"="c:\program files\P4P\P4P.exe" [2007-08-03 778240]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2008-09-23 3054136]
"ASUS Camera ScreenSaver"="c:\windows\AsScrProlog.exe" [2008-09-23 47672]
"NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2009-11-06 2090272]
"Skytel"="Skytel.exe" [2008-07-16 1833504]

c:\users\vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-3-16 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll c:\windows\System32\avgrsstx.dll c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 05:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
2008-07-18 17:52 104936 ------w- c:\program files\CyberLink\Power2Go\CLMLSvc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2009-01-23 19:23 133104 ----atw- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 14:40 155648 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2Go_Menu]
2008-06-13 16:11 210216 ------w- c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):81,27,a7,a6,61,a9,ca,01

R0 iaNvStor;Intel(R) Turbo Memory Controller;c:\windows\System32\drivers\iaNvStor.sys [23.9.2008 3:39 226328]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\drivers\avgldx86.sys [25.11.2008 14:30 333192]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\System32\drivers\avgtdix.sys [31.1.2009 11:48 360584]
R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [21.1.2008 3:23 21504]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [21.1.2008 3:23 21504]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [25.11.2008 14:29 297752]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [7.12.2009 18:57 906520]
R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [9.2.2010 14:17 285392]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [9.2.2010 10:03 4233728]
S2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe --> c:\progra~1\AVG\AVG8\avgemc.exe [?]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\System32\drivers\btwl2cap.sys [23.9.2008 4:08 29736]
S3 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21.1.2008 3:23 21504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
Cognizance REG_MULTI_SZ ASBroker ASChannel
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2010-01-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000Core.job
- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 19:23]

2010-02-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000UA.job
- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 19:23]

2010-02-09 c:\windows\Tasks\PCConfidential.job
- c:\program files\Winferno\PC Confidential\PCConfidential.exe [2009-11-12 13:10]

2010-02-09 c:\windows\Tasks\RegPowerClean.job
- c:\program files\Winferno\RegistryPowerCleaner\RegPowerClean.exe [2009-11-12 13:48]

2010-02-09 c:\windows\Tasks\RPCReminder.job
- c:\program files\Winferno\RegistryPowerCleaner\RPCReminder.exe [2009-11-12 13:34]

2010-02-09 c:\windows\Tasks\User_Feed_Synchronization-{C124C52C-7FAE-40AA-9357-D496259DA27F}.job
- c:\windows\system32\msfeedssync.exe [2010-01-24 04:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
IE: &Search
FF - ProfilePath - c:\users\vista\AppData\Roaming\Mozilla\Firefox\Profiles\ueli47bv.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=39&tp=ab&q=
FF - component: c:\program files\AVG\AVG9\Firefox\components\avgssff.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\users\vista\AppData\Local\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
HKLM-Run-Malwarebytes Anti-Malware (reboot) - c:\program files\Malwarebytes' Anti-Malware\mbam.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-09 16:48
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3099109883-2768298809-3160641335-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:86,fa,43,03,82,3d,32,5e,a9,7c,5e,72,80,79,f1,ae,5d,34,96,d1,93,09,83,
6a,0c,0c,78,c9,b0,8c,d0,88,d2,d7,ee,8b,5b,de,e4,af,35,1d,9f,28,40,02,bb,ea,\
"??"=hex:5f,4b,ce,20,89,63,05,3e,28,d7,f2,df,51,7c,e4,a3

[HKEY_USERS\S-1-5-21-3099109883-2768298809-3160641335-1000\Software\SecuROM\License information*]
"datasecu"=hex:4f,8a,57,23,03,71,db,2a,ba,af,6c,2c,9b,a9,b4,3f,52,2b,29,d1,47,
db,dc,88,17,b1,76,68,91,3c,bf,01,30,c8,df,b6,2c,c6,fb,1b,c5,1f,ed,ba,e4,82,\
"rkeysecu"=hex:68,7a,43,1e,5b,e7,66,b4,da,e7,31,31,0f,8a,c5,3d

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1140)
c:\windows\System32\APSHook.dll

- - - - - - - > 'lsass.exe'(796)
c:\windows\System32\APSHook.dll
.
Celkový čas: 2010-02-09 16:49:53
ComboFix-quarantined-files.txt 2010-02-09 15:49
ComboFix2.txt 2010-02-08 16:14

Před spuštěním: Volných bajtů: 79 508 570 112
Po spuštění: Volných bajtů: 79 502 954 496

- - End Of File - - 7DA0D41952E00E6F57DD4684EB7451C4

[motji]

Dobrý večer
AVG je placené?
ted jsou s počítačem jaké problémy?

[Marwin]

Zdravym AVG by melo bejt Free,mno problemy sou pada IE8,skousel sem pro preinstalovat ale dela to furt vista mi nabidla reseni prej abych stahnul novejsi Skype ze to dela on ale nepomohlo to,a AVG se tvari tak ze ma vyplej firewall ale nejde zapnout

[motji]

Avg vyhodte, ve free verzi není zrovna nejlepší . Doporučuji třeba kombinaci Avast + Zone alarm, oboje free

Stahněte dr. Web CureIt http://www.viry.cz/forum/viewtopic.php?f=29&t=47721
-udělejte sken , co najde nechte léčit, smazat
-sken může trvat několik hodin
-Soubor/Uložit výsledky - uložíte jako textovy soubor a zkopírujete zde

[Marwin]

Oki udelam zitra a co stim explolerem?

[motji]

Nevím , uvidíme, jestli něco najde webcureit, něco málo dočistíme. IE jste přeinstaloval a nic?
Můžeme zkusit ještě opravu Vista managerem.

[Marwin]

ano skousel musel sem ho nejdriv odinstalovat pak sem ho nainstaloval znova skousel sem i zakazat doplnky ale to taky neslo.uvidime zejtra co najde cureit,vista je za trest

[motji]

Zítra se ozvěte

[Marwin]

zdravim cureit dokocil kontrolu ale vubec nic nenasel,ani na rychlej test ani na kompletni

[motji]

Když pustíte pc v nouzovém režimu, IE je v pořádku?
Jinak bych Vám ale doporučila jiný prohlížeč, třeba Mozillu nebo Operu, jsou bezpečnější

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

Folder::
c:\programdata\NortonInstaller
Reglock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
[-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
[-HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:




-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

[Marwin]

v nouzovym rezimu IE taky nefunguje,sam se zavre bez jakykoliv hlasky,Avg sem odinstaloval pres utilitu primo od avg ale kdyz sem pustil combofix tak ten mi hlasil ze mam v ntb avg
log combofix:

ComboFix 10-02-09.04 - vista 10.02.2010 13:26:35.3.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3070.1921 [GMT 1:00]
Spuštěný z: c:\users\vista\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\vista\Desktop\CFScript.txt
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\NortonInstaller
c:\programdata\NortonInstaller\Logs\02-09-2010-09h57m29s\Install.1.mft.7z
c:\programdata\NortonInstaller\Logs\02-09-2010-09h57m29s\NortonInstall-02-09-2010-09h57m29s.log
c:\programdata\NortonInstaller\Logs\02-09-2010-09h57m39s\NortonInstall-02-09-2010-09h57m39s.log
c:\programdata\NortonInstaller\Logs\10-30-2009-18h01m27s\Install.1.mft.7z
c:\programdata\NortonInstaller\Logs\10-30-2009-18h01m27s\Norton Security Scan-0x11B4.log
c:\programdata\NortonInstaller\Logs\10-30-2009-18h01m27s\NortonInstall-10-30-2009-18h01m27s.log
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m21s\Install.1.mft.7z
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m21s\NortonInstall-12-13-2009-18h04m21s.log
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m23s\Install.1.mft.7z
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m23s\Norton Security Scan-0x1FD4.log
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m23s\NortonInstall-12-13-2009-18h04m23s.log
c:\programdata\NortonInstaller\Logs\12-13-2009-18h04m27s\NortonInstall-12-13-2009-18h04m27s.log

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-10 do 2010-02-10 )))))))))))))))))))))))))))))))
.

2010-02-10 12:31 . 2010-02-10 12:31 -------- d-----w- c:\users\vista\AppData\Local\temp
2010-02-10 12:31 . 2010-02-10 12:31 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-02-10 12:31 . 2010-02-10 12:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-02-10 12:03 . 2010-02-10 12:03 -------- d-----w- C:\AVGTemp
2010-02-10 08:12 . 2010-02-10 08:12 -------- d-----w- c:\users\vista\DoctorWeb
2010-02-09 16:01 . 2010-02-09 16:02 -------- d-----w- C:\rsit
2010-02-09 16:01 . 2010-02-09 16:02 -------- d-----w- c:\program files\trend micro
2010-02-09 13:40 . 2010-02-09 13:40 -------- d-----w- c:\program files\Common Files\Skype
2010-02-09 13:40 . 2010-02-09 13:40 -------- d-----r- c:\program files\Skype
2010-02-09 12:59 . 2010-02-09 12:59 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2010-02-09 12:59 . 2010-02-09 15:36 -------- d-----w- c:\users\vista\AppData\Roaming\SUPERAntiSpyware.com
2010-02-09 12:59 . 2010-02-09 15:35 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-02-09 12:15 . 2010-02-09 12:15 -------- d-----w- c:\program files\CCleaner
2010-02-09 09:29 . 2010-02-09 09:29 -------- d-----w- c:\users\vista\AppData\Local\ATI
2010-02-09 09:17 . 2010-02-09 09:17 -------- d-----w- c:\users\vista\AppData\Roaming\Malwarebytes
2010-02-09 09:17 . 2010-02-09 09:17 -------- d-----w- c:\programdata\Malwarebytes
2010-02-09 09:03 . 2009-06-19 10:33 2756608 ----a-w- c:\windows\system32\NETw5r32.dll
2010-02-09 09:03 . 2009-05-28 21:41 4233728 ----a-w- c:\windows\system32\drivers\NETw5v32.sys
2010-02-09 08:57 . 2010-02-09 08:57 -------- d-----w- c:\programdata\Symantec
2010-02-09 08:48 . 2010-02-09 08:48 -------- d-----w- c:\program files\Windows Portable Devices
2010-02-09 08:41 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2010-02-09 08:41 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2010-02-09 08:41 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2010-02-09 08:41 . 2009-09-25 01:33 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2010-02-09 08:41 . 2009-09-24 22:54 258048 ----a-w- c:\windows\system32\winspool.drv
2010-02-09 08:41 . 2009-09-25 01:27 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2010-02-09 08:41 . 2009-09-25 01:27 37888 ----a-w- c:\windows\system32\cdd.dll
2010-02-09 08:39 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2010-02-09 08:39 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2010-02-09 08:39 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\ca-ES
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\eu-ES
2010-02-09 08:19 . 2010-02-09 08:19 -------- d-----w- c:\windows\system32\vi-VN
2010-02-08 14:21 . 2010-02-08 14:21 -------- d-----w- c:\windows\system32\EventProviders
2010-02-05 08:50 . 2010-02-05 08:50 -------- d-----r- C:\assembly
2010-01-30 16:53 . 2010-01-30 16:53 93 ----a-w- c:\users\vista\AppData\Local\fusioncache.dat
2010-01-30 16:52 . 2010-01-30 16:56 766 ----a-r- c:\users\vista\AppData\Roaming\Microsoft\Installer\{8BB65964-56E7-4DC7-B65D-3EF5FEC9842A}\_4ae13d6c.exe
2010-01-30 16:52 . 2010-01-30 16:56 766 ----a-r- c:\users\vista\AppData\Roaming\Microsoft\Installer\{8BB65964-56E7-4DC7-B65D-3EF5FEC9842A}\_2cd672ae.exe
2010-01-30 16:52 . 2010-01-30 16:56 -------- d-----w- c:\program files\Testy Autoškola
2010-01-30 16:50 . 2010-01-30 16:50 -------- d-----w- c:\windows\system32\URTTEMP
2010-01-25 17:38 . 2010-01-25 17:38 -------- d-----w- c:\users\vista\AppData\Roaming\CyberLink
2010-01-25 17:38 . 2010-01-25 17:38 -------- d-----w- c:\users\Public\CyberLink
2010-01-15 19:42 . 2010-01-24 08:48 -------- d-----w- c:\program files\TopCD
2010-01-13 18:54 . 2009-10-19 13:38 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-01-13 18:54 . 2009-10-19 13:35 72704 ----a-w- c:\windows\system32\fontsub.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-10 12:21 . 2009-04-17 18:03 -------- d-----w- c:\users\vista\AppData\Roaming\Skype
2010-02-10 12:19 . 2008-11-25 13:39 -------- d-----w- c:\users\vista\AppData\Roaming\OpenOffice.org2
2010-02-10 12:18 . 2009-12-07 17:57 -------- d-----w- c:\programdata\avg9
2010-02-10 12:18 . 2008-11-25 12:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2010-02-10 12:18 . 2008-11-25 13:29 -------- d-----w- c:\program files\AVG
2010-02-10 12:15 . 2008-09-23 01:41 12 ----a-w- c:\windows\bthservsdp.dat
2010-02-10 12:05 . 2008-04-17 10:34 652646 ----a-w- c:\windows\system32\perfh005.dat
2010-02-10 12:05 . 2008-04-17 10:34 141570 ----a-w- c:\windows\system32\perfc005.dat
2010-02-10 12:04 . 2008-11-25 13:29 -------- d-----w- c:\programdata\avg8
2010-02-10 11:25 . 2009-07-11 14:00 -------- dc-h--w- c:\programdata\{51FC4C90-DF10-4D41-963E-DB3050C1267C}
2010-02-10 08:01 . 2009-04-17 18:07 -------- d-----w- c:\users\vista\AppData\Roaming\skypePM
2010-02-09 15:47 . 2010-01-03 18:39 -------- d-----w- c:\program files\ICQ6.5
2010-02-09 13:40 . 2009-04-17 18:03 -------- d-----w- c:\programdata\Skype
2010-02-09 08:57 . 2009-10-30 17:01 -------- d-----w- c:\programdata\Norton
2010-02-09 08:57 . 2009-01-25 15:53 -------- d-----w- c:\program files\Norton Security Scan
2010-02-09 08:48 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-02-09 08:48 . 2010-02-09 08:48 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2010-02-09 08:47 . 2010-02-09 08:47 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-02-09 08:19 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-02-09 08:19 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-02-08 14:12 . 2008-09-23 02:03 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-02-08 14:00 . 2009-03-16 12:40 -------- d-----w- c:\users\vista\AppData\Roaming\ICQ
2010-01-30 16:56 . 2010-01-30 16:52 -------- d-----w- c:\program files\Testy Autoškola
2010-01-25 17:38 . 2009-07-22 17:15 -------- d-----w- c:\programdata\CyberLink
2010-01-14 10:12 . 2009-10-02 16:15 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-04 15:30 . 2009-03-16 12:41 -------- d-----w- c:\program files\ICQ6Toolbar
2010-01-03 18:48 . 2009-03-16 12:41 -------- d-----w- c:\programdata\ICQ
2010-01-02 06:38 . 2010-01-24 08:57 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-24 08:57 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 06:32 . 2010-01-24 08:57 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 04:57 . 2010-01-24 08:57 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-27 13:22 . 2008-11-25 13:39 1 ----a-w- c:\users\vista\AppData\Roaming\OpenOffice.org2\user\uno_packages\cache\stamp.sys
2009-12-20 09:53 . 2009-12-20 09:53 234016 ----a-w- c:\windows\system32\drivers\Rtlh86.sys
2009-12-18 09:08 . 2009-12-18 09:08 515848 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-12-07 17:28 . 2008-11-25 12:46 107136 ----a-w- c:\users\vista\AppData\Local\GDIPFONTCACHEV1.DAT
2009-12-03 08:27 . 2009-12-03 08:27 80416 ----a-w- c:\windows\system32\RtNicProp32.dll
2009-12-03 08:27 . 2009-12-03 08:27 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0009\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0005\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 52948 ----a-w- c:\windows\inf\Ovi Player\0000\tmp78BD.tmp
2009-11-29 15:29 . 2009-11-29 15:29 1657 ----a-w- c:\windows\inf\Ovi Player\tmp78BE.tmp
.

((((((((((((((((((((((((((((( SnapShot@2010-02-09_15.48.16 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-21 01:58 . 2010-02-10 12:19 63246 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2008-11-25 12:47 . 2010-02-10 12:02 13982 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3099109883-2768298809-3160641335-1000_UserData.bin
- 2008-11-25 12:42 . 2010-02-09 12:57 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2008-11-25 12:42 . 2010-02-10 08:05 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-11-25 12:42 . 2010-02-09 12:57 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-11-25 12:42 . 2010-02-10 08:05 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2008-11-25 12:42 . 2010-02-09 12:57 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2008-11-25 12:42 . 2010-02-10 08:05 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-10-02 17:52 . 2010-02-09 14:41 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-10-02 17:52 . 2010-02-10 12:19 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-10-02 17:52 . 2010-02-09 14:41 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-10-02 17:52 . 2010-02-10 12:19 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-10-02 17:52 . 2010-02-10 12:19 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-10-02 17:52 . 2010-02-09 14:41 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-01-26 15:54 . 2010-02-09 14:39 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-01-26 15:54 . 2010-02-10 12:17 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-01-26 15:54 . 2010-02-10 12:17 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-01-26 15:54 . 2010-02-09 14:39 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-01-26 15:54 . 2010-02-09 14:39 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-01-26 15:54 . 2010-02-10 12:17 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-02-10 12:17 . 2010-02-10 12:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-02-09 14:39 . 2010-02-09 14:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-02-09 14:39 . 2010-02-09 14:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-02-10 12:17 . 2010-02-10 12:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2006-11-02 13:05 . 2010-02-10 12:19 105978 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 10:33 . 2010-02-10 12:05 642234 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2010-02-09 14:46 642234 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2010-02-09 14:46 123926 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2010-02-10 12:05 123926 c:\windows\System32\perfc009.dat
+ 2009-06-03 20:06 . 2010-02-10 08:07 229894050 c:\windows\winsxs\ManifestCache\6.0.6002.18005_001c11ba_blobs.bin
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Seznam Postak"="c:\users\vista\AppData\Local\Seznam.cz\postak.exe" [2009-07-22 416408]
"ICQ"="c:\program files\ICQ6.5\ICQ.exe" [2009-11-16 172792]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-12 98304]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-16 178712]
"IaNvSrv"="c:\program files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2008-05-03 33304]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-16 6253088]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2009-05-05 1466368]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-07 1029416]
"CognizanceTS"="c:\progra~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll" [2003-12-22 17920]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2008-02-01 61440]
"PowerForPhone"="c:\program files\P4P\P4P.exe" [2007-08-03 778240]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2008-09-23 3054136]
"ASUS Camera ScreenSaver"="c:\windows\AsScrProlog.exe" [2008-09-23 47672]
"NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2009-11-06 2090272]
"Skytel"="Skytel.exe" [2008-07-16 1833504]

c:\users\vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-3-16 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\APSHook.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 05:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
2008-07-18 17:52 104936 ------w- c:\program files\CyberLink\Power2Go\CLMLSvc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2009-01-23 19:23 133104 ----atw- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 14:40 155648 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2Go_Menu]
2008-06-13 16:11 210216 ------w- c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):81,27,a7,a6,61,a9,ca,01

R0 iaNvStor;Intel(R) Turbo Memory Controller;c:\windows\System32\drivers\iaNvStor.sys [23.9.2008 3:39 226328]
R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [21.1.2008 3:23 21504]
R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [21.1.2008 3:23 21504]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [9.2.2010 10:03 4233728]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\System32\drivers\btwl2cap.sys [23.9.2008 4:08 29736]
S3 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21.1.2008 3:23 21504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
Cognizance REG_MULTI_SZ ASBroker ASChannel
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2010-01-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000Core.job
- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 19:23]

2010-02-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000UA.job
- c:\users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 19:23]

2010-02-10 c:\windows\Tasks\PCConfidential.job
- c:\program files\Winferno\PC Confidential\PCConfidential.exe [2009-11-12 13:10]

2010-02-10 c:\windows\Tasks\RegPowerClean.job
- c:\program files\Winferno\RegistryPowerCleaner\RegPowerClean.exe [2009-11-12 13:48]

2010-02-10 c:\windows\Tasks\RPCReminder.job
- c:\program files\Winferno\RegistryPowerCleaner\RPCReminder.exe [2009-11-12 13:34]

2010-02-10 c:\windows\Tasks\User_Feed_Synchronization-{C124C52C-7FAE-40AA-9357-D496259DA27F}.job
- c:\windows\system32\msfeedssync.exe [2010-01-24 04:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
IE: &Search
FF - ProfilePath - c:\users\vista\AppData\Roaming\Mozilla\Firefox\Profiles\ueli47bv.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=39&tp=ab&q=
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\users\vista\AppData\Local\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-GamingHarbor Toolbar - c:\programdata\{51FC4C90-DF10-4D41-963E-DB3050C1267C}\Setup.exe
AddRemove-{1B602410-D983-4947-98FE-EE749073D15E} - c:\programdata\{51FC4C90-DF10-4D41-963E-DB3050C1267C}\Setup.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-10 13:31
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3099109883-2768298809-3160641335-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:86,fa,43,03,82,3d,32,5e,a9,7c,5e,72,80,79,f1,ae,5d,34,96,d1,93,09,83,
6a,0c,0c,78,c9,b0,8c,d0,88,d2,d7,ee,8b,5b,de,e4,af,35,1d,9f,28,40,02,bb,ea,\
"??"=hex:5f,4b,ce,20,89,63,05,3e,28,d7,f2,df,51,7c,e4,a3

[HKEY_USERS\S-1-5-21-3099109883-2768298809-3160641335-1000\Software\SecuROM\License information*]
"datasecu"=hex:4f,8a,57,23,03,71,db,2a,ba,af,6c,2c,9b,a9,b4,3f,52,2b,29,d1,47,
db,dc,88,17,b1,76,68,91,3c,bf,01,30,c8,df,b6,2c,c6,fb,1b,c5,1f,ed,ba,e4,82,\
"rkeysecu"=hex:68,7a,43,1e,5b,e7,66,b4,da,e7,31,31,0f,8a,c5,3d
.
Celkový čas: 2010-02-10 13:33:23
ComboFix-quarantined-files.txt 2010-02-10 12:33
ComboFix2.txt 2010-02-09 15:49
ComboFix3.txt 2010-02-08 16:14

Před spuštěním: Volných bajtů: 76 824 449 024
Po spuštění: Volných bajtů: 76 799 455 232

- - End Of File - - F4ACB9E8C187D44EFDB582BBE8310998

[motji]

Jestli si troufnete do registrů, nechte vyhledat klíče s názvy AVG a smažte je, pak na to ještě mrknem, připomente mi to

Odinstalujte combofix přes
Start >> Spustit zkopírujte do okénka:

ComboFix /Uninstall

stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.



Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir


Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe



Stáhněte Ccleaner,viz můj podpis
-nainstalujte a vyčištěte dočasné soubory, i registry

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

Zkuste přeinstalovat IE8 takto:
http://support.microsoft.com/kb/318378/cs

Pokud to nepomůže, zkuste opravu vista managerem - trochu si s tím pohrajte

http://www.studna.cz/go/download/fid/67 ... 4bfa7db297

Návod mám jen na win xp manager, ale mělo by to být podobné
http://www.viry.cz/forum/viewtopic.php?f=46&t=17549

[Marwin]

IE se uz funguje,vyresil sem to tak ze sem zakazal vsechny doplnky a zacal fungovat.s NTB uz problemy nejsou,prikladam novy log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by vista at 2010-02-10 15:43:20
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 72 GB (47%) free of 153 GB
Total RAM: 3070 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:43:22, on 10.2.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files\ATK Hotkey\HControlUser.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\P4P\P4P.exe
C:\Windows\AsScrPro.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\vista\Desktop\RSIT.exe
C:\Program Files\trend micro\vista.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [HControlUser] "C:\Program Files\ATK Hotkey\HcontrolUser.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] "C:\Program Files\P4P\P4P.exe"
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunOnce: [Uninstall Adobe Download Manager] "C:\Windows\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1noarp
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\vista\AppData\Local\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra 'Tools' menuitem: PC Confidential - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: PC Confidential - {925DAB62-F9AC-4221-806A-057BFB1014AA} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Users\vista\AppData\Local\Seznam.cz\listicka.dll (HKCU)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\APSHook.dll
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--
End of file - 8714 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3099109883-2768298809-3160641335-1000UA.job
C:\Windows\tasks\PCConfidential.job
C:\Windows\tasks\RegPowerClean.job
C:\Windows\tasks\RPCReminder.job
C:\Windows\tasks\User_Feed_Synchronization-{C124C52C-7FAE-40AA-9357-D496259DA27F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-21 70928]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"HControlUser"=C:\Program Files\ATK Hotkey\HcontrolUser.exe [2008-01-12 98304]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-23 7766016]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-16 178712]
"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2008-05-03 33304]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-07-16 6253088]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2009-05-05 1466368]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-07 1029416]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-22 17920]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2008-02-01 61440]
"PowerForPhone"=C:\Program Files\P4P\P4P.exe [2007-08-03 778240]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2008-09-23 3054136]
"ASUS Camera ScreenSaver"=C:\Windows\AsScrProlog.exe [2008-09-23 47672]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NokiaMusic FastStart"=C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe [2009-11-06 2090272]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-28 2757512]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall Adobe Download Manager"=C:\Program Files\NOS\bin\getPlus_Helper.dll [2010-01-25 67360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-06-09 2363392]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Seznam Postak"=C:\Users\vista\AppData\Local\Seznam.cz\postak.exe [2009-07-22 416408]
"ICQ"=C:\Program Files\ICQ6.5\ICQ.exe [2009-11-16 172792]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-12 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2008-07-18 104936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\vista\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-23 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2Go_Menu]
C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]
C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE [2008-12-05 460216]

C:\Users\vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 2.4.lnk - C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\APSHook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-02-10 15:43:20 ----D---- C:\rsit
2010-02-10 15:33:14 ----D---- C:\ProgramData\NOS
2010-02-10 15:33:14 ----D---- C:\Program Files\NOS
2010-02-10 13:35:28 ----A---- C:\Windows\system32\aswBoot.exe
2010-02-10 13:35:22 ----D---- C:\ProgramData\Alwil Software
2010-02-10 13:33:28 ----SHD---- C:\$RECYCLE.BIN
2010-02-10 13:33:26 ----D---- C:\Windows\temp
2010-02-10 13:03:13 ----D---- C:\AVGTemp
2010-02-09 17:01:54 ----D---- C:\Program Files\trend micro
2010-02-09 14:40:13 ----D---- C:\Program Files\Common Files\Skype
2010-02-09 14:40:12 ----RD---- C:\Program Files\Skype
2010-02-09 13:59:18 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2010-02-09 13:59:05 ----D---- C:\Users\vista\AppData\Roaming\SUPERAntiSpyware.com
2010-02-09 13:59:05 ----D---- C:\Program Files\SUPERAntiSpyware
2010-02-09 13:15:20 ----D---- C:\Program Files\CCleaner
2010-02-09 10:17:41 ----D---- C:\Users\vista\AppData\Roaming\Malwarebytes
2010-02-09 10:17:36 ----D---- C:\ProgramData\Malwarebytes
2010-02-09 10:03:32 ----A---- C:\Windows\system32\NETw5r32.dll
2010-02-09 09:57:32 ----D---- C:\ProgramData\Symantec
2010-02-09 09:48:39 ----D---- C:\Program Files\Windows Portable Devices
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIRibbon.dll
2010-02-09 09:41:30 ----A---- C:\Windows\system32\UIAnimation.dll
2010-02-09 09:41:01 ----A---- C:\Windows\system32\WMPhoto.dll
2010-02-09 09:41:00 ----A---- C:\Windows\system32\cdd.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\xpsservices.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsPrint.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-02-09 09:40:59 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\OpcServices.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\FntCache.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxgi.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxdiagn.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\dxdiag.exe
2010-02-09 09:40:59 ----A---- C:\Windows\system32\DWrite.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d11.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10warp.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10level9.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10core.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-02-09 09:40:59 ----A---- C:\Windows\system32\d2d1.dll
2010-02-09 09:40:58 ----A---- C:\Windows\system32\d3d10_1.dll
2010-02-09 09:40:58 ----A---- C:\Windows\system32\d3d10.dll
2010-02-09 09:40:23 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2010-02-09 09:40:23 ----A---- C:\Windows\system32\wpdbusenum.dll
2010-02-09 09:40:23 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2010-02-09 09:40:18 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2010-02-09 09:40:16 ----A---- C:\Windows\system32\WpdMtpUS.dll
2010-02-09 09:40:16 ----A---- C:\Windows\system32\WpdConns.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WPDSp.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\wpdshext.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\WpdMtp.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\wpd_ci.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-02-09 09:40:15 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\UIAutomationCore.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\oleaccrc.dll
2010-02-09 09:39:19 ----A---- C:\Windows\system32\oleacc.dll
2010-02-09 09:19:19 ----D---- C:\Windows\system32\vi-VN
2010-02-09 09:19:19 ----D---- C:\Windows\system32\eu-ES
2010-02-09 09:19:19 ----D---- C:\Windows\system32\ca-ES
2010-02-08 16:50:52 ----D---- C:\Windows\ERDNT
2010-02-08 15:21:04 ----D---- C:\Windows\system32\EventProviders
2010-02-05 09:50:05 ----RD---- C:\assembly
2010-01-30 17:52:51 ----D---- C:\Program Files\Testy Autoškola
2010-01-30 17:50:27 ----D---- C:\Windows\system32\URTTEMP
2010-01-25 18:38:52 ----D---- C:\Users\vista\AppData\Roaming\CyberLink
2010-01-24 09:58:02 ----A---- C:\Windows\system32\mshtml.dll
2010-01-24 09:58:01 ----A---- C:\Windows\system32\ieframe.dll
2010-01-24 09:57:59 ----A---- C:\Windows\system32\iertutil.dll
2010-01-24 09:57:58 ----A---- C:\Windows\system32\wininet.dll
2010-01-24 09:57:58 ----A---- C:\Windows\system32\urlmon.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\occache.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-24 09:57:57 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-24 09:57:56 ----A---- C:\Windows\system32\ieui.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-24 09:57:55 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-24 09:57:55 ----A---- C:\Windows\system32\iepeers.dll
2010-01-24 09:57:54 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-24 09:57:51 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-24 09:57:51 ----A---- C:\Windows\system32\iesetup.dll
2010-01-24 09:57:51 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-24 09:57:50 ----A---- C:\Windows\system32\iernonce.dll
2010-01-15 20:42:53 ----D---- C:\Program Files\TopCD
2010-01-13 19:54:57 ----A---- C:\Windows\system32\t2embed.dll
2010-01-13 19:54:57 ----A---- C:\Windows\system32\fontsub.dll

======List of files/folders modified in the last 1 months======

2010-02-10 15:36:50 ----SHD---- C:\Windows\Installer
2010-02-10 15:36:49 ----RD---- C:\Program Files
2010-02-10 15:36:46 ----D---- C:\Windows
2010-02-10 15:36:24 ----SHD---- C:\System Volume Information
2010-02-10 15:33:22 ----SD---- C:\Windows\Downloaded Program Files
2010-02-10 15:33:14 ----D---- C:\ProgramData
2010-02-10 15:04:15 ----D---- C:\Users\vista\AppData\Roaming\Skype
2010-02-10 15:04:10 ----D---- C:\Users\vista\AppData\Roaming\OpenOffice.org2
2010-02-10 14:42:27 ----A---- C:\Windows\system32\acovcnt.exe
2010-02-10 13:58:13 ----SD---- C:\ProgramData\Microsoft
2010-02-10 13:43:42 ----D---- C:\Windows\System32
2010-02-10 13:36:36 ----D---- C:\Windows\system32\drivers
2010-02-10 13:36:26 ----D---- C:\Windows\winsxs
2010-02-10 13:35:22 ----D---- C:\Program Files\Alwil Software
2010-02-10 13:31:43 ----A---- C:\Windows\system.ini
2010-02-10 13:29:10 ----D---- C:\Windows\AppPatch
2010-02-10 13:29:09 ----D---- C:\Program Files\Common Files
2010-02-10 13:18:14 ----D---- C:\ProgramData\avg9
2010-02-10 13:18:13 ----D---- C:\Program Files\AVG
2010-02-10 13:09:10 ----D---- C:\Program Files\Mozilla Firefox
2010-02-10 13:05:34 ----D---- C:\Windows\inf
2010-02-10 13:05:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-10 13:04:57 ----SD---- C:\Users\vista\AppData\Roaming\Microsoft
2010-02-10 13:04:49 ----D---- C:\ProgramData\avg8
2010-02-10 13:03:39 ----D---- C:\Windows\system32\Tasks
2010-02-10 12:25:25 ----HDC---- C:\ProgramData\{51FC4C90-DF10-4D41-963E-DB3050C1267C}
2010-02-10 09:07:50 ----D---- C:\Windows\system32\catroot
2010-02-10 09:07:49 ----D---- C:\Windows\system32\catroot2
2010-02-10 09:01:55 ----D---- C:\Users\vista\AppData\Roaming\skypePM
2010-02-09 16:47:40 ----D---- C:\Program Files\ICQ6.5
2010-02-09 14:40:12 ----D---- C:\ProgramData\Skype
2010-02-09 14:01:49 ----D---- C:\Windows\Prefetch
2010-02-09 13:18:13 ----D---- C:\Windows\Debug
2010-02-09 13:08:10 ----D---- C:\Windows\rescache
2010-02-09 13:07:53 ----D---- C:\Windows\system32\migration
2010-02-09 13:07:53 ----D---- C:\Windows\system32\cs-CZ
2010-02-09 13:07:53 ----D---- C:\Program Files\Internet Explorer
2010-02-09 13:07:52 ----D---- C:\Windows\system32\en-US
2010-02-09 13:07:52 ----D---- C:\Windows\PolicyDefinitions
2010-02-09 11:52:47 ----D---- C:\Windows\Branding
2010-02-09 10:28:15 ----D---- C:\Windows\DigitalLocker
2010-02-09 09:57:37 ----D---- C:\Windows\Microsoft.NET
2010-02-09 09:57:36 ----RSD---- C:\Windows\assembly
2010-02-09 09:57:36 ----D---- C:\ProgramData\Norton
2010-02-09 09:57:36 ----D---- C:\Program Files\Norton Security Scan
2010-02-09 09:57:33 ----D---- C:\Windows\Tasks
2010-02-09 09:48:32 ----D---- C:\Windows\system32\wbem
2010-02-09 09:48:29 ----D---- C:\Windows\system32\zh-HK
2010-02-09 09:48:29 ----D---- C:\Windows\system32\uk-UA
2010-02-09 09:48:29 ----D---- C:\Windows\system32\sl-SI
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pt-PT
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pt-BR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\pl-PL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\nl-NL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\ko-KR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\it-IT
2010-02-09 09:48:29 ----D---- C:\Windows\system32\hu-HU
2010-02-09 09:48:29 ----D---- C:\Windows\system32\hr-HR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\he-IL
2010-02-09 09:48:29 ----D---- C:\Windows\system32\el-GR
2010-02-09 09:48:29 ----D---- C:\Windows\system32\bg-BG
2010-02-09 09:48:28 ----D---- C:\Windows\system32\zh-TW
2010-02-09 09:48:28 ----D---- C:\Windows\system32\tr-TR
2010-02-09 09:48:28 ----D---- C:\Windows\system32\th-TH
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sv-SE
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sr-Latn-CS
2010-02-09 09:48:28 ----D---- C:\Windows\system32\sk-SK
2010-02-09 09:48:28 ----D---- C:\Windows\system32\lv-LV
2010-02-09 09:48:28 ----D---- C:\Windows\system32\lt-LT
2010-02-09 09:48:28 ----D---- C:\Windows\system32\fr-FR
2010-02-09 09:48:28 ----D---- C:\Windows\system32\fi-FI
2010-02-09 09:48:28 ----D---- C:\Windows\system32\et-EE
2010-02-09 09:48:28 ----D---- C:\Windows\system32\es-ES
2010-02-09 09:48:28 ----D---- C:\Windows\system32\de-DE
2010-02-09 09:48:25 ----D---- C:\Windows\system32\zh-CN
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ru-RU
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ro-RO
2010-02-09 09:48:25 ----D---- C:\Windows\system32\nb-NO
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ja-JP
2010-02-09 09:48:25 ----D---- C:\Windows\system32\da-DK
2010-02-09 09:48:25 ----D---- C:\Windows\system32\ar-SA
2010-02-09 09:32:54 ----D---- C:\Boot
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Sidebar
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Photo Gallery
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Media Player
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Mail
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Journal
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Collaboration
2010-02-09 09:19:58 ----D---- C:\Program Files\Windows Calendar
2010-02-09 09:19:58 ----D---- C:\Program Files\Movie Maker
2010-02-09 09:19:58 ----D---- C:\Program Files\Common Files\System
2010-02-09 09:19:57 ----D---- C:\Windows\servicing
2010-02-09 09:19:57 ----D---- C:\Windows\ehome
2010-02-09 09:19:57 ----D---- C:\Program Files\Windows Defender
2010-02-09 09:19:48 ----D---- C:\Windows\system32\XPSViewer
2010-02-09 09:19:48 ----D---- C:\Windows\system32\oobe
2010-02-09 09:19:48 ----D---- C:\Windows\IME
2010-02-09 09:19:47 ----D---- C:\Windows\system32\setup
2010-02-09 09:19:47 ----D---- C:\Windows\system32\cs
2010-02-09 09:19:47 ----D---- C:\Windows\system32\AdvancedInstallers
2010-02-09 09:19:46 ----D---- C:\Windows\system32\SLUI
2010-02-09 09:19:46 ----D---- C:\Windows\system32\manifeststore
2010-02-09 09:19:40 ----D---- C:\Windows\system32\migwiz
2010-02-09 09:19:27 ----RSD---- C:\Windows\Fonts
2010-02-09 09:19:19 ----D---- C:\Windows\system32\Boot
2010-02-09 09:17:22 ----D---- C:\Windows\system32\RTCOM
2010-02-08 17:02:32 ----D---- C:\Windows\system32\config
2010-02-08 15:43:49 ----D---- C:\Windows\system32\WDI
2010-02-08 15:12:37 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-02-08 15:00:50 ----D---- C:\Users\vista\AppData\Roaming\ICQ
2010-02-05 09:55:45 ----D---- C:\Windows\Registration
2010-01-25 18:38:56 ----D---- C:\ProgramData\CyberLink
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-01-28 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-01-28 46672]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-01-28 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-01-28 51792]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-08-09 45568]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-03-28 3544064]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-06-17 146824]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-07-16 2156312]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-25 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2009-05-28 4233728]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2009-12-20 234016]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-05-05 1095808]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2007-10-01 1769984]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-12-07 196400]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer; \??\E:\I386\AsProcOb.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-03-17 81960]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2008-03-17 100392]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-01-29 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-03-17 17320]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbser;Nokia USB Serial Port; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-03 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-03-28 667648]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-04-10 518696]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-16 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 getPlusHelper;@C:\Program Files\NOS\bin\getPlus_Helper.dll,-101; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 ServiceLayer;ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [2009-09-17 651776]

-----------------EOF-----------------

[motji]

Co to AVG? Díval jste se do registrů?
Log je v pořádku, jen bych odstranila jednu maličkost, společně s pozůstatky AVG.
Ted musím od počítače, budu tu večer

[Marwin]

AVG sem smazal z registru teda to cim sem si byl uplne jistej