Problem se zpomalenim systemu

[hala37]

Zdravim mam problem posledni dobou se mi hrozne zpomalil system na pritelcine notebooku,tak sem prikladam log z hijackthis(snad sem to vlozil do spravne sekce)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:31:34, on 29.1.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Windows\explorer.exe
C:\Users\hp\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: PHOTOfunSTUDIO 4.0 HD Edition.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9953512b9f781) (gupdate1c9953512b9f781) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8988 bytes

[Caroprd111]

Zdravím

Na logu se pracuje, prosím o strpení.

[hala37]

děkuju za informaci

[Caroprd111]

Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy.

V logu nevidím firewall, doinstalujte Přehled: http://www.viry.cz/forum/viewtopic.php?f=41&t=6523

Doporučuji aktualizovat Adobe Reader http://www.stahuj.centrum.cz/podnikani_ ... batreader/

Použijte StartUpLite Stáhnete zde: http://www.malwarebytes.org/StartUpLite.exe vypíše seznam zbytečně spouštěných programů po startu, vyberete které chcete zastavit, u nich zaškrtnete Disable a klikněte na Continue.


Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478
- Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.

Záložka Čistič
- Dejte analyzovat, po dokončení dejte Spustit Ccleaner.

Záložka Registry
- Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
OK Zavřít


Defragmentujte disk.

Dejte log z RSIT http://www.viry.cz/forum/viewtopic.php?f=30&t=82744

[hala37]

dobře,ale kdyžtak to udělám zítra(až budu u toho dotyčného pc),protože tohle všechno by už asi přítelkyně nezvládla,už jen ten vypis z hijacku ji trval celkem dlouho.
Každopádně zatím děkuju

[Caroprd111]

Nevadí, budu tu i zítra

[hala37]

Tak ty první rady jsem už provedl.Tady je výpis z RSIT:

Logfile of random's system information tool 1.06 (written by random/random)
Run by hp at 2010-01-30 11:35:17
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 74 GB (50%) free of 147 GB
Total RAM: 1022 MB (15% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:36:16, on 30.1.2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\hp\Desktop\RSIT.exe
C:\Program Files\trend micro\hp.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: PHOTOfunSTUDIO 4.0 HD Edition.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9953512b9f781) (gupdate1c9953512b9f781) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8793 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\SLOW-PCfighter.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-10 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-07-17 691656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-11-15 815104]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-01-15 172032]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-11-06 159744]
"HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2006-12-04 46704]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-01-10 472776]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
"BtTray"=C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [2008-08-29 258134]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-10 136600]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-12-04 13556256]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-12-04 92704]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-02-16 981384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Windows\SMINST\launcher.exe [2006-11-07 44128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
PHOTOfunSTUDIO 4.0 HD Edition.lnk - C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf915c2c-75fd-11dd-a8ba-000000000000}]
shell\AutoRun\command - F:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f7ee2b14-badf-11dd-94ff-0011671187d7}]
shell\AutoRun\command - H:\RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe
shell\open\command - H:\RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-01-30 11:35:23 ----D---- C:\Program Files\trend micro
2010-01-30 11:35:17 ----D---- C:\rsit
2010-01-30 11:24:26 ----A---- C:\Windows\system32\netiougc.exe
2010-01-30 11:24:25 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-01-30 11:22:03 ----A---- C:\Windows\system32\vsregexp.dll
2010-01-30 11:21:53 ----A---- C:\Windows\system32\zlcommdb.dll
2010-01-30 11:21:52 ----A---- C:\Windows\system32\zlcomm.dll
2010-01-30 11:21:31 ----A---- C:\Windows\system32\vswmi.dll
2010-01-30 11:21:26 ----A---- C:\Windows\system32\zpeng25.dll
2010-01-30 11:21:26 ----A---- C:\Windows\system32\vsxml.dll
2010-01-30 11:21:24 ----D---- C:\Program Files\Zone Labs
2010-01-30 11:21:24 ----A---- C:\Windows\system32\vspubapi.dll
2010-01-30 11:21:24 ----A---- C:\Windows\system32\vsmonapi.dll
2010-01-30 11:21:00 ----A---- C:\Windows\system32\vsdata.dll
2010-01-30 11:19:01 ----D---- C:\Windows\system32\ZoneLabs
2010-01-30 11:18:11 ----D---- C:\ProgramData\CheckPoint
2010-01-30 11:18:05 ----A---- C:\Windows\system32\vsinit.dll
2010-01-30 11:18:04 ----A---- C:\Windows\system32\vsutil.dll
2010-01-30 10:56:38 ----D---- C:\PerfLogs
2010-01-30 10:09:10 ----D---- C:\Windows\Internet Logs
2010-01-30 00:48:50 ----D---- C:\Program Files\Defraggler
2010-01-30 00:43:11 ----D---- C:\Program Files\Common Files\Adobe
2010-01-30 00:43:11 ----D---- C:\Program Files\Adobe
2010-01-29 21:23:52 ----D---- C:\Program Files\CCleaner
2010-01-27 10:49:48 ----D---- C:\Users\hp\AppData\Roaming\GlarySoft
2010-01-22 10:31:12 ----A---- C:\Windows\system32\mshtml.dll
2010-01-22 10:31:11 ----A---- C:\Windows\system32\ieframe.dll
2010-01-22 10:31:08 ----A---- C:\Windows\system32\urlmon.dll
2010-01-22 10:31:08 ----A---- C:\Windows\system32\iertutil.dll
2010-01-22 10:31:07 ----A---- C:\Windows\system32\wininet.dll
2010-01-22 10:31:06 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-22 10:31:05 ----A---- C:\Windows\system32\occache.dll
2010-01-22 10:31:05 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-22 10:31:04 ----A---- C:\Windows\system32\ieui.dll
2010-01-22 10:31:03 ----A---- C:\Windows\system32\iepeers.dll
2010-01-22 10:31:02 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-22 10:31:01 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-22 10:31:01 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-22 10:31:01 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-22 10:31:00 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-22 10:31:00 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-22 10:30:59 ----A---- C:\Windows\system32\iesetup.dll
2010-01-22 10:30:59 ----A---- C:\Windows\system32\iernonce.dll
2010-01-12 20:55:36 ----A---- C:\Windows\system32\t2embed.dll
2010-01-12 20:55:36 ----A---- C:\Windows\system32\fontsub.dll
2010-01-11 12:34:22 ----D---- C:\ProgramData\SweetIM
2010-01-11 12:34:22 ----D---- C:\Program Files\SweetIM
2010-01-04 21:39:21 ----D---- C:\Program Files\Mirillis
2010-01-04 21:31:38 ----D---- C:\ProgramData\Panasonic
2010-01-04 20:52:11 ----D---- C:\Program Files\QuickTime
2010-01-04 20:51:45 ----D---- C:\ProgramData\Apple Computer
2010-01-04 20:49:47 ----D---- C:\Program Files\Common Files\Apple
2010-01-04 20:49:16 ----D---- C:\ProgramData\Apple
2010-01-04 20:49:16 ----D---- C:\Program Files\Apple Software Update
2010-01-04 20:47:22 ----D---- C:\Program Files\ISL
2010-01-04 20:46:11 ----D---- C:\Windows\Downloaded Installations
2010-01-04 20:44:19 ----D---- C:\Users\hp\AppData\Roaming\ArcSoft
2010-01-04 20:43:28 ----D---- C:\ProgramData\ArcSoft
2010-01-04 20:41:39 ----D---- C:\Program Files\Common Files\ArcSoft
2010-01-04 20:41:39 ----D---- C:\Program Files\ArcSoft
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK2.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK.ini
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICEntry.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\EpPicPrt.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\EPPicMgr.dll
2010-01-04 20:28:55 ----D---- C:\Program Files\Common Files\Panasonic
2010-01-04 20:28:43 ----A---- C:\Windows\system32\GenSvcInst.exe
2010-01-04 20:28:43 ----A---- C:\Windows\system32\bgsvcgen.exe
2010-01-04 20:28:10 ----D---- C:\Program Files\Panasonic
2010-01-04 20:27:54 ----D---- C:\Program Files\Microsoft Synchronization Services
2010-01-04 20:27:52 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition

======List of files/folders modified in the last 1 months======

2010-01-30 11:35:23 ----RD---- C:\Program Files
2010-01-30 11:35:16 ----D---- C:\Windows\Temp
2010-01-30 11:34:44 ----D---- C:\Users\hp\AppData\Roaming\Skype
2010-01-30 11:29:57 ----A---- C:\Windows\system32\bscs.ini
2010-01-30 11:25:59 ----D---- C:\Windows\system32\migration
2010-01-30 11:25:59 ----D---- C:\Windows\system32\drivers
2010-01-30 11:25:59 ----D---- C:\Windows\System32
2010-01-30 11:25:11 ----D---- C:\Windows\winsxs
2010-01-30 11:25:01 ----D---- C:\Windows\system32\catroot
2010-01-30 11:24:58 ----D---- C:\Windows
2010-01-30 11:24:05 ----SHD---- C:\System Volume Information
2010-01-30 11:21:59 ----D---- C:\Windows\SoftwareDistribution
2010-01-30 11:20:29 ----D---- C:\Windows\inf
2010-01-30 11:18:49 ----D---- C:\Windows\Microsoft.NET
2010-01-30 11:18:47 ----RSD---- C:\Windows\assembly
2010-01-30 11:18:11 ----HD---- C:\ProgramData
2010-01-30 11:18:03 ----SHD---- C:\Windows\Installer
2010-01-30 11:18:03 ----SHD---- C:\Config.Msi
2010-01-30 11:13:09 ----D---- C:\ProgramData\NVIDIA
2010-01-30 11:10:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-01-30 11:10:15 ----SHD---- C:\boot
2010-01-30 11:10:13 ----ASH---- C:\Program Files\desktop.ini
2010-01-30 11:10:12 ----D---- C:\Windows\system32\catroot2
2010-01-30 11:02:01 ----D---- C:\Windows\WindowsMobile
2010-01-30 10:57:52 ----D---- C:\Program Files\Windows Sidebar
2010-01-30 10:57:52 ----D---- C:\Program Files\Windows Calendar
2010-01-30 10:57:52 ----D---- C:\Program Files\Movie Maker
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Photo Gallery
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Media Player
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Mail
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Journal
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Collaboration
2010-01-30 10:57:51 ----D---- C:\Program Files\Internet Explorer
2010-01-30 10:57:50 ----D---- C:\Program Files\Windows Defender
2010-01-30 10:57:50 ----D---- C:\Program Files\Common Files\System
2010-01-30 10:57:49 ----D---- C:\Windows\servicing
2010-01-30 10:57:49 ----D---- C:\Windows\ehome
2010-01-30 10:57:48 ----D---- C:\Windows\MSAgent
2010-01-30 10:57:48 ----D---- C:\Windows\L2Schemas
2010-01-30 10:57:48 ----D---- C:\Windows\IME
2010-01-30 10:57:48 ----D---- C:\Windows\DigitalLocker
2010-01-30 10:57:47 ----D---- C:\Windows\system32\ko-KR
2010-01-30 10:57:47 ----D---- C:\Windows\system32\da-DK
2010-01-30 10:57:47 ----D---- C:\Windows\system32\com
2010-01-30 10:57:47 ----D---- C:\Windows\PolicyDefinitions
2010-01-30 10:57:44 ----D---- C:\Windows\system32\sysprep
2010-01-30 10:57:44 ----D---- C:\Windows\system32\oobe
2010-01-30 10:57:44 ----D---- C:\Windows\system32\it-IT
2010-01-30 10:57:44 ----D---- C:\Windows\system32\en-US
2010-01-30 10:57:44 ----D---- C:\Windows\system32\el-GR
2010-01-30 10:57:44 ----D---- C:\Windows\system32\de-DE
2010-01-30 10:57:43 ----D---- C:\Windows\system32\AdvancedInstallers
2010-01-30 10:57:42 ----D---- C:\Windows\system32\sv-SE
2010-01-30 10:57:42 ----D---- C:\Windows\system32\setup
2010-01-30 10:57:42 ----D---- C:\Windows\system32\ru-RU
2010-01-30 10:57:42 ----D---- C:\Windows\system32\ias
2010-01-30 10:57:42 ----D---- C:\Windows\system32\he-IL
2010-01-30 10:57:42 ----D---- C:\Windows\system32\fr-FR
2010-01-30 10:57:42 ----D---- C:\Windows\system32\fi-FI
2010-01-30 10:57:42 ----D---- C:\Windows\system32\cs-CZ
2010-01-30 10:57:42 ----D---- C:\Windows\system32\cs
2010-01-30 10:57:37 ----D---- C:\Windows\system32\SLUI
2010-01-30 10:57:37 ----D---- C:\Windows\system32\pt-PT
2010-01-30 10:57:37 ----D---- C:\Windows\system32\hu-HU
2010-01-30 10:57:35 ----D---- C:\Windows\system32\zh-TW
2010-01-30 10:57:35 ----D---- C:\Windows\system32\zh-CN
2010-01-30 10:57:35 ----D---- C:\Windows\system32\pl-PL
2010-01-30 10:57:35 ----D---- C:\Windows\system32\manifeststore
2010-01-30 10:57:35 ----D---- C:\Windows\system32\ja-JP
2010-01-30 10:57:35 ----D---- C:\Windows\system32\es-ES
2010-01-30 10:57:34 ----D---- C:\Windows\system32\ro-RO
2010-01-30 10:57:33 ----D---- C:\Windows\system32\wbem
2010-01-30 10:57:33 ----D---- C:\Windows\system32\tr-TR
2010-01-30 10:57:32 ----D---- C:\Windows\system32\nl-NL
2010-01-30 10:57:32 ----D---- C:\Windows\system32\nb-NO
2010-01-30 10:57:32 ----D---- C:\Windows\system32\ar-SA
2010-01-30 10:57:29 ----D---- C:\Windows\system32\pt-BR
2010-01-30 10:57:29 ----D---- C:\Windows\system32\migwiz
2010-01-30 10:56:54 ----RSD---- C:\Windows\Fonts
2010-01-30 10:56:53 ----D---- C:\Windows\AppPatch
2010-01-30 10:56:41 ----D---- C:\Windows\Boot
2010-01-30 10:56:40 ----D---- C:\Windows\system32\Boot
2010-01-30 10:33:23 ----A---- C:\Windows\system32\ifxcardm.dll
2010-01-30 10:33:12 ----A---- C:\Windows\system32\axaltocm.dll
2010-01-30 10:03:34 ----D---- C:\Users\hp\AppData\Roaming\skypePM
2010-01-30 00:45:07 ----D---- C:\ProgramData\Adobe
2010-01-30 00:43:11 ----D---- C:\Program Files\Common Files
2010-01-30 00:36:52 ----D---- C:\Program Files\a7titude
2010-01-30 00:31:43 ----D---- C:\Windows\Tasks
2010-01-30 00:30:47 ----D---- C:\Program Files\Crawler
2010-01-29 21:25:26 ----D---- C:\Windows\Debug
2010-01-29 21:25:24 ----D---- C:\Windows\Minidump
2010-01-28 16:15:07 ----D---- C:\Lyrics
2010-01-28 10:54:14 ----D---- C:\Users\hp\AppData\Roaming\ICQ
2010-01-27 14:33:10 ----D---- C:\Users\hp\AppData\Roaming\MiniLyrics
2010-01-27 10:40:27 ----D---- C:\Windows\system32\Tasks
2010-01-27 10:39:49 ----D---- C:\Windows\Prefetch
2010-01-14 19:08:02 ----D---- C:\Users\hp\AppData\Roaming\HpUpdate
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-01-10 22:55:40 ----D---- C:\Users\hp\AppData\Roaming\uTorrent
2010-01-07 14:26:25 ----D---- C:\Program Files\Mozilla Firefox
2010-01-05 01:17:46 ----A---- C:\Windows\system32\mrt.exe
2010-01-04 20:48:35 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-04 20:46:04 ----D---- C:\Program Files\Common Files\InstallShield
2010-01-01 19:01:43 ----D---- C:\totalcmd
2010-01-01 16:17:29 ----D---- C:\Program Files\Terasoft
2009-12-31 13:31:14 ----D---- C:\Program Files\ICQ6.5

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-11-25 23120]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrbsdrv;cdrbsdrv; C:\Windows\system32\drivers\cdrbsdrv.sys [2006-02-20 33408]
R1 eabfiltr;eabfiltr; C:\Windows\system32\DRIVERS\eabfiltr.sys [2006-06-28 8192]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2009-02-16 293528]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-20 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-15 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-15 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-15 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-05 8192]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
R3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [2007-03-05 18320]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-19 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-19 206848]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-05-03 1065384]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-12-04 7606688]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2006-09-15 11520]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-11-15 179256]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [2007-03-05 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [2007-03-05 44304]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-19 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S2 ELOADER;General Purpose USB Driver (adildr.sys); C:\Windows\System32\Drivers\adildr.sys [2007-02-07 56088]
S3 adiusbaw;USB ADSL WAN Adapter; C:\Windows\system32\DRIVERS\adiusbaw.sys [2007-02-07 118552]
S3 af0wfwnr;af0wfwnr; C:\Windows\system32\drivers\af0wfwnr.sys []
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [2007-06-24 38920]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2006-12-12 148992]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-19 15872]
S3 VHidMinidrv;Bluetooth HID Device Service; C:\Windows\system32\drivers\VHIDMini.sys [2007-03-05 19472]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\System32\bgsvcgen.exe [2007-06-15 145504]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [2008-08-29 1155180]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [2007-01-15 270431]
R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [2007-01-15 118877]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2006-12-04 58984]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-12-04 203296]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2009-02-16 2402184]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-05 386560]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 BsHelpCS;BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [2007-08-17 57447]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
S2 CLTNetCnService;Symantec Lic NetConnect service; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
S2 gupdate1c9953512b9f781;Google Update Service (gupdate1c9953512b9f781); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-22 133104]
S3 AddFiltr;AddFiltr; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe [2006-06-26 126976]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-06 887544]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-11-01 73728]

-----------------EOF-----------------

[Caroprd111]

Stáhněte a uložte, nejlépe na plochu http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypněte všechny rezidentní bezpečnostní programy - firewally, antiviry, antispywary

Spusťte aplikaci pod účtem s oprávněním Administrátora (Správce), ihned po startu se zobrází stránka s licenčnímy podmínkami, pokračujte stisknutím tlačítka "Ano"

Dále postupujte dle pokynů, během scanu nespouštějte jiné aplikace a neklikejte do zobrazujícího se okna

Scan by měl trvat okolo 5 - 10 minut, po dokončení Combofix zobrazí log C:\ComboFix.txt , který sem vložte.

Během skenování může být počítač restartován.

[hala37]

tak ted mam problem ze mi to stale pise,ze mam pusteny rezidentni stit AVASTU a ZONEALARMU,ale pritom u Avastu jsem rezidentni stit vypnul u vsech tech jeho poskytovatelu,takze je tam napsano,ze rezidentni ochrana je vypnuta a zonealarm jsem uplne vypnul,muzu dat ok nebo ne?

[Caroprd111]

Dejte OK.

[hala37]

ComboFix 10-01-29.09 - hp 30.01.2010 15:18:52.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.420.1029.18.1022.480 [GMT 1:00]
Spuštěný z: c:\users\hp\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100130-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
SP: avast! antivirus 4.8.1368 [VPS 100130-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: ZoneAlarm Anti-Spyware *enabled* (Outdated) {F245A209-1085-48B4-B927-35D56015EC60}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-3037698735-3569605704-2778876454-500
c:\program files\Mozilla Firefox\patch.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-30 )))))))))))))))))))))))))))))))
.

2010-01-30 14:30 . 2010-01-30 14:30 -------- d-----w- c:\users\hp\AppData\Local\temp
2010-01-30 14:30 . 2010-01-30 14:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-01-30 10:35 . 2010-01-30 10:36 -------- d-----w- c:\program files\trend micro
2010-01-30 10:35 . 2010-01-30 10:36 -------- d-----w- C:\rsit
2010-01-30 10:24 . 2008-02-23 02:41 22528 ----a-w- c:\windows\system32\netiougc.exe
2010-01-30 10:24 . 2008-02-23 04:38 170496 ----a-w- c:\windows\system32\tcpipcfg.dll
2010-01-30 10:21 . 2009-02-15 23:10 103816 ----a-w- c:\windows\system32\zlcommdb.dll
2010-01-30 10:21 . 2009-02-15 23:10 69000 ----a-w- c:\windows\system32\zlcomm.dll
2010-01-30 10:21 . 2009-02-15 23:10 1221512 ----a-w- c:\windows\system32\zpeng25.dll
2010-01-30 10:21 . 2010-01-30 10:21 -------- d-----w- c:\program files\Zone Labs
2010-01-30 10:19 . 2010-01-30 10:22 -------- d-----w- c:\windows\system32\ZoneLabs
2010-01-30 10:19 . 2009-02-15 23:11 293528 ----a-w- c:\windows\system32\drivers\vsdatant.sys
2010-01-30 10:18 . 2010-01-30 10:18 -------- d-----w- c:\programdata\CheckPoint
2010-01-30 09:56 . 2010-01-30 09:56 -------- d-----w- C:\PerfLogs
2010-01-30 09:09 . 2010-01-30 14:26 -------- d-----w- c:\windows\Internet Logs
2010-01-29 23:48 . 2010-01-29 23:48 -------- d-----w- c:\program files\Defraggler
2010-01-29 23:43 . 2010-01-29 23:44 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-29 20:23 . 2010-01-29 20:23 -------- d-----w- c:\program files\CCleaner
2010-01-27 09:49 . 2010-01-27 09:49 -------- d-----w- c:\users\hp\AppData\Roaming\GlarySoft
2010-01-22 09:30 . 2010-01-02 06:32 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-12 19:55 . 2009-10-19 14:27 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-01-12 19:55 . 2009-10-19 14:24 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-01-11 11:34 . 2010-01-29 23:34 -------- d-----w- c:\program files\SweetIM
2010-01-11 11:34 . 2010-01-11 11:34 -------- d-----w- c:\programdata\SweetIM
2010-01-04 20:41 . 2010-01-04 20:45 -------- d-----w- c:\users\hp\AppData\Local\Mirillis
2010-01-04 20:39 . 2010-01-04 20:39 -------- d-----w- c:\program files\Mirillis
2010-01-04 20:35 . 2010-01-04 20:35 -------- d-----w- c:\users\hp\AppData\Local\Apple Computer
2010-01-04 20:31 . 2010-01-04 20:31 -------- d-----w- c:\programdata\Panasonic
2010-01-04 19:52 . 2010-01-04 19:53 -------- d-----w- c:\program files\QuickTime
2010-01-04 19:51 . 2010-01-04 19:51 -------- d-----w- c:\programdata\Apple Computer
2010-01-04 19:49 . 2010-01-04 19:49 -------- d-----w- c:\program files\Common Files\Apple
2010-01-04 19:49 . 2010-01-04 19:49 -------- d-----w- c:\users\hp\AppData\Local\Apple
2010-01-04 19:49 . 2010-01-04 19:49 -------- d-----w- c:\program files\Apple Software Update
2010-01-04 19:49 . 2010-01-04 19:49 -------- d-----w- c:\programdata\Apple
2010-01-04 19:47 . 2010-01-04 19:47 -------- d-----w- c:\program files\ISL
2010-01-04 19:46 . 2010-01-04 19:46 -------- d-----w- c:\windows\Downloaded Installations
2010-01-04 19:44 . 2010-01-04 19:44 -------- d-----w- c:\users\hp\AppData\Local\ArcSoft
2010-01-04 19:44 . 2010-01-04 20:30 -------- d-----w- c:\users\hp\AppData\Roaming\ArcSoft
2010-01-04 19:43 . 2010-01-04 20:30 -------- d-----w- c:\programdata\ArcSoft
2010-01-04 19:41 . 2006-11-10 14:05 18688 ----a-w- c:\windows\system32\drivers\afc.sys
2010-01-04 19:41 . 2010-01-04 19:41 -------- d-----w- c:\program files\Common Files\ArcSoft
2010-01-04 19:41 . 2010-01-04 19:41 -------- d-----w- c:\program files\ArcSoft
2010-01-04 19:28 . 2010-01-04 19:28 -------- d-----w- c:\program files\Common Files\Panasonic
2010-01-04 19:28 . 2006-02-20 18:17 33408 ----a-w- c:\windows\system32\drivers\cdrbsdrv.sys
2010-01-04 19:28 . 2007-06-15 11:57 59488 ----a-w- c:\windows\system32\GenSvcInst.exe
2010-01-04 19:28 . 2007-06-15 11:57 145504 ----a-w- c:\windows\system32\bgsvcgen.exe
2010-01-04 19:28 . 2010-01-04 19:56 -------- d-----w- c:\program files\Panasonic
2010-01-04 19:27 . 2010-01-04 19:27 -------- d-----w- c:\program files\Microsoft Synchronization Services
2010-01-04 19:27 . 2010-01-04 19:27 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-30 14:22 . 2007-01-08 21:09 602144 ----a-w- c:\windows\system32\perfh005.dat
2010-01-30 14:22 . 2007-01-08 21:09 116204 ----a-w- c:\windows\system32\perfc005.dat
2010-01-30 14:16 . 2010-01-30 10:19 350192 ---ha-w- c:\windows\system32\drivers\vsconfig.xml
2010-01-30 13:58 . 2008-09-30 20:08 -------- d-----w- c:\users\hp\AppData\Roaming\skypePM
2010-01-30 13:57 . 2008-09-27 11:30 -------- d-----w- c:\users\hp\AppData\Roaming\Skype
2010-01-30 13:48 . 2009-12-21 16:44 90332 ----a-w- c:\programdata\nvModes.dat
2010-01-30 10:18 . 2010-01-30 10:18 -------- d-----w- c:\programdata\CheckPoint
2010-01-30 10:13 . 2009-07-26 10:20 -------- d-----w- c:\programdata\NVIDIA
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2010-01-30 09:57 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-01-30 09:57 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-01-30 09:56 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-01-30 09:33 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2010-01-30 09:33 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2010-01-29 23:36 . 2008-11-04 21:37 -------- d-----w- c:\program files\a7titude
2010-01-29 23:30 . 2009-11-17 16:45 -------- d-----w- c:\program files\Crawler
2010-01-28 09:54 . 2008-08-29 12:42 -------- d-----w- c:\users\hp\AppData\Roaming\ICQ
2010-01-27 13:33 . 2008-08-29 19:06 -------- d-----w- c:\users\hp\AppData\Roaming\MiniLyrics
2010-01-14 18:08 . 2009-11-15 16:13 -------- d-----w- c:\users\hp\AppData\Roaming\HpUpdate
2010-01-14 10:12 . 2009-11-12 15:33 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-10 21:55 . 2008-08-29 12:43 -------- d-----w- c:\users\hp\AppData\Roaming\uTorrent
2010-01-04 19:48 . 2008-08-20 22:41 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-04 19:46 . 2008-08-20 22:41 -------- d-----w- c:\program files\Common Files\InstallShield
2010-01-04 19:33 . 2008-08-21 11:38 120344 ----a-w- c:\users\hp\AppData\Local\GDIPFONTCACHEV1.DAT
2010-01-02 06:38 . 2010-01-22 09:31 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-22 09:31 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-01-22 09:31 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-01-01 15:17 . 2008-08-31 17:29 -------- d-----w- c:\program files\Terasoft
2009-12-31 12:31 . 2009-08-13 22:37 -------- d-----w- c:\program files\ICQ6.5
2009-12-22 08:57 . 2009-12-21 16:10 -------- d-----w- c:\program files\Spyware Doctor
2009-12-20 17:53 . 2009-12-20 17:52 -------- d-----r- c:\program files\Skype
2009-12-20 17:52 . 2009-12-20 17:52 -------- d-----w- c:\program files\Common Files\Skype
2009-12-20 17:52 . 2008-09-26 16:12 -------- d-----w- c:\programdata\Skype
2009-12-14 18:32 . 2008-08-21 11:57 59172 ----a-w- c:\users\hp\AppData\Roaming\nvModes.dat
2009-11-24 23:54 . 2009-11-17 16:50 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:49 . 2009-11-17 16:52 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-11-17 16:52 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-11-17 16:52 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-17 16:31 . 2009-11-17 16:31 7680 ----a-w- c:\users\hp\AppData\Roaming\Thinstall\SLOW-PCfighter\40000093c11002i\SLOW-PCfighter.exe
2009-11-17 16:25 . 2009-11-17 16:25 7680 ----a-w- c:\users\hp\AppData\Roaming\Thinstall\SLOW-PCfighter\4000008000002i\Splash Screen.exe
2009-11-17 15:26 . 2009-11-17 15:26 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-11-17 15:26 . 2009-11-17 15:26 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-11-17 15:25 . 2009-11-17 15:25 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-11-17 15:25 . 2009-11-17 15:25 310784 ----a-w- c:\windows\system32\unregmp2.exe
2009-11-16 18:07 . 2009-11-16 18:07 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2009-11-15 17:02 . 2009-11-15 17:02 84480 ----a-w- c:\windows\system32\INETRES.dll
2009-11-15 17:02 . 2009-11-15 17:02 738304 ----a-w- c:\windows\system32\inetcomm.dll
2009-11-15 16:51 . 2009-11-15 16:51 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-11-15 16:51 . 2009-11-15 16:51 44768 ----a-w- c:\windows\system32\wups2.dll
2009-11-15 16:51 . 2009-11-15 16:51 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-11-15 16:51 . 2009-11-15 16:51 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-11-15 16:45 . 2009-11-15 16:45 1314816 ----a-w- c:\windows\system32\quartz.dll
2009-11-15 16:36 . 2009-11-15 16:36 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-11-15 16:36 . 2009-11-15 16:36 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-11-15 16:36 . 2009-11-15 16:36 35552 ----a-w- c:\windows\system32\wups.dll
2009-11-15 16:34 . 2009-11-15 16:34 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-11-15 16:34 . 2009-11-15 16:34 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-11-15 16:29 . 2009-11-15 16:29 351232 ----a-w- c:\windows\system32\WSDApi.dll
2009-11-15 16:25 . 2009-11-15 16:25 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-11-09 13:22 . 2009-12-13 15:17 24064 ----a-w- c:\windows\system32\nshhttp.dll
2009-11-09 13:20 . 2009-12-13 15:17 31232 ----a-w- c:\windows\system32\httpapi.dll
2009-11-09 11:04 . 2009-12-13 15:17 411136 ----a-w- c:\windows\system32\drivers\http.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-19 1008184]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-11-15 815104]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-01-15 172032]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-11-06 159744]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2006-12-04 46704]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-01-10 472776]
"WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-08-29 258134]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-10 136600]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2009-10-20 111928]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-04 13556256]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-04 92704]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2009-02-15 981384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-07 44128]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PHOTOfunSTUDIO 4.0 HD Edition.lnk - c:\program files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe [2010-1-4 146360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"ArcSoft Connection Service"=c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [17.11.2009 17:52 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [17.11.2009 17:52 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [17.11.2009 17:50 53328]
S0 sptd;sptd;c:\windows\System32\drivers\sptd.sys [29.8.2008 19:54 717296]
S2 ELOADER;General Purpose USB Driver (adildr.sys);c:\windows\System32\drivers\adildr.sys [29.8.2008 19:43 56088]
S2 gupdate1c9953512b9f781;Google Update Service (gupdate1c9953512b9f781);c:\program files\Google\Update\GoogleUpdate.exe [22.2.2009 22:32 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
Obsah adresáře 'Naplánované úlohy'

2010-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-22 21:32]

2010-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-22 21:32]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com
mStart Page = hxxp://home.sweetim.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\ph773uw1.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

URLSearchHooks-{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
AddRemove-KnightsAndMerchants - c:\program files\KnightsAndMerchants\DeIsL1.isu



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-30 15:30
Windows 6.0.6001 Service Pack 1 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1319901070-3531807568-4258599925-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 10.0.jfif"

[HKEY_USERS\S-1-5-21-1319901070-3531807568-4258599925-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 10.0.ttc"

[HKEY_USERS\S-1-5-21-1319901070-3531807568-4258599925-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 10.0.ttf"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
Celkový čas: 2010-01-30 15:34:28
ComboFix-quarantined-files.txt 2010-01-30 14:34

Před spuštěním: Volných bajtů: 77 553 336 320
Po spuštění: Volných bajtů: 77 539 790 848

- - End Of File - - B75D0D481811E64349B03F933C10095B

[Caroprd111]

Dejte nový log z RSIT

[hala37]

Logfile of random's system information tool 1.06 (written by random/random)
Run by hp at 2010-01-30 15:57:52
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 74 GB (50%) free of 147 GB
Total RAM: 1022 MB (14% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:58:17, on 30.1.2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Users\hp\Desktop\RSIT.exe
C:\Program Files\trend micro\hp.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: PHOTOfunSTUDIO 4.0 HD Edition.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9953512b9f781) (gupdate1c9953512b9f781) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 7216 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-10 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-07-17 691656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-11-15 815104]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-01-15 172032]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-11-06 159744]
"HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2006-12-04 46704]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-01-10 472776]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
"BtTray"=C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [2008-08-29 258134]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-10 136600]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-12-04 13556256]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-12-04 92704]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-02-16 981384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Windows\SMINST\launcher.exe [2006-11-07 44128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
PHOTOfunSTUDIO 4.0 HD Edition.lnk - C:\Program Files\Panasonic\PHOTOfunSTUDIO 4.0 HD\AutoStartupService.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-01-30 15:34:44 ----SHD---- C:\$RECYCLE.BIN
2010-01-30 15:34:28 ----A---- C:\ComboFix.txt
2010-01-30 15:17:11 ----A---- C:\Windows\zip.exe
2010-01-30 15:17:11 ----A---- C:\Windows\SWREG.exe
2010-01-30 15:17:11 ----A---- C:\Windows\sed.exe
2010-01-30 15:17:11 ----A---- C:\Windows\PEV.exe
2010-01-30 15:17:11 ----A---- C:\Windows\NIRCMD.exe
2010-01-30 15:17:11 ----A---- C:\Windows\MBR.exe
2010-01-30 15:17:11 ----A---- C:\Windows\grep.exe
2010-01-30 15:17:10 ----A---- C:\Windows\SWSC.exe
2010-01-30 15:16:23 ----D---- C:\Windows\ERDNT
2010-01-30 15:09:11 ----D---- C:\ComboFix
2010-01-30 15:00:30 ----D---- C:\Qoobox
2010-01-30 15:00:10 ----A---- C:\Windows\SWXCACLS.exe
2010-01-30 11:35:23 ----D---- C:\Program Files\trend micro
2010-01-30 11:35:17 ----D---- C:\rsit
2010-01-30 11:24:26 ----A---- C:\Windows\system32\netiougc.exe
2010-01-30 11:24:25 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-01-30 11:22:03 ----A---- C:\Windows\system32\vsregexp.dll
2010-01-30 11:21:53 ----A---- C:\Windows\system32\zlcommdb.dll
2010-01-30 11:21:52 ----A---- C:\Windows\system32\zlcomm.dll
2010-01-30 11:21:31 ----A---- C:\Windows\system32\vswmi.dll
2010-01-30 11:21:26 ----A---- C:\Windows\system32\zpeng25.dll
2010-01-30 11:21:26 ----A---- C:\Windows\system32\vsxml.dll
2010-01-30 11:21:24 ----D---- C:\Program Files\Zone Labs
2010-01-30 11:21:24 ----A---- C:\Windows\system32\vspubapi.dll
2010-01-30 11:21:24 ----A---- C:\Windows\system32\vsmonapi.dll
2010-01-30 11:21:00 ----A---- C:\Windows\system32\vsdata.dll
2010-01-30 11:19:01 ----D---- C:\Windows\system32\ZoneLabs
2010-01-30 11:18:11 ----D---- C:\ProgramData\CheckPoint
2010-01-30 11:18:05 ----A---- C:\Windows\system32\vsinit.dll
2010-01-30 11:18:04 ----A---- C:\Windows\system32\vsutil.dll
2010-01-30 10:56:38 ----D---- C:\PerfLogs
2010-01-30 10:09:10 ----D---- C:\Windows\Internet Logs
2010-01-30 00:48:50 ----D---- C:\Program Files\Defraggler
2010-01-30 00:43:11 ----D---- C:\Program Files\Common Files\Adobe
2010-01-30 00:43:11 ----D---- C:\Program Files\Adobe
2010-01-29 21:23:52 ----D---- C:\Program Files\CCleaner
2010-01-27 10:49:48 ----D---- C:\Users\hp\AppData\Roaming\GlarySoft
2010-01-22 10:31:12 ----A---- C:\Windows\system32\mshtml.dll
2010-01-22 10:31:11 ----A---- C:\Windows\system32\ieframe.dll
2010-01-22 10:31:08 ----A---- C:\Windows\system32\urlmon.dll
2010-01-22 10:31:08 ----A---- C:\Windows\system32\iertutil.dll
2010-01-22 10:31:07 ----A---- C:\Windows\system32\wininet.dll
2010-01-22 10:31:06 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-22 10:31:05 ----A---- C:\Windows\system32\occache.dll
2010-01-22 10:31:05 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-22 10:31:04 ----A---- C:\Windows\system32\ieui.dll
2010-01-22 10:31:03 ----A---- C:\Windows\system32\iepeers.dll
2010-01-22 10:31:02 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-22 10:31:01 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-01-22 10:31:01 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-22 10:31:01 ----A---- C:\Windows\system32\iesysprep.dll
2010-01-22 10:31:00 ----A---- C:\Windows\system32\msfeedssync.exe
2010-01-22 10:31:00 ----A---- C:\Windows\system32\ie4uinit.exe
2010-01-22 10:30:59 ----A---- C:\Windows\system32\iesetup.dll
2010-01-22 10:30:59 ----A---- C:\Windows\system32\iernonce.dll
2010-01-12 20:55:36 ----A---- C:\Windows\system32\t2embed.dll
2010-01-12 20:55:36 ----A---- C:\Windows\system32\fontsub.dll
2010-01-11 12:34:22 ----D---- C:\ProgramData\SweetIM
2010-01-11 12:34:22 ----D---- C:\Program Files\SweetIM
2010-01-04 21:39:21 ----D---- C:\Program Files\Mirillis
2010-01-04 21:31:38 ----D---- C:\ProgramData\Panasonic
2010-01-04 20:52:11 ----D---- C:\Program Files\QuickTime
2010-01-04 20:51:45 ----D---- C:\ProgramData\Apple Computer
2010-01-04 20:49:47 ----D---- C:\Program Files\Common Files\Apple
2010-01-04 20:49:16 ----D---- C:\ProgramData\Apple
2010-01-04 20:49:16 ----D---- C:\Program Files\Apple Software Update
2010-01-04 20:47:22 ----D---- C:\Program Files\ISL
2010-01-04 20:46:11 ----D---- C:\Windows\Downloaded Installations
2010-01-04 20:44:19 ----D---- C:\Users\hp\AppData\Roaming\ArcSoft
2010-01-04 20:43:28 ----D---- C:\ProgramData\ArcSoft
2010-01-04 20:41:39 ----D---- C:\Program Files\Common Files\ArcSoft
2010-01-04 20:41:39 ----D---- C:\Program Files\ArcSoft
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK2.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK.ini
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICSDK.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\PICEntry.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\EpPicPrt.dll
2010-01-04 20:33:17 ----A---- C:\Windows\system32\EPPicMgr.dll
2010-01-04 20:28:55 ----D---- C:\Program Files\Common Files\Panasonic
2010-01-04 20:28:43 ----A---- C:\Windows\system32\GenSvcInst.exe
2010-01-04 20:28:43 ----A---- C:\Windows\system32\bgsvcgen.exe
2010-01-04 20:28:10 ----D---- C:\Program Files\Panasonic
2010-01-04 20:27:54 ----D---- C:\Program Files\Microsoft Synchronization Services
2010-01-04 20:27:52 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition

======List of files/folders modified in the last 1 months======

2010-01-30 15:57:50 ----D---- C:\Windows\Temp
2010-01-30 15:56:50 ----D---- C:\Windows\system32\catroot
2010-01-30 15:56:46 ----D---- C:\Windows\winsxs
2010-01-30 15:56:22 ----D---- C:\Windows\system32\catroot2
2010-01-30 15:34:55 ----D---- C:\Program Files\Mozilla Firefox
2010-01-30 15:33:55 ----D---- C:\Windows\Tasks
2010-01-30 15:30:30 ----D---- C:\Windows
2010-01-30 15:30:30 ----A---- C:\Windows\system.ini
2010-01-30 15:25:23 ----D---- C:\Windows\system32\drivers
2010-01-30 15:25:23 ----D---- C:\Windows\System32
2010-01-30 15:25:23 ----D---- C:\Windows\AppPatch
2010-01-30 15:25:21 ----D---- C:\Program Files\Common Files
2010-01-30 15:22:20 ----D---- C:\Windows\inf
2010-01-30 15:22:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-01-30 15:15:40 ----A---- C:\Windows\system32\bscs.ini
2010-01-30 14:58:05 ----D---- C:\Users\hp\AppData\Roaming\skypePM
2010-01-30 14:57:54 ----D---- C:\Users\hp\AppData\Roaming\Skype
2010-01-30 11:46:35 ----D---- C:\Windows\rescache
2010-01-30 11:35:23 ----RD---- C:\Program Files
2010-01-30 11:25:59 ----D---- C:\Windows\system32\migration
2010-01-30 11:24:05 ----SHD---- C:\System Volume Information
2010-01-30 11:21:59 ----D---- C:\Windows\SoftwareDistribution
2010-01-30 11:18:49 ----D---- C:\Windows\Microsoft.NET
2010-01-30 11:18:47 ----RSD---- C:\Windows\assembly
2010-01-30 11:18:11 ----D---- C:\ProgramData
2010-01-30 11:18:03 ----SHD---- C:\Windows\Installer
2010-01-30 11:18:03 ----D---- C:\Config.Msi
2010-01-30 11:13:09 ----D---- C:\ProgramData\NVIDIA
2010-01-30 11:10:15 ----D---- C:\boot
2010-01-30 11:10:13 ----ASH---- C:\Program Files\desktop.ini
2010-01-30 11:02:01 ----D---- C:\Windows\WindowsMobile
2010-01-30 10:57:52 ----D---- C:\Program Files\Windows Sidebar
2010-01-30 10:57:52 ----D---- C:\Program Files\Windows Calendar
2010-01-30 10:57:52 ----D---- C:\Program Files\Movie Maker
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Photo Gallery
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Media Player
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Mail
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Journal
2010-01-30 10:57:51 ----D---- C:\Program Files\Windows Collaboration
2010-01-30 10:57:51 ----D---- C:\Program Files\Internet Explorer
2010-01-30 10:57:50 ----D---- C:\Program Files\Windows Defender
2010-01-30 10:57:50 ----D---- C:\Program Files\Common Files\System
2010-01-30 10:57:49 ----D---- C:\Windows\servicing
2010-01-30 10:57:49 ----D---- C:\Windows\ehome
2010-01-30 10:57:48 ----D---- C:\Windows\MSAgent
2010-01-30 10:57:48 ----D---- C:\Windows\L2Schemas
2010-01-30 10:57:48 ----D---- C:\Windows\IME
2010-01-30 10:57:48 ----D---- C:\Windows\DigitalLocker
2010-01-30 10:57:47 ----D---- C:\Windows\system32\ko-KR
2010-01-30 10:57:47 ----D---- C:\Windows\system32\da-DK
2010-01-30 10:57:47 ----D---- C:\Windows\system32\com
2010-01-30 10:57:47 ----D---- C:\Windows\PolicyDefinitions
2010-01-30 10:57:44 ----D---- C:\Windows\system32\sysprep
2010-01-30 10:57:44 ----D---- C:\Windows\system32\oobe
2010-01-30 10:57:44 ----D---- C:\Windows\system32\it-IT
2010-01-30 10:57:44 ----D---- C:\Windows\system32\en-US
2010-01-30 10:57:44 ----D---- C:\Windows\system32\el-GR
2010-01-30 10:57:44 ----D---- C:\Windows\system32\de-DE
2010-01-30 10:57:43 ----D---- C:\Windows\system32\AdvancedInstallers
2010-01-30 10:57:42 ----D---- C:\Windows\system32\sv-SE
2010-01-30 10:57:42 ----D---- C:\Windows\system32\setup
2010-01-30 10:57:42 ----D---- C:\Windows\system32\ru-RU
2010-01-30 10:57:42 ----D---- C:\Windows\system32\ias
2010-01-30 10:57:42 ----D---- C:\Windows\system32\he-IL
2010-01-30 10:57:42 ----D---- C:\Windows\system32\fr-FR
2010-01-30 10:57:42 ----D---- C:\Windows\system32\fi-FI
2010-01-30 10:57:42 ----D---- C:\Windows\system32\cs-CZ
2010-01-30 10:57:42 ----D---- C:\Windows\system32\cs
2010-01-30 10:57:37 ----D---- C:\Windows\system32\SLUI
2010-01-30 10:57:37 ----D---- C:\Windows\system32\pt-PT
2010-01-30 10:57:37 ----D---- C:\Windows\system32\hu-HU
2010-01-30 10:57:35 ----D---- C:\Windows\system32\zh-TW
2010-01-30 10:57:35 ----D---- C:\Windows\system32\zh-CN
2010-01-30 10:57:35 ----D---- C:\Windows\system32\pl-PL
2010-01-30 10:57:35 ----D---- C:\Windows\system32\manifeststore
2010-01-30 10:57:35 ----D---- C:\Windows\system32\ja-JP
2010-01-30 10:57:35 ----D---- C:\Windows\system32\es-ES
2010-01-30 10:57:34 ----D---- C:\Windows\system32\ro-RO
2010-01-30 10:57:33 ----D---- C:\Windows\system32\wbem
2010-01-30 10:57:33 ----D---- C:\Windows\system32\tr-TR
2010-01-30 10:57:32 ----D---- C:\Windows\system32\nl-NL
2010-01-30 10:57:32 ----D---- C:\Windows\system32\nb-NO
2010-01-30 10:57:32 ----D---- C:\Windows\system32\ar-SA
2010-01-30 10:57:29 ----D---- C:\Windows\system32\pt-BR
2010-01-30 10:57:29 ----D---- C:\Windows\system32\migwiz
2010-01-30 10:56:54 ----RSD---- C:\Windows\Fonts
2010-01-30 10:56:41 ----D---- C:\Windows\Boot
2010-01-30 10:56:40 ----D---- C:\Windows\system32\Boot
2010-01-30 10:33:23 ----A---- C:\Windows\system32\ifxcardm.dll
2010-01-30 10:33:12 ----A---- C:\Windows\system32\axaltocm.dll
2010-01-30 00:45:07 ----D---- C:\ProgramData\Adobe
2010-01-30 00:36:52 ----D---- C:\Program Files\a7titude
2010-01-30 00:30:47 ----D---- C:\Program Files\Crawler
2010-01-29 21:25:26 ----D---- C:\Windows\Debug
2010-01-29 21:25:24 ----D---- C:\Windows\Minidump
2010-01-28 16:15:07 ----D---- C:\Lyrics
2010-01-28 10:54:14 ----D---- C:\Users\hp\AppData\Roaming\ICQ
2010-01-27 14:33:10 ----D---- C:\Users\hp\AppData\Roaming\MiniLyrics
2010-01-27 10:40:27 ----D---- C:\Windows\system32\Tasks
2010-01-27 10:39:49 ----D---- C:\Windows\Prefetch
2010-01-14 19:08:02 ----D---- C:\Users\hp\AppData\Roaming\HpUpdate
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-01-10 22:55:40 ----D---- C:\Users\hp\AppData\Roaming\uTorrent
2010-01-05 01:17:46 ----A---- C:\Windows\system32\mrt.exe
2010-01-04 20:48:35 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-04 20:46:04 ----D---- C:\Program Files\Common Files\InstallShield
2010-01-01 19:01:43 ----D---- C:\totalcmd
2010-01-01 16:17:29 ----D---- C:\Program Files\Terasoft
2009-12-31 13:31:14 ----D---- C:\Program Files\ICQ6.5

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-11-25 23120]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrbsdrv;cdrbsdrv; C:\Windows\system32\drivers\cdrbsdrv.sys [2006-02-20 33408]
R1 eabfiltr;eabfiltr; C:\Windows\system32\DRIVERS\eabfiltr.sys [2006-06-28 8192]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2009-02-16 293528]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-20 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-15 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-15 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-15 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-05 8192]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
R3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [2007-03-05 18320]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-19 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-19 206848]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-05-03 1065384]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-12-04 7606688]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2006-09-15 11520]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-11-15 179256]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [2007-03-05 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [2007-03-05 44304]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-19 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S2 ELOADER;General Purpose USB Driver (adildr.sys); C:\Windows\System32\Drivers\adildr.sys [2007-02-07 56088]
S3 adiusbaw;USB ADSL WAN Adapter; C:\Windows\system32\DRIVERS\adiusbaw.sys [2007-02-07 118552]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-01-03 534016]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [2007-06-24 38920]
S3 catchme;catchme; \??\C:\Users\hp\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2006-12-12 148992]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 mbr;mbr; \??\C:\Users\hp\AppData\Local\Temp\mbr.sys []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-19 15872]
S3 VHidMinidrv;Bluetooth HID Device Service; C:\Windows\system32\drivers\VHIDMini.sys [2007-03-05 19472]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\System32\bgsvcgen.exe [2007-06-15 145504]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [2008-08-29 1155180]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [2007-01-15 270431]
R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [2007-01-15 118877]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2006-12-04 58984]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-12-04 203296]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2009-02-16 2402184]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 BsHelpCS;BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [2007-08-17 57447]
S2 CLTNetCnService;Symantec Lic NetConnect service; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
S2 gupdate1c9953512b9f781;Google Update Service (gupdate1c9953512b9f781); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-22 133104]
S2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-05 386560]
S3 AddFiltr;AddFiltr; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe [2006-06-26 126976]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-06 887544]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-11-01 73728]

-----------------EOF-----------------

[Caroprd111]

Jak se chová PC

[hala37]

stále stejně pomalu. máme to ještě restartovat?
Jde o to,že třebe když se dá v nabídce start složka hudba,tak ta než se načte tak to trvá asi 10 vteřin,nejdřív 3 vteřiny okno,a pak dalších asi sedm vteřin se načítají ten samotný obsah složky,a není tam toho přílíš.