Zamrzani PC-Prosim o kontrolu RSIT logu

[BoRy]

Dobry den, posledni dobou se mi casto stava, ze mi zamrza pc- pri prohlizeni internetu, prehravani hudby, prohlizeni obrazku- proste zamrza jak se mu chce a pak mi nezbyva nic jineho nez tvrdej restart. Kdyz mi PC zamrzne tak muzu pohybovat kurzorem mysi, ale to je asi tak vse, na nic jineho comp nereaguje. Nekde sem se docetl, ze by to mohl byt vir v ramkach, ale nevim. A proto se obracim na Vas s zadosti o radu ci pomoc. Prikladam cerstvy log z RSIT. Dekuji predem za jakoukoliv radu.


Logfile of random's system information tool 1.06 (written by random/random)
Run by zBosS at 2010-01-03 11:41:45
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 71 GB (71%) free of 100 GB
Total RAM: 3326 MB (85% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:41:48, on 3.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\zBosS\Plocha\RSIT.exe
C:\Program Files\trend micro\zBosS.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2014090
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.lge.com/products/mobile/mobi ... CTG1000439
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download All by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetUrl.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3C764991-8A9D-4A67-ADD8-3D12F79F19AD}: NameServer = 10.255.255.10,10.255.255.20
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 5927 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll [2009-08-10 353840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmcService"=C:\PROGRA~1\Sygate\SPF\smc.exe [2005-03-05 2573536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-04 98304]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-30 2329936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-11-04 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\uTorrent\utorrent.exe"="D:\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"G:\Red Alert 3\Data\ra3_1.0.game"="G:\Red Alert 3\Data\ra3_1.0.game:*:Disabled:Command & Conquer™ Red Alert™ 3"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"G:\Dragon Age\bin_ship\daorigins.exe"="G:\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
"G:\Dragon Age\DAOriginsLauncher.exe"="G:\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
"G:\Dragon Age\bin_ship\daupdatersvc.service.exe"="G:\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
"G:\Borderlands\Binaries\Borderlands.exe"="G:\Borderlands\Binaries\Borderlands.exe:*:Disabled:Borderlands"
"G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe"="G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe:*:Enabled:James Cameron's AVATAR(tm): THE GAME (Demo)"
"G:\Colin McRae DiRT 2\dirt2_game.exe"="G:\Colin McRae DiRT 2\dirt2_game.exe:*:Disabled:DiRT2 Executable"
"G:\Neverwinter Nights 2\nwn2main.exe"="G:\Neverwinter Nights 2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"G:\Neverwinter Nights 2\nwn2main_amdxp.exe"="G:\Neverwinter Nights 2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"G:\Neverwinter Nights 2\nwupdate.exe"="G:\Neverwinter Nights 2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"G:\Neverwinter Nights 2\nwn2server.exe"="G:\Neverwinter Nights 2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-01-03 00:16:24 ----DC---- C:\Program Files\trend micro
2010-01-03 00:16:21 ----DC---- C:\rsit
2010-01-03 00:09:08 ----SHDC---- C:\RECYCLER
2010-01-03 00:07:20 ----AC---- C:\ComboFix.txt
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\zip.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWXCACLS.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWSC.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWREG.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\sed.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\PEV.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\NIRCMD.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\MBR.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\grep.exe
2010-01-02 23:12:47 ----DC---- C:\Program Files\DriveSitter
2009-12-31 14:25:11 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2009-12-31 14:25:10 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\SolSuite
2009-12-31 14:22:48 ----DC---- C:\Program Files\SolSuite
2009-12-17 10:19:07 ----DC---- C:\Program Files\MSBuild
2009-12-17 10:16:50 ----DC---- C:\WINDOWS\system32\XPSViewer
2009-12-17 10:16:48 ----DC---- C:\WINDOWS\system32\en-us
2009-12-17 10:16:26 ----DC---- C:\Program Files\Reference Assemblies
2009-12-17 10:12:28 ----DC---- C:\Documents and Settings\All Users\Data aplikací\ATI
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\Oemdspif.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atitvo32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIODCLI.exe
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atimpc32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticalrt.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticaldd.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ati2edxx.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\amdpcom32.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ativcoxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atipdlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiok3x2.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atioglxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIODE.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atikvmag.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiiiexx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIDDC.DLL
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\aticalcl.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atibtmon.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiadlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.dll
2009-12-17 10:09:43 ----DC---- C:\Program Files\ATI
2009-12-17 10:05:08 ----DC---- C:\WINDOWS\system32\URTTemp
2009-12-17 09:51:18 ----AC---- C:\WINDOWS\WININIT.INI
2009-12-10 16:04:03 ----DC---- C:\WINDOWS\ap0_NEW_08D1127F
2009-12-09 12:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 12:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 12:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 12:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-08 10:31:24 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Codemasters

======List of files/folders modified in the last 1 months======

2010-01-03 11:24:40 ----DC---- C:\WINDOWS\system32
2010-01-03 11:24:40 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-03 11:23:24 ----DC---- C:\WINDOWS\Temp
2010-01-03 00:47:17 ----AC---- C:\WINDOWS\SchedLgU.Txt
2010-01-03 00:47:16 ----DC---- C:\WINDOWS\system32\CatRoot2
2010-01-03 00:16:24 ----RDC---- C:\Program Files
2010-01-03 00:06:25 ----DC---- C:\WINDOWS
2010-01-03 00:06:25 ----AC---- C:\WINDOWS\system.ini
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\system32\drivers
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\AppPatch
2010-01-03 00:05:19 ----DC---- C:\Program Files\Common Files
2010-01-02 23:59:03 ----DC---- C:\WINDOWS\Prefetch
2010-01-02 21:11:45 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\uTorrent
2009-12-31 12:26:05 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\CopyToDvd
2009-12-31 12:21:33 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\Vso
2009-12-28 18:32:30 ----SHDC---- C:\WINDOWS\Installer
2009-12-28 18:32:06 ----DC---- C:\Program Files\Google
2009-12-23 16:12:47 ----HDC---- C:\WINDOWS\inf
2009-12-23 16:12:47 ----DC---- C:\WINDOWS\system32\DirectX
2009-12-23 16:12:35 ----RSDC---- C:\WINDOWS\assembly
2009-12-22 10:55:34 ----DC---- C:\WINDOWS\Logs
2009-12-19 12:03:32 ----HDC---- C:\Program Files\InstallShield Installation Information
2009-12-18 11:55:39 ----DC---- C:\WINDOWS\Microsoft.NET
2009-12-17 18:00:38 ----DC---- C:\WINDOWS\WinSxS
2009-12-17 11:31:54 ----DC---- C:\WINDOWS\system32\config
2009-12-17 10:45:57 ----RSDC---- C:\WINDOWS\Fonts
2009-12-17 10:42:10 ----DC---- C:\WINDOWS\Registration
2009-12-17 10:19:42 ----DC---- C:\WINDOWS\system32\mui
2009-12-17 10:19:40 ----DC---- C:\WINDOWS\system32\cs-cz
2009-12-17 10:10:21 ----DC---- C:\Program Files\ATI Technologies
2009-12-17 10:10:06 ----DC---- C:\WINDOWS\system32\dllcache
2009-12-17 10:09:57 ----DC---- C:\WINDOWS\system32\CatRoot
2009-12-17 10:09:55 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-17 10:06:28 ----DC---- C:\Program Files\Common Files\Microsoft Shared
2009-12-17 10:06:22 ----DC---- C:\Program Files\Internet Explorer
2009-12-17 10:06:20 ----DC---- C:\WINDOWS\pchealth
2009-12-17 09:51:44 ----DC---- C:\Program Files\Common Files\ATI Technologies
2009-12-16 17:09:20 ----AC---- C:\WINDOWS\system32\winsock.dll
2009-12-16 12:46:01 ----SDC---- C:\WINDOWS\Tasks
2009-12-12 17:05:36 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\BITS
2009-12-11 11:49:11 ----DC---- C:\WINDOWS\Debug
2009-12-10 15:02:52 ----SDC---- C:\WINDOWS\Downloaded Program Files
2009-12-10 14:54:31 ----DC---- C:\Program Files\AMD
2009-12-10 14:54:30 ----RSHC---- C:\boot.ini
2009-12-09 12:02:44 ----AC---- C:\WINDOWS\imsins.BAK
2009-12-09 12:02:33 ----DC---- C:\WINDOWS\ie8updates
2009-12-09 12:02:31 ----HDC---- C:\WINDOWS\$hf_mig$
2009-12-08 19:09:50 ----SDC---- C:\Documents and Settings\zBosS\Data aplikací\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 wpsdrvnt;wpsdrvnt; \??\C:\WINDOWS\system32\drivers\wpsdrvnt.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-10-16 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-10-16 25888]
R2 wg3n;SyGate for NT, wg3n; C:\WINDOWS\SYSTEM32\Drivers\wg3n.sys [2004-10-15 14568]
R2 wg4n;SyGate for NT, wg4n; C:\WINDOWS\SYSTEM32\Drivers\wg4n.sys [2004-10-15 14568]
R2 wg5n;SyGate for NT, wg5n; C:\WINDOWS\SYSTEM32\Drivers\wg5n.sys [2004-10-15 14568]
R2 wg6n;SyGate for NT, wg6n; C:\WINDOWS\SYSTEM32\Drivers\wg6n.sys [2004-10-15 14568]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-11-04 4423168]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2009-11-20 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-05-31 96896]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 catchme;catchme; \??\C:\DOCUME~1\zBosS\LOCALS~1\Temp\catchme.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-10-18 721904]
S4 vsdatant;vsdatant; C:\WINDOWS\system32\drivers\vsdatant.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-11-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 SmcService;Sygate Personal Firewall; C:\Program Files\Sygate\SPF\smc.exe [2005-03-05 2573536]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-13 135664]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Nic nebezpečného nevidím. Udělejte sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[BoRy]

Tak tady je ten log MBAM. Nahlasil 2 infikovane soubory ale Avast se mi behem kontroly ozval 4x. Podle Vasi rady sem nic nemazal.

Malwarebytes' Anti-Malware 1.43
Verze databáze: 3486
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

3.1.2010 13:04:46
mbam-log-2010-01-03 (13-04-39).txt

Typ kontroly: Kompletní kontrola (C:\|)
Zkontrolované objekty: 182982
Uplynulý čas: 32 minute(s), 17 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 2

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
C:\Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2Keygen.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{06EA0488-8007-497D-8CBF-B70370857E50}\RP174\A0041471.exe (Trojan.Downloader) -> No action taken.



Pokud dam slozku C:\Program Files\Elaborate Bytes\CloneDVD2 otestovat na viry programem Avast tak mi nic nenajde.

[Rudy]

Položky smažte a PC zkuste vyčistit CCleanerem: http://www.viry.cz/forum/viewtopic.php?f=46&t=7478 .

[BoRy]

Je mozne namisto CCleaneru pouzit Advanced SystemCare PRO?

[Rudy]

Můžete.

[BoRy]

Takze, polozky sem smazal, restartoval pc jak chtel MBAM a pote sem ho vycistil. Skusil sem znovu spustit kontrolu MBAM a vysledek je:

Malwarebytes' Anti-Malware 1.43
Verze databáze: 3486
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

3.1.2010 14:28:25
mbam-log-2010-01-03 (14-28-20).txt

Typ kontroly: Kompletní kontrola (C:\|)
Zkontrolované objekty: 183254
Uplynulý čas: 20 minute(s), 35 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
C:\System Volume Information\_restore{06EA0488-8007-497D-8CBF-B70370857E50}\RP259\A0080587.exe (Trojan.Downloader) -> No action taken.


Polozku sem znovu odsranil, restartoval, vycistil a uvidim co mi MBAM rekne ted...

[BoRy]

Takze MBAM ted probehl uspesne, tzn. 0 infikovanych souboru, ale pri skenu mi nekolikrat nahlasil cerva Avast. Vetsinou byla cesta C:\System Volume Information\...

[BoRy]

Pro jistotu jeste RSIT log. Dekuji.

Logfile of random's system information tool 1.06 (written by random/random)
Run by zBosS at 2010-01-03 15:22:34
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 71 GB (71%) free of 100 GB
Total RAM: 3326 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:22:36, on 3.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\zBosS\Plocha\RSIT.exe
C:\Program Files\trend micro\zBosS.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2014090
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.lge.com/products/mobile/mobi ... CTG1000439
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download All by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetUrl.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3C764991-8A9D-4A67-ADD8-3D12F79F19AD}: NameServer = 10.255.255.10,10.255.255.20
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 5927 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll [2009-08-10 353840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmcService"=C:\PROGRA~1\Sygate\SPF\smc.exe [2005-03-05 2573536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-04 98304]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-30 2329936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-11-04 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\uTorrent\utorrent.exe"="D:\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"G:\Red Alert 3\Data\ra3_1.0.game"="G:\Red Alert 3\Data\ra3_1.0.game:*:Disabled:Command & Conquer™ Red Alert™ 3"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"G:\Dragon Age\bin_ship\daorigins.exe"="G:\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
"G:\Dragon Age\DAOriginsLauncher.exe"="G:\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
"G:\Dragon Age\bin_ship\daupdatersvc.service.exe"="G:\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
"G:\Borderlands\Binaries\Borderlands.exe"="G:\Borderlands\Binaries\Borderlands.exe:*:Disabled:Borderlands"
"G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe"="G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe:*:Enabled:James Cameron's AVATAR(tm): THE GAME (Demo)"
"G:\Colin McRae DiRT 2\dirt2_game.exe"="G:\Colin McRae DiRT 2\dirt2_game.exe:*:Disabled:DiRT2 Executable"
"G:\Neverwinter Nights 2\nwn2main.exe"="G:\Neverwinter Nights 2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"G:\Neverwinter Nights 2\nwn2main_amdxp.exe"="G:\Neverwinter Nights 2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"G:\Neverwinter Nights 2\nwupdate.exe"="G:\Neverwinter Nights 2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"G:\Neverwinter Nights 2\nwn2server.exe"="G:\Neverwinter Nights 2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-01-03 12:09:57 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\Malwarebytes
2010-01-03 12:09:52 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2010-01-03 12:09:52 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-01-03 00:16:24 ----DC---- C:\Program Files\trend micro
2010-01-03 00:16:21 ----DC---- C:\rsit
2010-01-03 00:09:08 ----SHDC---- C:\RECYCLER
2010-01-03 00:07:20 ----AC---- C:\ComboFix.txt
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\zip.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWXCACLS.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWSC.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWREG.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\sed.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\PEV.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\NIRCMD.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\MBR.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\grep.exe
2010-01-02 23:12:47 ----DC---- C:\Program Files\DriveSitter
2009-12-31 14:25:11 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2009-12-31 14:25:10 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\SolSuite
2009-12-31 14:22:48 ----DC---- C:\Program Files\SolSuite
2009-12-17 10:19:07 ----DC---- C:\Program Files\MSBuild
2009-12-17 10:16:50 ----DC---- C:\WINDOWS\system32\XPSViewer
2009-12-17 10:16:48 ----DC---- C:\WINDOWS\system32\en-us
2009-12-17 10:16:26 ----DC---- C:\Program Files\Reference Assemblies
2009-12-17 10:12:28 ----DC---- C:\Documents and Settings\All Users\Data aplikací\ATI
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\Oemdspif.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atitvo32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIODCLI.exe
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atimpc32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticalrt.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticaldd.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ati2edxx.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\amdpcom32.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ativcoxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atipdlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiok3x2.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atioglxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIODE.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atikvmag.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiiiexx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIDDC.DLL
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\aticalcl.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atibtmon.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiadlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.dll
2009-12-17 10:09:43 ----DC---- C:\Program Files\ATI
2009-12-17 10:05:08 ----DC---- C:\WINDOWS\system32\URTTemp
2009-12-17 09:51:18 ----AC---- C:\WINDOWS\WININIT.INI
2009-12-10 16:04:03 ----DC---- C:\WINDOWS\ap0_NEW_08D1127F
2009-12-09 12:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 12:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 12:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 12:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-08 10:31:24 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Codemasters

======List of files/folders modified in the last 1 months======

2010-01-03 14:41:55 ----DC---- C:\Program Files\VirtualDJ
2010-01-03 14:41:19 ----DC---- C:\WINDOWS\system32\CatRoot2
2010-01-03 14:34:52 ----DC---- C:\WINDOWS
2010-01-03 14:34:04 ----DC---- C:\WINDOWS\system32
2010-01-03 14:34:04 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-03 14:30:54 ----DC---- C:\WINDOWS\Temp
2010-01-03 14:29:34 ----DC---- C:\WINDOWS\system32\drivers
2010-01-03 14:29:34 ----DC---- C:\WINDOWS\PeerNet
2010-01-03 14:28:58 ----AC---- C:\WINDOWS\SchedLgU.Txt
2010-01-03 13:52:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-01-03 12:09:52 ----RDC---- C:\Program Files
2010-01-03 00:06:25 ----AC---- C:\WINDOWS\system.ini
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\AppPatch
2010-01-03 00:05:19 ----DC---- C:\Program Files\Common Files
2010-01-02 23:59:03 ----DC---- C:\WINDOWS\Prefetch
2010-01-02 21:11:45 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\uTorrent
2009-12-31 12:26:05 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\CopyToDvd
2009-12-31 12:21:33 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\Vso
2009-12-28 18:32:30 ----SHDC---- C:\WINDOWS\Installer
2009-12-28 18:32:06 ----DC---- C:\Program Files\Google
2009-12-23 16:12:47 ----HDC---- C:\WINDOWS\inf
2009-12-23 16:12:47 ----DC---- C:\WINDOWS\system32\DirectX
2009-12-23 16:12:35 ----RSDC---- C:\WINDOWS\assembly
2009-12-22 10:55:34 ----DC---- C:\WINDOWS\Logs
2009-12-19 12:03:32 ----HDC---- C:\Program Files\InstallShield Installation Information
2009-12-18 11:55:39 ----DC---- C:\WINDOWS\Microsoft.NET
2009-12-17 18:00:38 ----DC---- C:\WINDOWS\WinSxS
2009-12-17 11:31:54 ----DC---- C:\WINDOWS\system32\config
2009-12-17 10:45:57 ----RSDC---- C:\WINDOWS\Fonts
2009-12-17 10:42:10 ----DC---- C:\WINDOWS\Registration
2009-12-17 10:19:42 ----DC---- C:\WINDOWS\system32\mui
2009-12-17 10:19:40 ----DC---- C:\WINDOWS\system32\cs-cz
2009-12-17 10:10:21 ----DC---- C:\Program Files\ATI Technologies
2009-12-17 10:10:06 ----DC---- C:\WINDOWS\system32\dllcache
2009-12-17 10:09:57 ----DC---- C:\WINDOWS\system32\CatRoot
2009-12-17 10:09:55 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-17 10:06:28 ----DC---- C:\Program Files\Common Files\Microsoft Shared
2009-12-17 10:06:22 ----DC---- C:\Program Files\Internet Explorer
2009-12-17 10:06:20 ----DC---- C:\WINDOWS\pchealth
2009-12-17 09:51:44 ----DC---- C:\Program Files\Common Files\ATI Technologies
2009-12-16 17:09:20 ----AC---- C:\WINDOWS\system32\winsock.dll
2009-12-16 12:46:01 ----SDC---- C:\WINDOWS\Tasks
2009-12-12 17:05:36 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\BITS
2009-12-11 11:49:11 ----DC---- C:\WINDOWS\Debug
2009-12-10 15:02:52 ----SDC---- C:\WINDOWS\Downloaded Program Files
2009-12-10 14:54:31 ----DC---- C:\Program Files\AMD
2009-12-10 14:54:30 ----RSHC---- C:\boot.ini
2009-12-09 12:02:44 ----AC---- C:\WINDOWS\imsins.BAK
2009-12-09 12:02:33 ----DC---- C:\WINDOWS\ie8updates
2009-12-09 12:02:31 ----HDC---- C:\WINDOWS\$hf_mig$
2009-12-08 19:09:50 ----SDC---- C:\Documents and Settings\zBosS\Data aplikací\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 wpsdrvnt;wpsdrvnt; \??\C:\WINDOWS\system32\drivers\wpsdrvnt.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-10-16 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-10-16 25888]
R2 wg3n;SyGate for NT, wg3n; C:\WINDOWS\SYSTEM32\Drivers\wg3n.sys [2004-10-15 14568]
R2 wg4n;SyGate for NT, wg4n; C:\WINDOWS\SYSTEM32\Drivers\wg4n.sys [2004-10-15 14568]
R2 wg5n;SyGate for NT, wg5n; C:\WINDOWS\SYSTEM32\Drivers\wg5n.sys [2004-10-15 14568]
R2 wg6n;SyGate for NT, wg6n; C:\WINDOWS\SYSTEM32\Drivers\wg6n.sys [2004-10-15 14568]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-11-04 4423168]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2009-11-20 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-05-31 96896]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 catchme;catchme; \??\C:\DOCUME~1\zBosS\LOCALS~1\Temp\catchme.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-10-18 721904]
S4 vsdatant;vsdatant; C:\WINDOWS\system32\drivers\vsdatant.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-11-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 SmcService;Sygate Personal Firewall; C:\Program Files\Sygate\SPF\smc.exe [2005-03-05 2573536]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-13 135664]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Vypněte obnovu systému, restartujte PC a obnovu opět zapněte. Log již vypadá OK.

[BoRy]

Jeste sem spustil Avast sken, ktery mi odstranil nejakeho cerva, takze to vypada, ze je snad vse v poradku. No uvidi se zda-li pc nebude zamrzat, coz verim ze po Vasich radach nebude. Mnohokrat Vam dekuji a do Noveho roku preji uspesny boj s veskerou pc haveti. DEKUJI.

[Rudy]

Vše nejlepší do nového roku i vám a nemáte zač!