Pomalý NB, zamrzání

Zpráva

otulka · #1 Příspěvek od **otulka** » 07 zář 2010 07:26

Mám problém s AcerExtensa (OS W7).
Je pomalý. Když na něm delší dobu pracuji, najednou začne zničeho nic překotně blikat ledka disku i když nic nedělám. Pak ledka bikat přestane a NB zamrzne, i když lze pohybovat kurzorem myši, NB na nic nereaguje a i když jsem ho nechal celou noc, tak nerozmrzne.Pak ho musím vypnout natvrdo a projet ho nouzovým režimem.
NB je po reinstalaci OS a včech programů, protože mi předtím zkolaboval při akceptování změn v Acronis Try&Decide (velký balík dat stále načítal celý den).
Udělal jsem test Combofixem a při prvním testu NB zase zamrznul, takže log je z druhého testu. Takže tam nejsou žádné případně smazané soubory vidět.

ComboFix 10-09-06.01 - otulka 07.09.2010 7:56.4.1 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.1014.345 [GMT 2:00]
Spuštěný z: C:\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-08-07 do 2010-09-07 )))))))))))))))))))))))))))))))
.

2010-09-07 06:05 . 2010-09-07 06:05 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-09-07 06:05 . 2010-09-07 06:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-06 18:20 . 2010-09-07 06:02 -------- d-----w- c:\users\otulka\AppData\Local\temp
2010-09-06 15:43 . 2010-09-06 17:40 3839076 ----a-r- C:\ComboFix.exe
2010-09-05 06:18 . 2010-09-05 06:18 -------- d-----w- c:\program files\xp-AntiSpy
2010-09-05 06:00 . 2010-09-05 06:00 -------- d-----w- C:\found.001
2010-09-04 06:22 . 2010-09-04 06:22 -------- d-----w- C:\found.000
2010-09-04 05:30 . 2010-09-04 05:30 -------- d-----w- c:\windows\Sun
2010-09-03 19:05 . 2010-09-03 19:05 -------- d-----w- c:\programdata\Martau
2010-09-03 19:05 . 2010-09-04 10:18 -------- d-----w- c:\program files\Total Uninstall 5
2010-08-31 21:48 . 2010-09-03 05:40 -------- d-----w- c:\program files\Microsoft Silverlight
2010-08-29 17:52 . 2010-08-29 17:52 368736 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2010-08-29 09:23 . 2010-08-29 09:23 -------- d-----w- c:\users\otulka\AppData\Roaming\ICE Book Reader Professional Russian
2010-08-29 09:23 . 2010-08-29 09:23 -------- d-----w- c:\programdata\ICE Book Reader Professional Russian
2010-08-29 09:23 . 2010-08-29 09:23 -------- d-----w- c:\program files\ICE Book Reader Professional Russian
2010-08-29 09:10 . 2010-08-29 09:23 2884394 ----a-w- c:\users\otulka\AppData\Roaming\ICE Book Reader Rus.exe
2010-08-28 13:20 . 2010-08-28 13:20 -------- dc----w- c:\users\otulka\AppData\Local\MigWiz
2010-08-27 13:23 . 2010-08-27 15:56 -------- d--h--w- c:\program files\InstallJammer Registry
2010-08-27 13:02 . 2010-08-27 13:14 -------- d-----w- c:\users\otulka\Calibre Library
2010-08-25 02:56 . 2010-04-07 07:10 571904 ----a-w- c:\windows\system32\oleaut32.dll
2010-08-24 19:27 . 2010-08-24 19:27 -------- d-----w- c:\users\otulka\AppData\Local\ElevatedDiagnostics
2010-08-21 04:35 . 2010-08-21 04:42 -------- d-----w- c:\program files\Microsoft Works
2010-08-21 04:33 . 2010-08-31 21:38 -------- d-----w- c:\program files\Microsoft.NET
2010-08-21 04:33 . 2010-08-21 04:33 -------- d-----w- c:\windows\PCHEALTH
2010-08-21 04:31 . 2010-08-21 04:31 -------- d-----r- C:\MSOCache
2010-08-21 04:12 . 2010-08-21 04:12 -------- d-----w- c:\users\otulka\AppData\Roaming\Malwarebytes
2010-08-21 04:12 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-08-21 04:12 . 2010-08-21 04:12 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-21 04:12 . 2010-08-21 04:12 -------- d-----w- c:\programdata\Malwarebytes
2010-08-21 04:12 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-08-20 08:14 . 2010-08-20 08:14 -------- d-----w- c:\program files\FlashFire
2010-08-20 06:30 . 2010-08-20 06:30 -------- d-----w- c:\users\otulka\AppData\Local\eSupport.com
2010-08-20 05:42 . 2010-08-20 05:42 -------- d-----w- C:\Device
2010-08-20 03:03 . 2010-08-20 03:03 472576 ----a-w- c:\windows\AutoKMS.exe
2010-08-19 19:24 . 2010-08-19 19:24 -------- d-----w- c:\program files\Axesstel
2010-08-19 17:03 . 2010-09-04 08:18 28672 ----a-w- c:\windows\system32\AF15BDAEX.dll
2010-08-19 17:03 . 2010-09-04 08:18 126 ----a-w- c:\windows\system32\AF15IRTBL.bin
2010-08-19 16:06 . 2010-08-19 16:06 -------- d-----w- c:\users\otulka\AppData\Local\ArcSoft
2010-08-19 16:04 . 2006-11-10 13:05 18688 ----a-w- c:\windows\system32\drivers\afc.sys
2010-08-19 16:04 . 2010-09-04 08:11 -------- d-----w- c:\program files\MSI
2010-08-19 16:04 . 2010-09-04 08:11 -------- d-----w- c:\program files\Common Files\ArcSoft
2010-08-19 15:58 . 2010-08-19 16:05 -------- d-----w- c:\users\otulka\AppData\Roaming\ArcSoft
2010-08-19 15:52 . 2010-08-19 15:52 -------- d-----w- c:\windows\VMUVC
2010-08-19 15:52 . 2008-07-01 09:12 398720 ----a-w- c:\windows\system32\drivers\vvftUVC.sys
2010-08-19 15:52 . 2008-09-02 15:47 94208 ----a-w- c:\windows\system32\VvFtCtrl.dll
2010-08-19 15:51 . 2010-08-19 15:51 -------- d-----w- c:\program files\Vimicro Corporation
2010-08-19 15:51 . 2009-05-25 15:31 252416 ----a-w- c:\windows\system32\drivers\VMUVC.sys
2010-08-19 15:51 . 2008-02-29 08:11 11776 ----a-w- c:\windows\system32\VMUVC.dll
2010-08-19 15:30 . 2010-08-19 15:31 -------- d-----w- c:\program files\mp3DC203
2010-08-19 15:30 . 2010-08-19 15:30 -------- d-----w- c:\users\otulka\AppData\Roaming\Media Player Classic
2010-08-19 15:29 . 2010-08-19 15:29 -------- d-----w- c:\program files\Real Alternative
2010-08-19 15:29 . 2010-08-19 15:29 -------- d-----w- c:\users\otulka\AppData\Local\Real
2010-08-19 15:23 . 2010-08-19 15:23 -------- d-----w- c:\program files\WinPcap
2010-08-19 15:20 . 2010-08-19 15:20 -------- d-----w- c:\program files\DsNET Corp
2010-08-19 15:17 . 2010-08-19 15:17 -------- d-----w- c:\program files\GIF Movie Gear
2010-08-19 15:10 . 2003-11-04 17:08 1032192 ----a-w- c:\windows\AquaReal.scr
2010-08-19 15:10 . 2010-08-19 15:10 -------- d-----w- c:\program files\Formosoft
2010-08-19 15:10 . 2002-11-15 15:56 131072 ----a-w- c:\windows\SNVerifyDLL.dll
2010-08-19 15:01 . 2010-08-19 15:01 -------- d-----w- c:\users\otulka\AppData\Local\Cosect
2010-08-19 14:59 . 2010-08-19 15:00 -------- d-----w- c:\program files\DisCryptor
2010-08-19 14:30 . 2010-08-19 16:05 -------- d-----w- c:\programdata\ArcSoft
2010-08-19 14:28 . 2010-08-19 16:24 -------- d-----w- c:\windows\Downloaded Installations
2010-08-19 13:51 . 2010-08-19 13:51 -------- d-----w- c:\program files\linguatec
2010-08-19 13:37 . 2010-08-19 13:37 -------- d-----w- c:\program files\Acapela Group
2010-08-19 13:37 . 2010-08-19 13:46 -------- d-----w- C:\Infovox2.lic
2010-08-19 13:36 . 2010-08-19 13:36 -------- d-----w- c:\users\otulka\AppData\Roaming\Balabolka
2010-08-19 13:35 . 2010-08-19 13:36 -------- d-----w- c:\program files\Balabolka
2010-08-19 13:19 . 2010-08-29 11:26 -------- d-----w- c:\program files\ABC Amber Palm Converter
2010-08-19 12:35 . 2010-08-19 12:35 -------- d-----w- c:\users\otulka\AppData\Roaming\EPSON
2010-08-19 12:30 . 2006-04-18 02:00 102400 ----a-w- c:\programdata\EPSON\EPW!3 SSRP\E_S30RP1.EXE
2010-08-19 12:28 . 2004-09-10 18:12 49152 ----a-w- c:\windows\system32\E_DCINST.DLL
2010-08-19 12:28 . 2006-08-10 00:02 75264 ----a-w- c:\windows\system32\E_FLBBEE.DLL
2010-08-19 12:28 . 2006-04-19 00:00 62976 ----a-w- c:\windows\system32\E_FD4BBEE.DLL
2010-08-19 12:28 . 2010-08-19 12:30 -------- d-----w- c:\programdata\EPSON
2010-08-19 12:23 . 2010-08-19 12:27 -------- d-----w- c:\program files\epson
2010-08-19 12:23 . 2006-10-12 22:00 61952 ----a-w- c:\windows\system32\escwiad.dll
2010-08-19 12:23 . 2005-02-24 22:00 46080 ----a-w- c:\windows\system32\escimgd.dll
2010-08-19 12:23 . 2005-02-24 22:00 22016 ----a-w- c:\windows\system32\esccmd.dll
2010-08-19 08:27 . 2010-08-19 08:27 -------- d-----w- c:\program files\Common Files\PCSuite
2010-08-19 08:27 . 2010-08-19 08:27 -------- d-----w- c:\program files\Common Files\Nokia
2010-08-19 08:26 . 2010-08-19 08:26 -------- d-----w- c:\program files\PC Connectivity Solution
2010-08-19 08:25 . 2010-08-19 07:07 36684048 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze_web.exe
2010-08-19 08:25 . 2010-08-19 08:25 95232 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-08-19 08:25 . 2010-08-19 08:25 8192 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-08-19 08:25 . 2010-08-19 08:25 61440 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-08-19 08:25 . 2010-08-19 08:25 10240 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe
2010-08-19 06:40 . 2010-08-19 06:40 -------- d-----w- c:\program files\Broadcom
2010-08-19 06:16 . 2007-08-29 17:38 99880 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2010-08-19 06:16 . 2007-05-17 16:38 28464 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2010-08-19 06:16 . 2007-08-29 17:38 17448 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2010-08-19 06:16 . 2007-08-29 17:38 81448 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2010-08-19 06:16 . 2007-08-28 16:22 233472 ----a-w- c:\windows\system32\BtwRSupport.dll
2010-08-19 06:16 . 2010-08-19 06:16 -------- d-----w- c:\windows\system32\es-MX
2010-08-19 06:16 . 2010-08-19 06:16 -------- d-----w- c:\windows\system32\es-AR
2010-08-19 06:03 . 2010-08-19 06:03 -------- d-----w- c:\users\otulka\Bluetooth Software
2010-08-19 06:02 . 2010-08-19 06:02 -------- d-----w- c:\program files\WIDCOMM
2010-08-19 05:34 . 2010-08-19 06:50 -------- d-----w- c:\users\otulka\AppData\Roaming\PC Suite
2010-08-19 05:34 . 2010-08-19 07:03 -------- d-----w- c:\users\otulka\AppData\Roaming\Nokia
2010-08-19 05:34 . 2010-08-20 05:02 -------- d-----w- c:\programdata\PC Suite
2010-08-19 05:34 . 2010-08-19 05:34 -------- d-----w- c:\program files\DIFX
2010-08-19 05:34 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-08-19 05:34 . 2010-08-19 08:26 -------- dc----w- c:\windows\system32\DRVSTORE
2010-08-19 05:33 . 2010-02-26 12:32 92672 ----a-w- c:\windows\system32\nmwcdcls.dll
2010-08-19 05:33 . 2010-08-19 08:27 -------- d-----w- c:\program files\Nokia
2010-08-19 05:33 . 2010-02-17 21:19 34701512 ----a-w- c:\programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_cze_web.exe
2010-08-19 05:32 . 2010-08-19 05:32 95232 ----a-w- c:\programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe
2010-08-19 05:32 . 2010-08-19 05:32 8192 ----a-w- c:\programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe
2010-08-19 05:32 . 2010-08-19 05:32 61440 ----a-w- c:\programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-08-19 05:32 . 2010-08-19 05:32 10240 ----a-w- c:\programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe
2010-08-19 05:32 . 2010-08-19 07:07 -------- d-----w- c:\programdata\Installations
2010-08-19 05:07 . 2010-08-19 05:07 -------- d---a-w- C:\CrystalDisk
2010-08-19 02:14 . 2010-08-19 02:14 -------- d-----w- c:\programdata\Nero
2010-08-19 02:14 . 2010-08-19 02:14 -------- d-----w- c:\program files\Nero
2010-08-19 02:14 . 2010-08-19 02:16 -------- d-----w- c:\program files\Common Files\Ahead
2010-08-19 01:07 . 2010-09-05 18:51 -------- d-----w- c:\users\otulka\AppData\Roaming\Myntry2010
2010-08-19 01:02 . 2010-09-05 13:46 -------- d-----w- c:\users\otulka\AppData\Local\Deployment
2010-08-19 00:55 . 2010-08-19 00:55 -------- d---a-w- c:\program files\ZvetsujeOkna
2010-08-19 00:11 . 2010-08-19 00:11 -------- d-----w- c:\windows\system32\Wat
2010-08-18 23:41 . 2010-08-18 23:51 -------- d-----w- C:\SMS
2010-08-18 23:14 . 2009-12-17 22:14 30536 ----a-w- c:\windows\system32\TURegOpt.exe
2010-08-18 23:14 . 2009-12-17 22:09 21320 ----a-w- c:\windows\system32\authuitu.dll
2010-08-18 23:14 . 2009-12-17 22:08 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-08-18 23:14 . 2010-08-18 23:14 -------- d-----w- c:\users\otulka\AppData\Roaming\TuneUp Software
2010-08-18 23:14 . 2010-08-18 23:14 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-08-18 23:13 . 2010-08-18 23:14 -------- d-----w- c:\programdata\TuneUp Software

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-05 06:17 . 2009-07-14 08:44 634546 ----a-w- c:\windows\system32\perfh005.dat
2010-09-05 06:17 . 2009-07-14 08:44 123104 ----a-w- c:\windows\system32\perfc005.dat
2010-08-20 17:10 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-08-20 06:05 . 2010-08-18 20:05 -------- d--h--w- c:\program files\Temp
2010-08-19 08:32 . 2010-08-19 08:32 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2010-08-19 06:50 . 2010-08-19 06:50 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
2010-08-18 20:05 . 2010-08-18 20:05 -------- d-----w- c:\program files\Realtek
2010-08-18 20:02 . 2010-08-18 20:02 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2010-08-18 10:44 . 2010-08-18 10:44 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2010-08-18 10:01 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Plocha
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Oblíbené položky
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Šablony
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Nabídka Start
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Dokumenty
2010-08-18 06:49 . 2010-08-18 06:49 -------- d-sh--we c:\programdata\Data aplikací
2010-08-18 06:43 . 2010-08-18 06:43 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-06-30 06:25 . 2010-08-18 09:39 978432 ----a-w- c:\windows\system32\wininet.dll
2010-06-24 07:04 . 2010-06-24 07:04 136120 ----a-w- c:\windows\system32\drivers\eamonm.sys
2010-06-22 02:47 . 2010-08-18 09:38 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-22 02:47 . 2010-08-18 09:38 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-06-22 02:47 . 2010-08-18 09:38 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-06-19 06:33 . 2010-08-18 09:38 3899784 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-06-19 06:33 . 2010-08-18 09:38 3955080 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-06-19 06:23 . 2010-08-18 09:38 37376 ----a-w- c:\windows\system32\rtutils.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ClocX"="c:\program files\ClocX\ClocX.exe" [2007-07-26 270336]
"Seznam Postak"="c:\program files\Seznam.cz\postak.exe" [2010-03-01 451224]
"TouchFreeze"="c:\program files\TouchFreeze\TouchFreeze.exe" [2005-04-29 45056]
"ccleaner"="c:\program files\CCleaner\ccleaner.exe" [2010-06-23 1699128]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-05-07 26211624]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-07-02 2202704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-07 102400]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2008-10-13 6335008]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2007-10-23 2615624]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2007-10-23 906648]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2007-10-23 140568]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-8-28 739880]
proces_killer - z stupce.lnk - C:\proces_killer.exe [2010-8-18 26624]
procexp.lnk - c:\program files\procexp\procexp.exe [2010-8-18 1459776]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoSecCpl"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk
backup=c:\windows\pss\TMMonitor.lnk.CommonStartup
backupExtension=.CommonStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2007-05-10 21:46 624248 ----a-w- c:\program files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2008-01-22 09:13 152872 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
2009-01-29 22:20 57344 ----a-w- c:\program files\SlySoft\CloneCD\CloneCDTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus DX4000 Series]
2006-09-21 02:01 139264 ----a-w- c:\windows\System32\spool\drivers\w32x86\3\E_FATIBEE.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2008-05-28 06:27 570664 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2010-08-18 11:25 26624 ----a-w- c:\windows\OETRN.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2007-10-23 14:05 2615624 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VMonitorVMUVC]
2008-08-29 15:27 143360 ----a-w- c:\program files\Vimicro Corporation\VMUVC\VMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ArcSoft Connection Service"=c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2007-05-17 28464]
R3 flash;flash;c:\windows\system32\drivers\flash.sys [2005-11-17 8064]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\Drivers\VMUVC.sys [2009-05-25 252416]
R3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys [2008-07-01 398720]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-19 1343400]
S0 ffire;FlashFire;c:\windows\system32\DRIVERS\ffirel.sys [2009-07-23 14336]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-04-28 114984]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-06-24 136120]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2010-07-02 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-04-28 41312]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-11-16 50704]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-17 1044808]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]

--- Ostatní služby/ovladače v paměti ---

*Deregistered* - PROCEXP100

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
FF - ProfilePath - c:\users\otulka\AppData\Roaming\Mozilla\Firefox\Profiles\q4dyx3eh.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\users\otulka\AppData\Roaming\Mozilla\Firefox\Profiles\q4dyx3eh.default\extensions\ietab@ip.cn\plugins\npCoralIETab.dll

---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
MSConfigStartUp-ArcSoft Connection Service - c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSConfigStartUp-BCSSync - c:\program files\Microsoft Office\Office14\BCSSync.exe
MSConfigStartUp-Služba Acronis Scheduler2 - c:\program files\Common Files\Acronis\Plán2\schedhlp.exe

.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(692)
c:\windows\system32\relog_ap.DLL
.
Celkový čas: 2010-09-07 08:10:48
ComboFix-quarantined-files.txt 2010-09-07 06:10
ComboFix2.txt 2010-08-20 09:07
ComboFix3.txt 2010-08-20 05:49

Před spuštěním: Volných bajtů: 27 194 298 368
Po spuštění: Volných bajtů: 27 139 547 136

- - End Of File - - 3877417A3140BE71D6C957FF24EF0106

#2 Příspěvek od **Rudy** » 07 zář 2010 17:38

Ani smazané soubory, ani další šmejdy. Změnilo se teď něco?

otulka · #3 Příspěvek od **otulka** » 08 zář 2010 07:21

Nezměnilo. Naopak. Celý systém zkolaboval a musel jsem obnovit ze zálohy, kterou jsem naštěstí udělal hned po instlaci. Dávám sem log z RSIT jestli tam něco nemám hned po instalaci.
Nechtělo mi to sem pustit protože to má víc než 6000 znaků tak je to tady
http://leteckaposta.cz/781016387

Logfile of random's system information tool 1.08 (written by random/random)
Run by otulka at 2010-09-08 08:13:10
Microsoft Windows 7 Ultimate
System drive C: has 28 GB (62%) free of 45 GB
Total RAM: 1014 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:13:28, on 8.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\ClocX\ClocX.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Program Files\TouchFreeze\TouchFreeze.exe
C:\Users\otulka\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\proces_killer.exe
C:\Program Files\procexp\procexp.exe
E:\TrueCrypt\TrueCrypt.exe
C:\Program Files\NOD32view\NOD32view.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\DAP\DAP.EXE
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\otulka\Downloads\RSIT.exe
C:\Program Files\trend micro\otulka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Windows\WebIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.2.dll
O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\DAP\DAPIEL~1.DLL
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Windows\WebIE.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [TouchFreeze] C:\Program Files\TouchFreeze\TouchFreeze.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: proces_killer – zástupce.lnk = C:\proces_killer.exe
O4 - Global Startup: procexp.lnk = C:\Program Files\procexp\procexp.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Windows\WebIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Windows\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Windows\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Windows\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Windows\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Windows\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Windows\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Windows\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Windows\WebIE.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9156 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Windows\WebIE.dll [2010-08-18 491520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\core.2.dll [2010-03-01 1107608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
DAPIELoader Class - C:\PROGRA~1\DAP\DAPIEL~1.DLL [2010-08-18 140880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Windows\WebIE.dll [2010-08-18 491520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-07-02 2202704]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-07 102400]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2008-10-13 6335008]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2007-10-23 2615624]
"AcronisTimounterMonitor"=C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [2007-10-23 906648]
"Acronis Scheduler2 Service"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2007-10-23 140568]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ClocX"=C:\Program Files\ClocX\ClocX.exe [2007-07-26 270336]
"Seznam Postak"=C:\Program Files\Seznam.cz\postak.exe [2010-03-01 451224]
"TouchFreeze"=C:\Program Files\TouchFreeze\TouchFreeze.exe [2005-04-29 45056]
"ccleaner"=C:\Program Files\CCleaner\ccleaner.exe [2010-06-23 1699128]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2007-05-10 624248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2008-01-16 72192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2008-01-22 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus DX4000 Series]
C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE [2006-09-21 139264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2008-05-28 570664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
C:\Windows\OETRN.EXE [2010-08-18 26624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
C:\Program Files\Common Files\Acronis\Plán2\schedhlp.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2007-10-23 2615624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VMonitorVMUVC]
C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe [2008-08-29 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
C:\PROGRA~1\MSI\TOTALM~1.5\TMMONI~1.EXE [2007-12-17 258048]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
proces_killer – zástupce.lnk - C:\proces_killer.exe
procexp.lnk - C:\Program Files\procexp\procexp.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoSecCpl"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoDrives"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\System32\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\System32\CScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-08 08:10:43 ----D---- C:\rsit
2010-08-29 19:52:38 ----D---- C:\ProgramData\Acronis
2010-08-29 19:52:17 ----A---- C:\Windows\system32\drivers\tdrpman.sys
2010-08-29 11:23:49 ----D---- C:\Users\otulka\AppData\Roaming\ICE Book Reader Professional Russian
2010-08-29 11:23:49 ----D---- C:\ProgramData\ICE Book Reader Professional Russian
2010-08-29 11:23:49 ----D---- C:\Program Files\ICE Book Reader Professional Russian
2010-08-29 11:10:22 ----A---- C:\Users\otulka\AppData\Roaming\ICE Book Reader Rus.exe
2010-08-29 05:41:08 ----D---- C:\Program Files\ArcSoft
2010-08-27 15:23:42 ----HD---- C:\Program Files\InstallJammer Registry
2010-08-25 14:12:17 ----A---- C:\Windows\MAILTRAN.INI
2010-08-25 04:56:49 ----A---- C:\Windows\system32\oleaut32.dll
2010-08-21 06:35:37 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-21 06:35:35 ----D---- C:\Program Files\Microsoft Works
2010-08-21 06:33:14 ----D---- C:\Windows\PCHEALTH
2010-08-21 06:33:14 ----D---- C:\Program Files\Microsoft.NET
2010-08-21 06:31:05 ----RHD---- C:\MSOCache
2010-08-21 06:12:17 ----D---- C:\Users\otulka\AppData\Roaming\Malwarebytes
2010-08-21 06:12:09 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-08-21 06:12:07 ----D---- C:\ProgramData\Malwarebytes
2010-08-21 06:12:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-08-21 06:12:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-08-20 11:07:04 ----D---- C:\Windows\temp
2010-08-20 11:07:01 ----A---- C:\ComboFix.txt
2010-08-20 11:03:51 ----SHD---- C:\$RECYCLE.BIN
2010-08-20 10:43:48 ----A---- C:\Windows\NIRCMD.exe
2010-08-20 10:43:11 ----A---- C:\Windows\SWXCACLS.exe
2010-08-20 10:14:21 ----D---- C:\Program Files\FlashFire
2010-08-20 07:42:08 ----D---- C:\Device
2010-08-20 07:30:51 ----A---- C:\Windows\zip.exe
2010-08-20 07:30:51 ----A---- C:\Windows\SWSC.exe
2010-08-20 07:30:51 ----A---- C:\Windows\SWREG.exe
2010-08-20 07:30:51 ----A---- C:\Windows\sed.exe
2010-08-20 07:30:51 ----A---- C:\Windows\PEV.exe
2010-08-20 07:30:51 ----A---- C:\Windows\MBR.exe
2010-08-20 07:30:51 ----A---- C:\Windows\grep.exe
2010-08-20 07:30:27 ----D---- C:\Windows\ERDNT
2010-08-20 07:30:12 ----D---- C:\Qoobox
2010-08-20 07:20:06 ----D---- C:\Windows\pss
2010-08-20 06:07:12 ----AD---- C:\ProgramData\TEMP
2010-08-20 05:10:04 ----A---- C:\Windows\WTRAN32.INI
2010-08-20 05:03:59 ----A---- C:\Windows\AutoKMS.exe
2010-08-19 22:34:58 ----A---- C:\Windows\SpeechPad.INI
2010-08-19 21:24:13 ----D---- C:\Program Files\Axesstel
2010-08-19 19:03:51 ----A---- C:\Windows\system32\AF15BDAEX.dll
2010-08-19 19:03:10 ----A---- C:\Windows\system32\drivers\AF15BDA.sys
2010-08-19 18:04:57 ----A---- C:\Windows\system32\drivers\afc.sys
2010-08-19 18:04:25 ----D---- C:\Program Files\MSI
2010-08-19 18:04:25 ----A---- C:\Windows\system32\unicows.dll
2010-08-19 18:04:24 ----D---- C:\Program Files\Common Files\ArcSoft
2010-08-19 17:58:32 ----D---- C:\Users\otulka\AppData\Roaming\ArcSoft
2010-08-19 17:52:25 ----D---- C:\Windows\VMUVC
2010-08-19 17:52:02 ----A---- C:\Windows\system32\drivers\vvftUVC.sys
2010-08-19 17:52:01 ----A---- C:\Windows\system32\VvFtCtrl.dll
2010-08-19 17:51:58 ----D---- C:\Program Files\Vimicro Corporation
2010-08-19 17:51:58 ----A---- C:\Windows\system32\VMUVC.dll
2010-08-19 17:51:58 ----A---- C:\Windows\system32\drivers\VMUVC.sys
2010-08-19 17:30:47 ----D---- C:\Program Files\mp3DC203
2010-08-19 17:30:15 ----D---- C:\Users\otulka\AppData\Roaming\Media Player Classic
2010-08-19 17:29:50 ----A---- C:\Windows\system32\rmoc3260.dll
2010-08-19 17:29:50 ----A---- C:\Windows\system32\pndx5032.dll
2010-08-19 17:29:50 ----A---- C:\Windows\system32\pndx5016.dll
2010-08-19 17:29:50 ----A---- C:\Windows\system32\pncrt.dll
2010-08-19 17:29:47 ----D---- C:\ProgramData\Real
2010-08-19 17:29:47 ----D---- C:\Program Files\Real Alternative
2010-08-19 17:29:21 ----D---- C:\Users\otulka\AppData\Roaming\Real
2010-08-19 17:23:54 ----D---- C:\Program Files\WinPcap
2010-08-19 17:20:37 ----D---- C:\Program Files\DsNET Corp
2010-08-19 17:17:16 ----D---- C:\Program Files\GIF Movie Gear
2010-08-19 17:10:56 ----D---- C:\Program Files\Formosoft
2010-08-19 17:10:56 ----A---- C:\Windows\SNVerifyDLL.dll
2010-08-19 16:59:14 ----D---- C:\Program Files\DisCryptor
2010-08-19 16:30:27 ----D---- C:\ProgramData\ArcSoft
2010-08-19 16:28:51 ----D---- C:\Windows\Downloaded Installations
2010-08-19 15:51:17 ----D---- C:\Program Files\linguatec
2010-08-19 15:37:07 ----D---- C:\Program Files\Acapela Group
2010-08-19 15:37:06 ----D---- C:\Infovox2.lic
2010-08-19 15:36:04 ----D---- C:\Users\otulka\AppData\Roaming\Balabolka
2010-08-19 15:35:51 ----D---- C:\Program Files\Balabolka
2010-08-19 15:19:00 ----D---- C:\Program Files\ABC Amber Palm Converter
2010-08-19 14:35:19 ----D---- C:\Users\otulka\AppData\Roaming\EPSON
2010-08-19 14:28:16 ----A---- C:\Windows\system32\E_DCINST.DLL
2010-08-19 14:28:15 ----A---- C:\Windows\system32\E_FLBBEE.DLL
2010-08-19 14:28:14 ----A---- C:\Windows\system32\E_FD4BBEE.DLL
2010-08-19 14:28:01 ----D---- C:\ProgramData\EPSON
2010-08-19 14:23:52 ----A---- C:\Windows\EPSMTL32.TXT
2010-08-19 14:23:25 ----D---- C:\Program Files\epson
2010-08-19 14:23:24 ----A---- C:\Windows\system32\escwiad.dll
2010-08-19 14:23:24 ----A---- C:\Windows\system32\escimgd.dll
2010-08-19 14:23:24 ----A---- C:\Windows\system32\esccmd.dll
2010-08-19 14:23:08 ----A---- C:\Windows\CDE DX4000.ini
2010-08-19 10:27:08 ----D---- C:\Program Files\Common Files\PCSuite
2010-08-19 10:27:06 ----D---- C:\Program Files\Common Files\Nokia
2010-08-19 10:26:13 ----D---- C:\Program Files\PC Connectivity Solution
2010-08-19 08:57:57 ----D---- C:\Users\otulka\AppData\Roaming\Macromedia
2010-08-19 08:40:25 ----D---- C:\Program Files\Broadcom
2010-08-19 08:16:47 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2010-08-19 08:16:47 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2010-08-19 08:16:46 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2010-08-19 08:16:46 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2010-08-19 08:16:42 ----A---- C:\Windows\system32\BtwRSupport.dll
2010-08-19 08:16:25 ----D---- C:\Windows\system32\es-MX
2010-08-19 08:16:25 ----D---- C:\Windows\system32\es-AR
2010-08-19 08:02:34 ----D---- C:\Program Files\WIDCOMM
2010-08-19 07:34:53 ----D---- C:\Users\otulka\AppData\Roaming\PC Suite
2010-08-19 07:34:52 ----D---- C:\Users\otulka\AppData\Roaming\Nokia
2010-08-19 07:34:51 ----D---- C:\ProgramData\PC Suite
2010-08-19 07:34:06 ----D---- C:\Program Files\DIFX
2010-08-19 07:34:06 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-08-19 07:34:03 ----DC---- C:\Windows\system32\DRVSTORE
2010-08-19 07:33:30 ----A---- C:\Windows\system32\nmwcdcls.dll
2010-08-19 07:33:29 ----D---- C:\Program Files\Nokia
2010-08-19 07:32:26 ----D---- C:\ProgramData\Installations
2010-08-19 07:07:58 ----AD---- C:\CrystalDisk
2010-08-19 04:14:50 ----D---- C:\ProgramData\Nero
2010-08-19 04:14:50 ----D---- C:\Program Files\Nero
2010-08-19 04:14:49 ----D---- C:\Program Files\Common Files\Ahead
2010-08-19 03:07:33 ----D---- C:\Users\otulka\AppData\Roaming\Myntry2010
2010-08-19 02:55:47 ----AD---- C:\Program Files\ZvetsujeOkna
2010-08-19 02:11:53 ----D---- C:\Windows\system32\Wat
2010-08-19 01:41:50 ----D---- C:\SMS
2010-08-19 01:14:32 ----A---- C:\Windows\system32\TURegOpt.exe
2010-08-19 01:14:29 ----A---- C:\Windows\system32\uxtuneup.dll
2010-08-19 01:14:29 ----A---- C:\Windows\system32\authuitu.dll
2010-08-19 01:14:14 ----D---- C:\Users\otulka\AppData\Roaming\TuneUp Software
2010-08-19 01:14:06 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-08-19 01:13:59 ----D---- C:\ProgramData\TuneUp Software
2010-08-19 01:13:38 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-08-19 00:16:20 ----D---- C:\ProgramData\Microsoft Help
2010-08-18 23:46:59 ----D---- C:\Windows\system32\Macromed
2010-08-18 22:38:26 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-18 22:28:04 ----D---- C:\Windows\tiinst
2010-08-18 22:27:19 ----A---- C:\Windows\HideWin.exe
2010-08-18 22:25:24 ----A---- C:\Windows\system32\CSVer.dll
2010-08-18 22:09:36 ----D---- C:\ProgramData\Martau
2010-08-18 22:09:29 ----D---- C:\Program Files\Total Uninstall 5
2010-08-18 22:06:08 ----D---- C:\Windows\system32\RTCOM
2010-08-18 22:05:45 ----A---- C:\Windows\system32\WavesLib.dll
2010-08-18 22:05:45 ----A---- C:\Windows\system32\SRSWOW.dll
2010-08-18 22:05:45 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-08-18 22:05:45 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-08-18 22:05:45 ----A---- C:\Windows\system32\SRSHP360.dll
2010-08-18 22:05:44 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-08-18 22:05:44 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-08-18 22:05:44 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-08-18 22:05:44 ----A---- C:\Windows\system32\RtkAPO.dll
2010-08-18 22:05:44 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-08-18 22:05:43 ----A---- C:\Windows\system32\ppChain.dll
2010-08-18 22:05:43 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-08-18 22:05:43 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-08-18 22:05:43 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2010-08-18 22:05:41 ----A---- C:\Windows\system32\FMAPO.dll
2010-08-18 22:05:41 ----A---- C:\Windows\system32\DaisyWrp.dll
2010-08-18 22:05:41 ----A---- C:\Windows\system32\ctppld.dll
2010-08-18 22:05:41 ----A---- C:\Windows\system32\CTAPO32.dll
2010-08-18 22:05:40 ----D---- C:\Program Files\Realtek
2010-08-18 22:05:40 ----A---- C:\Windows\system32\AERTARen.dll
2010-08-18 22:05:40 ----A---- C:\Windows\system32\AERTACap.dll
2010-08-18 22:05:38 ----HD---- C:\Program Files\Temp
2010-08-18 22:02:13 ----D---- C:\Program Files\Synaptics
2010-08-18 21:55:05 ----A---- C:\Windows\system32\WdfCoInstaller01000.dll
2010-08-18 21:55:04 ----A---- C:\Windows\system32\SynTPCo4.dll
2010-08-18 21:55:04 ----A---- C:\Windows\system32\SynTPAPI.dll
2010-08-18 21:55:03 ----A---- C:\Windows\system32\SynCtrl.dll
2010-08-18 21:55:03 ----A---- C:\Windows\system32\SynCOM.dll
2010-08-18 21:55:03 ----A---- C:\Windows\system32\drivers\SynTP.sys
2010-08-18 21:53:46 ----A---- C:\Windows\DIFxAPI.dll
2010-08-18 21:18:49 ----D---- C:\Program Files\prehravac vlc-1.1.0
2010-08-18 21:18:31 ----D---- C:\Users\otulka\AppData\Roaming\vlc
2010-08-18 20:56:34 ----D---- C:\Program Files\MSXML 4.0
2010-08-18 20:27:54 ----D---- C:\Program Files\CONEXANT
2010-08-18 20:24:28 ----A---- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2010-08-18 20:24:18 ----D---- C:\Users\otulka\AppData\Roaming\365dni
2010-08-18 20:24:05 ----D---- C:\Program Files\365dni
2010-08-18 20:17:13 ----D---- C:\Windows\365dní
2010-08-18 20:03:01 ----D---- C:\Users\otulka\AppData\Roaming\mojosoft
2010-08-18 20:03:01 ----D---- C:\Program Files\MOJOSOFT
2010-08-18 19:50:19 ----D---- C:\Users\otulka\AppData\Roaming\Ahead
2010-08-18 19:50:01 ----D---- C:\ProgramData\Ahead
2010-08-18 19:47:27 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-08-18 19:47:26 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-08-18 19:38:21 ----D---- C:\Program Files\PwViewer
2010-08-18 19:35:51 ----D---- C:\Users\otulka\AppData\Roaming\Vso
2010-08-18 19:35:51 ----A---- C:\Windows\system32\drivers\pcouffin.sys
2010-08-18 19:35:51 ----A---- C:\Users\otulka\AppData\Roaming\pcouffin.sys
2010-08-18 19:35:34 ----D---- C:\Program Files\DVDFab 6
2010-08-18 19:33:37 ----D---- C:\Program Files\SlySoft
2010-08-18 19:29:07 ----D---- C:\Program Files\NOD32view
2010-08-18 19:27:44 ----D---- C:\Program Files\Trend Micro
2010-08-18 17:22:13 ----D---- C:\Users\otulka\AppData\Roaming\skypePM
2010-08-18 17:21:17 ----D---- C:\Users\otulka\AppData\Roaming\Skype
2010-08-18 17:20:07 ----D---- C:\Program Files\Common Files\Skype
2010-08-18 17:20:04 ----RD---- C:\Program Files\Skype
2010-08-18 17:19:43 ----D---- C:\ProgramData\Skype
2010-08-18 16:26:36 ----D---- C:\Program Files\RW-Everything
2010-08-18 16:14:58 ----A---- C:\Windows\system32\drivers\flash.sys
2010-08-18 15:55:10 ----A---- C:\Windows\TRNCOM.INI
2010-08-18 15:52:06 ----D---- C:\Program Files\Everest Ultimate WAR
2010-08-18 15:43:14 ----D---- C:\Users\otulka\AppData\Roaming\WinRAR
2010-08-18 15:42:12 ----D---- C:\Program Files\WinRAR
2010-08-18 15:35:18 ----D---- C:\ProgramData\SpeedBit
2010-08-18 15:34:53 ----D---- C:\Program Files\DAP
2010-08-18 15:27:29 ----D---- C:\Program Files\TouchFreeze
2010-08-18 14:06:47 ----D---- C:\Program Files\Seznam.cz
2010-08-18 13:25:29 ----A---- C:\Windows\WDICT32.INI
2010-08-18 13:25:20 ----A---- C:\Windows\WebIE.dll
2010-08-18 13:25:20 ----A---- C:\Windows\TrnWord.dll
2010-08-18 13:25:20 ----A---- C:\Windows\TrnOutl.dll
2010-08-18 13:25:20 ----A---- C:\Windows\TRNOET.DLL
2010-08-18 13:25:20 ----A---- C:\Windows\TRNOEH.DLL
2010-08-18 13:25:20 ----A---- C:\Windows\OETRN.EXE
2010-08-18 12:56:26 ----D---- C:\ProgramData\Sun
2010-08-18 12:56:26 ----D---- C:\Program Files\Common Files\Java
2010-08-18 12:56:13 ----A---- C:\Windows\system32\javaws.exe
2010-08-18 12:56:13 ----A---- C:\Windows\system32\deployJava1.dll
2010-08-18 12:56:12 ----A---- C:\Windows\system32\javaw.exe
2010-08-18 12:56:12 ----A---- C:\Windows\system32\java.exe
2010-08-18 12:48:55 ----D---- C:\Program Files\I.CA
2010-08-18 12:48:55 ----A---- C:\Windows\system32\ct.ini
2010-08-18 12:36:54 ----D---- C:\ProgramData\FLEXnet
2010-08-18 12:36:46 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-08-18 12:35:55 ----RA---- C:\Windows\system32\AdobePDF.dll
2010-08-18 12:18:38 ----D---- C:\Users\otulka\AppData\Roaming\Adobe
2010-08-18 12:18:00 ----D---- C:\Program Files\Common Files\Adobe
2010-08-18 12:15:15 ----A---- C:\Windows\ODBC.INI
2010-08-18 12:15:10 ----A---- C:\Windows\system32\mdimon.dll
2010-08-18 12:13:22 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-18 12:12:16 ----D---- C:\Program Files\Microsoft Office
2010-08-18 11:57:04 ----D---- C:\Program Files\CCleaner
2010-08-18 11:51:25 ----D---- C:\Program Files\procexp
2010-08-18 11:50:45 ----A---- C:\Windows\system32\msv1_0.dll
2010-08-18 11:49:32 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-08-18 11:49:32 ----A---- C:\Windows\system32\PresentationHost.exe
2010-08-18 11:49:32 ----A---- C:\Windows\system32\netfxperf.dll
2010-08-18 11:49:32 ----A---- C:\Windows\system32\mscoree.dll
2010-08-18 11:49:32 ----A---- C:\Windows\system32\dfshim.dll
2010-08-18 11:45:04 ----A---- C:\Windows\system32\MRT.exe
2010-08-18 11:44:01 ----A---- C:\Windows\system32\browserchoice.exe
2010-08-18 11:40:09 ----A---- C:\Windows\system32\CPFilters.dll
2010-08-18 11:40:08 ----A---- C:\Windows\system32\msdri.dll
2010-08-18 11:40:07 ----A---- C:\Windows\system32\psisdecd.dll
2010-08-18 11:40:02 ----A---- C:\Windows\system32\wmp.dll
2010-08-18 11:39:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-08-18 11:39:59 ----A---- C:\Windows\system32\CertEnroll.dll
2010-08-18 11:39:58 ----A---- C:\Windows\system32\wmploc.DLL
2010-08-18 11:39:58 ----A---- C:\Windows\system32\winresume.exe
2010-08-18 11:39:58 ----A---- C:\Windows\system32\winload.exe
2010-08-18 11:39:31 ----A---- C:\Windows\system32\lsasrv.dll
2010-08-18 11:39:31 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-08-18 11:39:23 ----A---- C:\Windows\system32\mshtml.dll
2010-08-18 11:39:20 ----A---- C:\Windows\system32\ieframe.dll
2010-08-18 11:39:19 ----A---- C:\Windows\system32\urlmon.dll
2010-08-18 11:39:19 ----A---- C:\Windows\system32\mstime.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\wininet.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-18 11:39:18 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\ieui.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\iepeers.dll
2010-08-18 11:39:18 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-18 11:38:35 ----A---- C:\Windows\system32\winlogon.exe
2010-08-18 11:38:35 ----A---- C:\Windows\explorer.exe
2010-08-18 11:38:30 ----A---- C:\Windows\system32\shell32.dll
2010-08-18 11:38:20 ----A---- C:\Windows\system32\inetcomm.dll
2010-08-18 11:38:18 ----A---- C:\Windows\system32\jscript.dll
2010-08-18 11:38:15 ----A---- C:\Windows\system32\rtutils.dll
2010-08-18 11:38:13 ----A---- C:\Windows\system32\msxml3.dll
2010-08-18 11:38:12 ----A---- C:\Windows\system32\msasn1.dll
2010-08-18 11:38:11 ----A---- C:\Windows\system32\asycfilt.dll
2010-08-18 11:38:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-18 11:38:07 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-08-18 11:38:05 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-08-18 11:38:05 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-08-18 11:38:05 ----A---- C:\Windows\system32\secproc_isv.dll
2010-08-18 11:38:05 ----A---- C:\Windows\system32\secproc.dll
2010-08-18 11:38:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-08-18 11:38:05 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-08-18 11:38:05 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-08-18 11:38:05 ----A---- C:\Windows\system32\RMActivate.exe
2010-08-18 11:38:04 ----A---- C:\Windows\system32\kernel32.dll
2010-08-18 11:38:03 ----A---- C:\Windows\system32\apphelp.dll
2010-08-18 11:38:02 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-08-18 11:38:02 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-18 11:38:02 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-18 11:38:01 ----A---- C:\Windows\system32\quartz.dll
2010-08-18 11:38:01 ----A---- C:\Windows\system32\msvidc32.dll
2010-08-18 11:38:01 ----A---- C:\Windows\system32\mciavi32.dll
2010-08-18 11:38:01 ----A---- C:\Windows\system32\avifil32.dll
2010-08-18 11:38:00 ----A---- C:\Windows\system32\tsbyuv.dll
2010-08-18 11:38:00 ----A---- C:\Windows\system32\msyuv.dll
2010-08-18 11:38:00 ----A---- C:\Windows\system32\msrle32.dll
2010-08-18 11:38:00 ----A---- C:\Windows\system32\iyuv_32.dll
2010-08-18 11:37:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-18 11:37:58 ----A---- C:\Windows\system32\ntdll.dll
2010-08-18 11:37:58 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-08-18 11:37:57 ----A---- C:\Windows\system32\t2embed.dll
2010-08-18 11:37:56 ----A---- C:\Windows\system32\vbscript.dll
2010-08-18 11:37:55 ----A---- C:\Windows\system32\ir32_32.dll
2010-08-18 11:37:55 ----A---- C:\Windows\system32\iccvid.dll
2010-08-18 11:36:46 ----A---- C:\Windows\system32\tzres.dll
2010-08-18 11:36:26 ----A---- C:\Windows\system32\fontsub.dll
2010-08-18 11:36:26 ----A---- C:\Windows\system32\atmlib.dll
2010-08-18 11:36:26 ----A---- C:\Windows\system32\atmfd.dll
2010-08-18 11:35:14 ----A---- C:\Windows\system32\schannel.dll
2010-08-18 11:35:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-08-18 11:35:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-08-18 11:35:06 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-08-18 11:34:29 ----A---- C:\Windows\system32\win32k.sys
2010-08-18 11:05:04 ----N---- C:\Windows\system32\MpSigStub.exe
2010-08-18 11:00:46 ----D---- C:\Program Files\Java
2010-08-18 10:57:29 ----AD---- C:\Users\otulka\AppData\Roaming\Mozilla
2010-08-18 10:56:59 ----D---- C:\Program Files\Mozilla Firefox
2010-08-18 10:54:41 ----D---- C:\Program Files\ATI Technologies
2010-08-18 10:54:38 ----D---- C:\Program Files\ATI
2010-08-18 10:54:13 ----D---- C:\ATI
2010-08-18 10:50:59 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-18 10:50:58 ----D---- C:\Users\otulka\AppData\Roaming\InstallShield
2010-08-18 10:49:58 ----D---- C:\Intel
2010-08-18 10:47:59 ----D---- C:\Windows\system32\Lang
2010-08-18 10:47:59 ----A---- C:\Windows\system32\TVWizudlg.exe
2010-08-18 10:47:59 ----A---- C:\Windows\system32\igfxtvcx.dll
2010-08-18 10:47:57 ----D---- C:\Program Files\Intel
2010-08-18 10:44:20 ----D---- C:\Windows\system32\x64
2010-08-18 10:44:20 ----A---- C:\Windows\system32\igxpun.exe
2010-08-18 10:43:19 ----D---- C:\Program Files\IrfanView
2010-08-18 10:42:29 ----RASH---- C:\MSDOS.SYS
2010-08-18 10:42:29 ----RASH---- C:\IO.SYS
2010-08-18 10:38:37 ----D---- C:\Program Files\ClocX
2010-08-18 10:36:08 ----A---- C:\Windows\system32\wintrust.dll
2010-08-18 10:36:06 ----A---- C:\Windows\system32\cabview.dll
2010-08-18 10:29:17 ----D---- C:\Users\otulka\AppData\Roaming\ESET
2010-08-18 10:28:38 ----D---- C:\Program Files\ESET
2010-08-18 10:28:37 ----D---- C:\ProgramData\ESET
2010-08-18 10:22:04 ----RD---- C:\acroldr
2010-08-18 10:07:45 ----D---- C:\Users\otulka\AppData\Roaming\GHISLER
2010-08-18 09:58:41 ----A---- C:\proces_killer.exe
2010-08-18 09:56:17 ----D---- C:\Users\otulka\AppData\Roaming\Acronis
2010-08-18 09:52:41 ----A---- C:\Windows\system32\drivers\tdrpm258.sys
2010-08-18 09:52:38 ----A---- C:\Windows\system32\drivers\timntr.sys
2010-08-18 09:39:04 ----D---- C:\Windows\Panther
2010-08-18 09:32:04 ----A---- C:\Windows\system32\AutoPartNt.exe
2010-08-18 09:27:48 ----D---- C:\Windows\system32\appmgmt
2010-08-18 09:19:05 ----A---- C:\Windows\system32\drivers\tifsfilt.sys
2010-08-18 09:19:02 ----A---- C:\Windows\system32\drivers\snapman.sys
2010-08-18 09:18:42 ----D---- C:\Program Files\Common Files\Acronis
2010-08-18 09:18:42 ----D---- C:\Program Files\Acronis
2010-08-18 09:17:32 ----SHD---- C:\Windows\Installer
2010-08-18 08:54:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-18 08:50:05 ----D---- C:\Users\otulka\AppData\Roaming\Identities
2010-08-18 08:49:45 ----SD---- C:\Users\otulka\AppData\Roaming\Microsoft
2010-08-18 08:49:45 ----D---- C:\Users\otulka\AppData\Roaming\Media Center Programs
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Šablony
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Plocha
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Oblíbené položky
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Nabídka Start
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Dokumenty
2010-08-18 08:49:35 ----SHD---- C:\ProgramData\Data aplikací
2010-08-18 08:49:35 ----D---- C:\Recovery
2010-08-18 08:44:42 ----D---- C:\Windows\SoftwareDistribution
2010-08-18 08:41:56 ----D---- C:\Windows\Prefetch
2010-08-18 08:41:38 ----SHD---- C:\System Volume Information
2010-08-18 08:41:38 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 months======

2010-09-08 08:12:17 ----D---- C:\Windows
2010-09-08 08:05:02 ----D---- C:\Windows\system32\config
2010-09-08 07:52:40 ----D---- C:\Windows\system32\drivers
2010-08-29 20:05:27 ----D---- C:\Windows\System32
2010-08-29 19:52:38 ----D---- C:\ProgramData
2010-08-29 19:51:18 ----D---- C:\Windows\winsxs
2010-08-29 11:23:49 ----RD---- C:\Program Files
2010-08-29 10:15:00 ----D---- C:\Windows\inf
2010-08-29 09:21:07 ----D---- C:\Windows\system32\LogFiles
2010-08-29 08:20:08 ----D---- C:\Windows\system32\Tasks
2010-08-28 13:16:46 ----D---- C:\Windows\system32\catroot2
2010-08-25 05:55:19 ----D---- C:\Windows\AppPatch
2010-08-25 04:56:08 ----D---- C:\Windows\system32\catroot
2010-08-24 21:27:18 ----D---- C:\Windows\system32\NDF
2010-08-21 07:16:40 ----D---- C:\Program Files\Common Files\microsoft shared
2010-08-21 07:16:01 ----RSD---- C:\Windows\assembly
2010-08-21 07:14:46 ----A---- C:\Windows\win.ini
2010-08-21 06:42:20 ----RSD---- C:\Windows\Fonts
2010-08-21 06:37:03 ----D---- C:\Windows\ShellNew
2010-08-21 06:35:37 ----D---- C:\Program Files\Common Files
2010-08-21 06:34:38 ----D---- C:\Program Files\Common Files\System
2010-08-21 06:34:35 ----D---- C:\Windows\Help
2010-08-21 06:31:14 ----D---- C:\Windows\system
2010-08-21 05:01:36 ----D---- C:\Windows\Microsoft.NET
2010-08-20 19:12:39 ----SD---- C:\ProgramData\Microsoft
2010-08-20 19:10:53 ----D---- C:\Program Files\MSBuild
2010-08-20 10:58:35 ----A---- C:\Windows\system.ini
2010-08-20 10:58:25 ----D---- C:\Windows\system32\drivers\etc
2010-08-20 07:42:21 ----D---- C:\Windows\system32\wdi
2010-08-19 20:25:53 ----D---- C:\Windows\Logs
2010-08-19 19:03:54 ----D---- C:\Windows\system32\DriverStore
2010-08-19 18:24:02 ----D---- C:\Windows\ehome
2010-08-19 17:52:24 ----D---- C:\Windows\twain_32
2010-08-19 15:37:14 ----D---- C:\Windows\Speech
2010-08-19 10:32:54 ----D---- C:\Windows\system32\drivers\UMDF
2010-08-19 08:16:26 ----D---- C:\Windows\system32\zh-TW
2010-08-19 08:16:26 ----D---- C:\Windows\system32\zh-CN
2010-08-19 08:16:26 ----D---- C:\Windows\system32\sv-SE
2010-08-19 08:16:26 ----D---- C:\Windows\system32\ru-RU
2010-08-19 08:16:26 ----D---- C:\Windows\system32\pt-BR
2010-08-19 08:16:26 ----D---- C:\Windows\system32\pl-PL
2010-08-19 08:16:26 ----D---- C:\Windows\system32\nl-NL
2010-08-19 08:16:26 ----D---- C:\Windows\system32\nb-NO
2010-08-19 08:16:26 ----D---- C:\Windows\system32\ko-KR
2010-08-19 08:16:25 ----D---- C:\Windows\system32\ja-JP
2010-08-19 08:16:25 ----D---- C:\Windows\system32\it-IT
2010-08-19 08:16:25 ----D---- C:\Windows\system32\fr-FR
2010-08-19 08:16:25 ----D---- C:\Windows\system32\fi-FI
2010-08-19 08:16:25 ----D---- C:\Windows\system32\es-ES
2010-08-19 08:16:25 ----D---- C:\Windows\system32\en-US
2010-08-19 08:16:25 ----D---- C:\Windows\system32\de-DE
2010-08-19 08:16:25 ----D---- C:\Windows\system32\da-DK
2010-08-19 05:11:26 ----D---- C:\Windows\rescache
2010-08-18 21:51:19 ----D---- C:\Windows\ModemLogs
2010-08-18 21:41:35 ----SD---- C:\Windows\system32\Microsoft
2010-08-18 13:25:17 ----D---- C:\TRANSLAT
2010-08-18 12:14:00 ----D---- C:\Windows\IME
2010-08-18 12:01:21 ----D---- C:\Windows\system32\cs-CZ
2010-08-18 12:01:20 ----D---- C:\Program Files\Windows Media Player
2010-08-18 12:01:20 ----D---- C:\Program Files\Windows Mail
2010-08-18 12:01:19 ----D---- C:\Windows\system32\Boot
2010-08-18 12:01:18 ----D---- C:\Windows\system32\migration
2010-08-18 12:01:18 ----D---- C:\Program Files\Internet Explorer
2010-08-18 11:57:31 ----D---- C:\Windows\debug
2010-08-18 10:07:18 ----D---- C:\totalcmd
2010-08-18 09:18:10 ----D---- C:\Windows\system32\restore
2010-08-18 08:56:52 ----D---- C:\Windows\system32\CodeIntegrity
2010-08-18 08:54:15 ----D---- C:\Windows\system32\wbem
2010-08-18 08:49:45 ----RD---- C:\Users
2010-08-18 08:49:35 ----D---- C:\Windows\system32\Recovery
2010-08-18 08:49:35 ----D---- C:\Program Files\Windows NT
2010-08-18 08:45:20 ----D---- C:\Windows\system32\sysprep
2010-08-18 08:42:31 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ffire;FlashFire; C:\Windows\system32\DRIVERS\ffirel.sys [2009-07-23 14336]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2010-08-18 158272]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2010-08-29 368736]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2010-08-29 441760]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-04-28 114984]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-06-24 136120]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-04-28 134488]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-04-28 41312]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2009-11-16 50704]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2010-08-29 44384]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2007-07-22 180736]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-08 2506232]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-04-28 32584]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-18 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-18 206848]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-10-13 2176856]
R3 NSCIRDA;NSC Infrared Device Driver; C:\Windows\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-08-18 47360]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-07-14 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-07 192816]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-18 659968]
R4 truecrypt;truecrypt; \??\E:\TrueCrypt\truecrypt.sys [2009-06-26 217664]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AF15BDA;AF9015 BDA Filter; C:\Windows\system32\DRIVERS\AF15BDA.sys [2010-08-19 306816]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 btaudio;Bluetooth Audio Device; C:\Windows\system32\drivers\btaudio.sys []
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\Windows\system32\DRIVERS\btport.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2007-08-29 81448]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2007-08-29 99880]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\Windows\system32\DRIVERS\btwdndis.sys []
S3 btwhid;btwhid; C:\Windows\system32\DRIVERS\btwhid.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2007-05-17 28464]
S3 btwmodem;Bluetooth Modem; C:\Windows\system32\DRIVERS\btwmodem.sys []
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2007-08-29 17448]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\Windows\System32\Drivers\btwusb.sys []
S3 catchme;catchme; \??\C:\Users\otulka\AppData\Local\Temp\catchme.sys []
S3 flash;flash; \??\C:\Windows\system32\drivers\flash.sys [2005-11-17 8064]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-14 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-14 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-14 661504]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 VMUVC;Vimicro Camera Service VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [2009-05-25 252416]
S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\Windows\system32\drivers\vvftUVC.sys [2008-07-01 398720]
S3 WinUsb;Ovladač WinUSB; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2008-01-16 104960]
R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2007-10-23 427288]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-07-02 810144]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TryAndDecideService;Acronis Try And Decide Service; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [2007-10-23 495832]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [2007-03-15 2233400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-07-02 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-18 654848]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-08-19 435016]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-19 1343400]

-----------------EOF-----------------

otulka · #4 Příspěvek od **otulka** » 08 zář 2010 14:14

Už to zase blbne. Probudím ho z režimu spánku (ne hybernace - tu mám zrušenou). Procesor jede jako zběsilý a až 100% CPU mi zabírá tento proces.
C:\Windows\System32\svchost.exe -k secsvcs
Je to normální?

#5 Příspěvek od **Rudy** » 08 zář 2010 16:43

Zkuste vypnout aut. aktualizace. Pokud by to nepomohlo, přeinstalujte NOD.

otulka · #6 Příspěvek od **otulka** » 09 zář 2010 00:54

Odinstaloval jsem Noda a nahradil ho Avastem a vše je OK,
Díky za pomoc.

#7 Příspěvek od **Rudy** » 09 zář 2010 16:48

Nemáte zač!

VIRY.CZ

Pomalý NB, zamrzání

Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání

Re: Pomalý NB, zamrzání