Avira Premium neaktualizuje soubory, Outpostu se nelíbí IGMP

[MiliNess]

Dobrý den, IP adresa 172.18.55.1 by měla být adresa GPRS brány Ufonu. (je v rozsahu bran Ufonu)
Adresy bran se mohou měnit. Je to tedy v pořádku.

[twin1]

Diky.

Jou přeinstalovány ovladače, Outpost i Avira. Tady je log z Combofixu po odinstalování Aviry i Outpostu:
ComboFix 10-08-27.03 - Administrator 28.08.2010 19:24:34.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.639.241 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-07-28 do 2010-08-28 )))))))))))))))))))))))))))))))
.

2010-08-21 18:30 . 2010-08-21 18:30 -------- d-----w- c:\program files\OpenOffice.org 3
2010-08-19 14:07 . 2010-08-19 14:19 -------- dc-h--w- c:\windows\ie8
2010-08-17 17:59 . 2010-08-17 17:59 -------- d-----w- c:\program files\Opera
2010-08-15 16:56 . 2010-03-15 09:31 165376 ----a-w- c:\windows\system32\unrar.dll
2010-08-15 16:56 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-08-15 16:56 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-08-15 16:56 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-08-15 16:56 . 2010-06-28 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-08-15 16:56 . 2010-08-15 17:01 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-08-15 06:15 . 2010-08-15 06:15 -------- d-sh--w- c:\documents and settings\kluci\IECompatCache
2010-08-15 05:24 . 2010-08-15 05:24 -------- d-sh--w- c:\documents and settings\Sylva\IECompatCache
2010-08-01 05:42 . 2010-08-01 05:42 -------- d-----w- C:\_OTL
2010-07-30 17:04 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-07-30 17:03 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-07-30 17:03 . 2010-07-30 17:04 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-28 14:25 . 2010-04-04 11:54 -------- d-----w- c:\program files\Axesstel
2010-08-24 19:01 . 2009-11-17 13:55 -------- d-----w- c:\program files\trend micro
2010-08-19 06:46 . 2009-05-03 12:14 -------- d-----w- c:\program files\TuneUp Utilities 2008
2010-08-18 17:47 . 2008-08-09 16:14 -------- d-----w- c:\program files\Google
2010-08-15 11:49 . 2009-02-28 15:12 -------- d-----w- c:\program files\Yahoo!
2010-08-11 08:26 . 2007-10-29 12:00 83582 ----a-w- c:\windows\system32\perfc005.dat
2010-08-11 08:26 . 2007-10-29 12:00 438772 ----a-w- c:\windows\system32\perfh005.dat
2010-08-01 09:45 . 2008-12-01 17:56 -------- d-----w- c:\program files\HP
2010-07-27 12:52 . 2009-11-02 15:15 -------- d-----w- c:\program files\ATI Technologies
2010-07-23 04:48 . 2008-06-09 12:38 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-07-18 10:43 . 2008-08-09 19:34 30 ----a-w- c:\windows\popcinfo.dat
2010-06-30 12:33 . 2007-10-29 12:00 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-24 12:27 . 2007-10-29 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-24 09:02 . 2007-10-29 12:00 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2007-10-29 12:00 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2007-10-29 12:00 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2008-06-08 22:58 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:43 . 2007-10-29 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
.

((((((((((((((((((((((((((((( SnapShot_2010-08-24_23.36.11 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-08-28 17:14 . 2010-08-28 17:14 16384 c:\windows\Temp\Perflib_Perfdata_5b8.dat
- 2010-01-28 18:19 . 2007-03-26 13:25 38784 c:\windows\system32\drivers\Axtmvprt.sys
+ 2010-01-28 18:19 . 2007-03-26 13:25 38784 c:\windows\system32\drivers\Axtmvprt.sys
+ 2010-01-28 18:19 . 2007-03-26 13:25 40064 c:\windows\system32\drivers\Axtmvmdm.sys
- 2010-01-28 18:19 . 2007-03-26 13:25 40064 c:\windows\system32\drivers\Axtmvmdm.sys
+ 2010-01-28 18:19 . 2007-03-22 15:36 3456 c:\windows\system32\drivers\Axtmvflt.sys
- 2010-01-28 18:19 . 2007-03-22 15:36 3456 c:\windows\system32\drivers\Axtmvflt.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"="Mixer.exe" [2002-10-15 1818624]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"HydraVisionDesktopManager"="c:\program files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2003-09-15 270336]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"GreyMSIAds"= 1 (0x1)
"NoRecentDocsNetHood"= 1 (0x1)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0smrgdf e:\program files\iolo\System Mechanic 6

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 hotcore2;hotcore2;c:\windows\system32\drivers\hotcore2.sys [12.6.2008 10:02 30808]
R0 hotcore3;Hotcore helper;c:\windows\system32\drivers\hotcore3.sys [2.2.2009 10:57 40496]
R1 StarPortLite;StarPort Storage Controller (Lite);c:\windows\system32\drivers\StarPortLite.sys [18.8.2009 17:34 85760]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 8:22 70912]
R3 Axtmvflt;Axesstel USB Filter Service;c:\windows\system32\drivers\Axtmvflt.sys [28.1.2010 20:19 3456]
R3 Axtmvmdm;Axesstel USB Modem;c:\windows\system32\drivers\Axtmvmdm.sys [28.1.2010 20:19 40064]
R3 Axtmvprt;Axesstel Diagnostic Port;c:\windows\system32\drivers\Axtmvprt.sys [28.1.2010 20:19 38784]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys --> c:\windows\system32\DRIVERS\Lbd.sys [?]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-08-06 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2008-01-08 11:31]
.
.
------- Doplňkový sken -------
.
IE: &Google Search - c:\program files\Google\googletoolbar.dll/cmsearch.html
IE: Backward &Links - c:\program files\Google\googletoolbar.dll/cmbacklinks.html
IE: Cac&hed Snapshot of Page - c:\program files\Google\googletoolbar.dll/cmcache.html
IE: Najít pomocí &Google - c:\documents and settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\Web\gsearch.htm
IE: Přeložit stránku pomocí Google - c:\documents and settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\Web\gtranslate.htm
IE: Si&milar Pages - c:\program files\Google\googletoolbar.dll/cmsimilar.html
IE: Translate into English - c:\program files\Google\googletoolbar.dll/cmtrans.html
.
.
------- Asociace souborů -------
.
JSEFile=NOTEPAD.EXE %1
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-28 19:30
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(620)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(676)
c:\windows\system32\relog_ap.dll

- - - - - - - > 'explorer.exe'(384)
c:\program files\ATI Technologies\ATI HYDRAVISION\HydraDMH.dll
c:\program files\Microsoft Private Folder 1.0\ShellExt.dll
c:\windows\system32\PFLib.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-08-28 19:33:09
ComboFix-quarantined-files.txt 2010-08-28 17:33
ComboFix2.txt 2010-08-24 23:41
ComboFix3.txt 2010-07-29 06:03

Před spuštěním: Volných bajtů: 11 678 232 576
Po spuštění: Volných bajtů: 11 706 433 536

Current=2 Default=2 Failed=4 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - 6D48FA3276D9B9A7BF08D8467ACCC626

Po instalaci nenaběhla automatická kontrola ani u Outpostu, ani u Aviry. Neznámý proces se objevuje pořád a požaduje IGMP, Outpost ho blokuje, jeho scan zase našel trojana BZub v HKEY_LOCAL_MACHINE\software\mocrosoft\windows\currentversion\Control Panel\load. Mašina jinak zatím vypadá normálně, po 2 měsících jedu na Firefox a rychlost zatím vypadá normálně. Procesor už taky není permanentně na 100%.

[motji]

Já bohužel ten klíč s virem v lozích nevidím .
Jinak log vypadá v pořádku. Zkuste se na tu IP adresu zeptat přímo Ufona, ten proces blokujte.

[twin1]

MiliNess psal, že prý je v pořádku, příspěvek je níže. Ufon nevěděl, Čárlí mi na ufoním facebooku poslal ten odkaz, co jsem tady vkládala. Toho trojana budu hlídat, faktem je, že se Outpost od 16. srpna nezaktulizoval, i když se na server připojoval a v průběhu aktualizace žádné chyby nehlásil. Pak se přestala aktualizovat i Avira a ze systému zase vypadávala, připadalo mi, že je tam jen jako, protože desktop Aviry hlásil všechny štíty aktivní, i když WebGuard a MailGuard se nerozběhly po tom, co XP hlásily, že Avira je vypnutá. Naběhl jen virový štít. Teď běží všechny, mašinka má zatím své tempo, na které jsem zvyklá. Otázka je, co se stane, až vlezu na facebook. Nebo na rajče? Teď ale jedu ve Firefoxu, který se předtím prakticky nedal spustit, rezervace jízdenky pro syna u Student Agengy mi trvala půl druhé hodiny. Operu jsem zatím nevrátila a přeinstalovala jsem i Explorer. Čili ovladače, Explorer, Aviru, Outpost a Firefox. Teď mám, kromě Firefoxu, spuštěný i Skype. Zatím to s rychlostí i s objemem přenesených dat vypadá normálně. Modem se pořád napojuje na 172.18.55.1

[motji]

Já vím, co Miliness psal. Chtělo by to se zeptat přímo Ufona..
Tak to zatím necháme tak, pokud by byli problémy, asi bych Vám doporučila celý systém zformátovat a po reinstalu to hlídat.



Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

[twin1]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Administrator at 2010-08-31 19:48:14
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 14 GB (27%) free of 50 GB
Total RAM: 639 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:48:49, on 31.8.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [OutpostMonitor] "C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe" /tray /noservice
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe" /dump:os_startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\googletoolbar.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\googletoolbar.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\googletoolbar.dll/cmcache.html
O8 - Extra context menu item: Najít pomocí &Google - C:\Documents and Settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\Web\gsearch.htm
O8 - Extra context menu item: Přeložit stránku pomocí Google - C:\Documents and Settings\All Users\Data aplikací\TuneUp Software\TuneUp Utilities\Web\gtranslate.htm
O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\googletoolbar.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\googletoolbar.dll/cmtrans.html
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Outpost Firewall Pro Quick Tune - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Firewall Pro\ie_bar.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 0948983460
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE57FFD4-D167-44D2-ACE1-FDF460994276}: NameServer = 78.136.128.4 78.136.128.12
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 8335 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar.dll [2008-08-09 745472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-30 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-30 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar.dll [2008-08-09 745472]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"HydraVisionDesktopManager"=C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe [2003-09-15 270336]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2010-02-09 2447488]
"OutpostFeedBack"=C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe [2010-02-09 439784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-09-14 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"GreyMSIAds"=1
"NoRecentDocsNetHood"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoResolveSearch"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

======List of files/folders created in the last 3 months======

2010-08-31 19:48:14 ----D---- C:\rsit
2010-08-31 00:48:40 ----D---- C:\Program Files\CCleaner
2010-08-30 21:39:49 ----D---- C:\Program Files\Opera
2010-08-29 20:33:27 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Avira
2010-08-29 14:30:58 ----D---- C:\Program Files\Mozilla Firefox
2010-08-28 20:46:00 ----A---- C:\WINDOWS\system32\drivers\SandBox.sys
2010-08-28 20:45:51 ----A---- C:\WINDOWS\system32\drivers\afwcore.sys
2010-08-28 20:45:20 ----A---- C:\WINDOWS\system32\drivers\afw.sys
2010-08-28 20:45:02 ----D---- C:\WINDOWS\system32\Filt
2010-08-28 20:45:02 ----D---- C:\Program Files\Agnitum
2010-08-28 20:43:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Agnitum
2010-08-28 19:48:01 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2010-08-28 19:47:59 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2010-08-28 19:47:59 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys
2010-08-28 19:47:59 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2010-08-28 19:47:58 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys
2010-08-28 19:47:57 ----D---- C:\Program Files\Avira
2010-08-28 19:37:32 ----SHD---- C:\RECYCLER
2010-08-21 20:30:35 ----D---- C:\Program Files\OpenOffice.org 3
2010-08-19 16:07:24 ----HDC---- C:\WINDOWS\ie8
2010-08-15 18:56:15 ----A---- C:\WINDOWS\system32\unrar.dll
2010-08-15 18:56:14 ----A---- C:\WINDOWS\avisplitter.ini
2010-08-15 18:56:12 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-08-15 18:56:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-08-15 18:56:11 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-08-15 18:56:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-08-15 18:56:10 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-08-15 18:56:06 ----D---- C:\Program Files\K-Lite Codec Pack
2010-07-30 19:04:49 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Malwarebytes
2010-07-30 19:04:08 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-07-30 19:03:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-07-30 19:03:45 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-07-30 19:03:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-07-27 14:58:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2010-07-09 18:44:07 ----D---- C:\Documents and Settings\Administrator\Data aplikací\HpUpdate
2010-07-09 18:43:36 ----D---- C:\WINDOWS\Hewlett-Packard

======List of files/folders modified in the last 3 months======

2010-08-31 19:48:47 ----D---- C:\Program Files\trend micro
2010-08-31 19:48:09 ----D---- C:\WINDOWS\Prefetch
2010-08-31 19:47:26 ----A---- C:\WINDOWS\ModemLog_Axesstel USB Modem.txt
2010-08-31 19:37:55 ----D---- C:\WINDOWS\Temp
2010-08-31 19:33:59 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-31 19:33:37 ----D---- C:\WINDOWS
2010-08-31 19:30:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-31 00:48:40 ----RD---- C:\Program Files
2010-08-31 00:01:50 ----SHD---- C:\System Volume Information
2010-08-31 00:01:50 ----D---- C:\WINDOWS\system32\Restore
2010-08-30 21:40:03 ----SHD---- C:\WINDOWS\Installer
2010-08-30 21:40:00 ----D---- C:\Config.Msi
2010-08-30 04:04:13 ----D---- C:\WINDOWS\system32\config
2010-08-29 22:06:36 ----D---- C:\WINDOWS\system32\NtmsData
2010-08-29 20:35:25 ----D---- C:\WINDOWS\Registration
2010-08-29 20:19:59 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-08-29 14:31:53 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2010-08-29 14:28:24 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Simple Sudoku
2010-08-29 12:43:50 ----SHD---- C:\WINDOWS\CSC
2010-08-28 20:46:00 ----D---- C:\WINDOWS\system32\drivers
2010-08-28 20:45:54 ----HD---- C:\WINDOWS\inf
2010-08-28 20:45:44 ----D---- C:\WINDOWS\WinSxS
2010-08-28 20:45:02 ----D---- C:\WINDOWS\system32
2010-08-28 19:47:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2010-08-28 19:39:15 ----D---- C:\Program Files\Axesstel
2010-08-28 19:37:47 ----D---- C:\Program Files\GameHouse
2010-08-28 19:30:30 ----A---- C:\WINDOWS\system.ini
2010-08-28 19:27:34 ----D---- C:\WINDOWS\AppPatch
2010-08-28 19:27:30 ----D---- C:\Program Files\Common Files
2010-08-28 17:11:54 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-08-28 16:29:48 ----A---- C:\WINDOWS\ODBC.INI
2010-08-25 01:33:06 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-21 20:33:20 ----RSD---- C:\WINDOWS\assembly
2010-08-21 20:31:08 ----RSD---- C:\WINDOWS\Fonts
2010-08-19 17:32:36 ----D---- C:\WINDOWS\Debug
2010-08-19 17:00:10 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-19 16:59:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-19 16:59:05 ----D---- C:\WINDOWS\ie8updates
2010-08-19 16:55:48 ----D---- C:\Program Files\Internet Explorer
2010-08-19 16:21:22 ----D---- C:\WINDOWS\system32\cs-cz
2010-08-19 16:21:21 ----D---- C:\WINDOWS\Media
2010-08-19 16:21:21 ----D---- C:\WINDOWS\Help
2010-08-19 16:12:47 ----RD---- C:\WINDOWS\Offline Web Pages
2010-08-19 08:46:26 ----D---- C:\Program Files\TuneUp Utilities 2008
2010-08-18 19:47:39 ----D---- C:\Program Files\Google
2010-08-15 13:49:31 ----D---- C:\Program Files\Yahoo!
2010-08-12 00:06:40 ----D---- C:\WINDOWS\Microsoft.NET
2010-08-11 10:43:19 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-11 10:26:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-11 09:06:38 ----D---- C:\Program Files\Movie Maker
2010-08-06 16:33:41 ----A---- C:\WINDOWS\win.ini
2010-08-03 11:09:32 ----A---- C:\WINDOWS\system32\MRT.exe
2010-08-01 18:19:50 ----A---- C:\WINDOWS\cncscore.ini
2010-08-01 11:52:07 ----D---- C:\WINDOWS\SxsCaPendDel
2010-08-01 11:45:55 ----D---- C:\Program Files\HP
2010-08-01 11:36:24 ----SD---- C:\WINDOWS\Tasks
2010-07-29 22:00:38 ----D---- C:\WINDOWS\system32\1029
2010-07-27 14:52:19 ----D---- C:\Program Files\ATI Technologies
2010-07-27 14:44:00 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2010-07-27 14:43:34 ----D---- C:\WINDOWS\system32\DirectX
2010-07-27 14:41:00 ----RD---- C:\WINDOWS\Web
2010-07-27 08:30:31 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-23 06:48:51 ----D---- C:\Program Files\Mozilla Thunderbird
2010-07-15 08:39:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-06-30 14:33:04 ----A---- C:\WINDOWS\system32\schannel.dll
2010-06-24 17:57:24 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-06-24 14:27:28 ----A---- C:\WINDOWS\system32\wininet.dll
2010-06-24 14:27:28 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-06-24 14:27:27 ----A---- C:\WINDOWS\system32\occache.dll
2010-06-24 14:27:27 ----A---- C:\WINDOWS\system32\mstime.dll
2010-06-24 14:27:26 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-06-24 14:27:24 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-06-24 14:27:24 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-06-24 14:27:24 ----A---- C:\WINDOWS\system32\jsproxy.dll
2010-06-24 14:27:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-06-24 14:27:23 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-06-24 14:27:22 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2010-06-23 14:08:09 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2010-06-18 22:06:09 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2010-06-17 16:03:52 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-06-14 09:43:17 ----A---- C:\WINDOWS\system32\msxml3.dll
2010-06-07 18:39:32 ----D---- C:\Program Files\rajce
2010-06-04 18:34:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hotcore2;hotcore2; C:\WINDOWS\system32\drivers\hotcore2.sys [2006-10-02 30808]
R0 hotcore3;Hotcore helper; C:\WINDOWS\system32\DRIVERS\hotcore3.sys [2008-09-26 40496]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-20 43872]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2008-09-14 120992]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2008-09-14 400864]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 SandBox;SandBox; \??\C:\WINDOWS\system32\drivers\SandBox.sys []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarPortLite;StarPort Storage Controller (Lite); C:\WINDOWS\system32\DRIVERS\StarPortLite.sys [2007-12-27 85760]
R1 Uim_IM;UIM Drive Backup Image Plugin; C:\WINDOWS\System32\Drivers\Uim_IM.sys [2008-09-26 129824]
R1 UimBus;Universal Image Mounter Controller; C:\WINDOWS\system32\DRIVERS\UimBus.sys [2008-09-26 32048]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-10-29 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2005-01-02 9728]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2008-09-14 32768]
R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2009-02-18 31128]
R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2009-11-02 257304]
R3 ASWFilt;ASWFilt; \??\C:\WINDOWS\system32\Filt\ASWFilt.dll []
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-09-14 2455040]
R3 Axtmvflt;Axesstel USB Filter Service; C:\WINDOWS\system32\DRIVERS\Axtmvflt.sys [2007-03-22 3456]
R3 Axtmvmdm;Axesstel USB Modem; C:\WINDOWS\system32\DRIVERS\Axtmvmdm.sys [2007-03-26 40064]
R3 Axtmvprt;Axesstel Diagnostic Port; C:\WINDOWS\System32\Drivers\Axtmvprt.sys [2007-03-26 38784]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2003-10-19 25856]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-06-10 47360]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys []
S3 cmuda3;C-Media PCI Audio Interface; C:\WINDOWS\system32\drivers\cmuda3.sys [2004-08-16 798592]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 motmodem;Motorola USB CDC ACM Driver; C:\WINDOWS\system32\DRIVERS\motmodem.sys [2007-06-18 23680]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VIAudio;Zvukový řadič VIA AC'97 (WDM); C:\WINDOWS\system32\drivers\ac97via.sys [2004-08-04 84480]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [2007-09-04 410904]
R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2010-02-09 1338160]
R2 AntiVirMailService;Avira AntiVir MailGuard; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [2010-03-30 337064]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirWebService;Avira AntiVir WebGuard; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2010-04-01 405672]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-09-14 483328]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-30 153376]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-05-14 249136]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2007-09-14 593920]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-08-23 306432]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[twin1]

Nainstalovala jsem zpět Operu, heznámý proces opět vyskočil a PC se začíná zpomalovat. CCleaner ji vůbec nemá v čističi v aplikacích, předchozí verze (2.6, kterou jsem odinstalovala a nahradila včera staženou 2.15) ji tam měla. CCleaner předchozí verze jsem odinstalovávala TuneUpem.

[motji]

Asi bude lepší počítač přeinstalovat - formát a čistý systém..takhle to můžeme hledat další měsíc