VIRY.CZ

========== Files - Modified Within 30 Days ==========

[2010.04.18 23:37:15 | 003,145,728 | ---- | M] () -- C:\Users\dak\ntuser.dat
[2010.04.18 23:27:11 | 000,013,248 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.04.18 23:27:11 | 000,013,248 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.04.18 23:20:09 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.04.18 23:19:25 | 000,000,954 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3266397383-775854498-48628368-1000UA.job
[2010.04.18 23:19:25 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.04.18 23:19:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.04.18 23:19:21 | 2411,888,640 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.18 23:14:50 | 002,404,959 | -H-- | M] () -- C:\Users\dak\AppData\Local\IconCache.db
[2010.04.18 23:14:30 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010.04.18 22:55:02 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.04.18 22:31:26 | 000,006,407 | ---- | M] () -- C:\Users\dak\.recently-used.xbel
[2010.04.18 21:29:49 | 000,190,160 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2010.04.18 20:44:52 | 000,139,456 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010.04.18 19:31:19 | 000,000,196 | ---- | M] () -- C:\Users\Public\Documents\GCSettings.ini
[2010.04.18 19:25:24 | 001,840,312 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.04.18 19:25:24 | 000,762,660 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.04.18 19:25:24 | 000,746,026 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.04.18 19:25:24 | 000,175,234 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.04.18 19:25:24 | 000,155,116 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.04.18 18:57:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3266397383-775854498-48628368-1000Core.job
[2010.04.18 16:07:34 | 000,001,028 | ---- | M] () -- C:\Users\dak\Desktop\DFX For Winamp.lnk
[2010.04.17 22:41:16 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\dak\Desktop\OTL.exe
[2010.04.17 17:46:53 | 000,038,893 | ---- | M] () -- C:\Users\dak\Desktop\translationFail.png
[2010.04.17 16:31:28 | 000,100,908 | ---- | M] () -- C:\Users\dak\Desktop\services.png
[2010.04.17 16:21:32 | 000,090,958 | ---- | M] () -- C:\Users\dak\Desktop\svchost.png
[2010.04.17 13:43:06 | 000,001,650 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.04.16 19:07:28 | 001,167,667 | ---- | M] () -- C:\Users\dak\Desktop\duh.png
[2010.04.15 21:56:23 | 000,000,641 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.04.15 21:55:16 | 005,918,776 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\dak\Desktop\mbam-setup-1.45.exe
[2010.04.14 18:51:07 | 000,077,312 | ---- | M] () -- C:\Users\dak\Desktop\mbr.exe
[2010.04.14 02:57:56 | 000,000,394 | ---- | M] () -- C:\Windows\tasks\ASOService.job
[2010.04.13 16:12:48 | 000,000,600 | ---- | M] () -- C:\Users\dak\AppData\Roaming\winscp.rnd
[2010.04.12 20:18:22 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010.04.12 12:30:08 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010.04.12 00:00:01 | 001,039,999 | ---- | M] () -- C:\Users\dak\Desktop\SURF.jpg
[2010.04.11 13:17:21 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.04.11 13:17:21 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.04.11 13:17:21 | 000,065,536 | -HS- | M] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TM.blf
[2010.04.08 13:53:31 | 000,000,600 | ---- | M] () -- C:\Users\dak\AppData\Local\PUTTY.RND
[2010.04.08 13:49:24 | 000,004,608 | ---- | M] () -- C:\Users\dak\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.08 13:36:33 | 000,000,599 | ---- | M] () -- C:\Users\Public\Desktop\Shortcut to Flix.exe.lnk
[2010.04.08 10:33:41 | 000,001,865 | -HS- | M] () -- C:\Windows\System32\mmf.sys
[2010.04.07 16:35:42 | 000,000,637 | ---- | M] () -- C:\Users\dak\Desktop\HandyAvi.lnk
[2010.04.06 15:35:26 | 000,497,152 | ---- | M] () -- C:\Users\dak\Desktop\Solicitation letter 2.doc
[2010.04.06 01:07:04 | 000,002,227 | ---- | M] () -- C:\Users\Public\Desktop\Performance.lnk
[2010.04.05 22:20:11 | 000,138,056 | ---- | M] () -- C:\Users\dak\AppData\Roaming\PnkBstrK.sys
[2010.04.05 22:19:55 | 002,407,792 | ---- | M] () -- C:\Windows\System32\pbsvc_heroes.exe
[2010.04.05 01:29:24 | 000,000,858 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2010.04.05 01:14:50 | 000,000,630 | ---- | M] () -- C:\Users\dak\Desktop\Advanced Task Manager.lnk
[2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.03.30 00:45:52 | 000,020,824 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.03.26 12:16:50 | 000,067,040 | ---- | M] () -- C:\Users\dak\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.03.26 12:11:41 | 000,290,384 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.03.26 04:08:45 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.03.26 04:08:45 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.03.26 04:08:45 | 000,065,536 | -HS- | M] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TM.blf
[2010.03.26 00:08:45 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.03.26 00:08:45 | 000,524,288 | -HS- | M] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.03.26 00:08:45 | 000,065,536 | -HS- | M] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TM.blf
[2010.03.25 23:49:24 | 001,440,618 | ---- | M] () -- C:\Users\dak\Desktop\dict-cs-2.0.oxt
[2010.03.23 02:53:18 | 000,120,432 | ---- | M] (JMicron Technology Corporation) -- C:\Windows\System32\drivers\jmcr.sys
[2010.03.20 22:16:51 | 015,227,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2010.03.20 22:16:51 | 011,647,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2010.03.20 22:16:51 | 011,573,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2010.03.20 22:16:51 | 009,386,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2010.03.20 22:16:51 | 004,503,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2010.03.20 22:16:51 | 004,029,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2010.03.20 22:16:51 | 002,907,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll
[2010.03.20 22:16:51 | 002,646,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2010.03.20 22:16:51 | 002,009,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2010.03.20 22:16:51 | 001,296,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2010.03.20 22:16:51 | 000,316,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2010.03.20 22:16:51 | 000,215,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod1910.dll
[2010.03.20 22:16:51 | 000,215,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll
[2010.03.20 22:16:51 | 000,056,424 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2010.03.20 22:16:51 | 000,010,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2010.03.20 22:16:51 | 000,007,772 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2010.03.20 15:39:48 | 000,276,196 | ---- | M] () -- C:\Windows\System32\NvApps.xml
[2010.03.20 15:39:48 | 000,066,714 | ---- | M] () -- C:\Windows\System32\NvwsApps.xml
[2010.03.20 15:39:00 | 013,683,816 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2010.03.20 15:39:00 | 001,515,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2010.03.20 15:39:00 | 000,985,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2010.03.20 15:39:00 | 000,110,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2010.03.20 15:39:00 | 000,066,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2010.03.20 15:33:18 | 000,249,856 | ---- | M] () -- C:\Windows\lcmmfu.cpl
[2010.03.20 15:33:18 | 000,048,640 | ---- | M] () -- C:\Windows\mmfs.dll
[2010.03.20 15:33:18 | 000,016,384 | ---- | M] () -- C:\Windows\runservice.exe
[2010.03.20 15:33:17 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\msvcr71.dll
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.18 22:31:26 | 000,006,407 | ---- | C] () -- C:\Users\dak\.recently-used.xbel
[2010.04.18 16:07:34 | 000,001,028 | ---- | C] () -- C:\Users\dak\Desktop\DFX For Winamp.lnk
[2010.04.17 18:33:27 | 2411,888,640 | -HS- | C] () -- C:\hiberfil.sys
[2010.04.17 17:46:53 | 000,038,893 | ---- | C] () -- C:\Users\dak\Desktop\translationFail.png
[2010.04.17 16:31:27 | 000,100,908 | ---- | C] () -- C:\Users\dak\Desktop\services.png
[2010.04.17 16:21:32 | 000,090,958 | ---- | C] () -- C:\Users\dak\Desktop\svchost.png
[2010.04.17 13:43:06 | 000,001,650 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.04.16 19:07:28 | 001,167,667 | ---- | C] () -- C:\Users\dak\Desktop\duh.png
[2010.04.15 21:56:23 | 000,000,641 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.04.14 18:59:40 | 000,077,312 | ---- | C] () -- C:\Users\dak\Desktop\mbr.exe
[2010.04.14 18:55:31 | 000,293,376 | ---- | C] () -- C:\Users\dak\Desktop\gmer.exe
[2010.04.12 20:08:41 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010.04.12 20:08:41 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010.04.12 12:30:08 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010.04.12 00:00:01 | 001,039,999 | ---- | C] () -- C:\Users\dak\Desktop\SURF.jpg
[2010.04.11 13:14:41 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.04.11 13:14:41 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.04.11 13:14:41 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{71319224-4559-11df-ba4d-001eec50fd60}.TM.blf
[2010.04.08 13:36:33 | 000,000,599 | ---- | C] () -- C:\Users\Public\Desktop\Shortcut to Flix.exe.lnk
[2010.04.07 16:41:57 | 000,004,608 | ---- | C] () -- C:\Users\dak\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.07 16:35:42 | 000,000,637 | ---- | C] () -- C:\Users\dak\Desktop\HandyAvi.lnk
[2010.04.06 15:35:24 | 000,497,152 | ---- | C] () -- C:\Users\dak\Desktop\Solicitation letter 2.doc
[2010.04.06 12:03:08 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010.04.06 12:03:07 | 000,261,632 | ---- | C] () -- C:\Windows\PEV.exe
[2010.04.06 12:03:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010.04.06 01:07:04 | 000,002,227 | ---- | C] () -- C:\Users\Public\Desktop\Performance.lnk
[2010.04.05 21:10:08 | 000,007,772 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2010.04.05 01:29:24 | 000,000,858 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2010.04.05 01:14:50 | 000,000,630 | ---- | C] () -- C:\Users\dak\Desktop\Advanced Task Manager.lnk
[2010.03.26 00:10:14 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.03.26 00:10:13 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.03.26 00:10:13 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{de742490-37f6-11df-b6b1-001eec50fd60}.TM.blf
[2010.03.25 23:49:19 | 001,440,618 | ---- | C] () -- C:\Users\dak\Desktop\dict-cs-2.0.oxt
[2010.03.25 12:12:30 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.03.25 12:12:30 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.03.25 12:12:30 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{4c162df7-37f1-11df-8719-001eec50fd60}.TM.blf
[2010.03.24 21:31:14 | 000,190,160 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2010.03.24 20:06:42 | 000,139,456 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010.03.24 20:06:42 | 000,138,056 | ---- | C] () -- C:\Users\dak\AppData\Roaming\PnkBstrK.sys
[2010.03.24 20:06:13 | 000,190,160 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2010.03.24 20:06:13 | 000,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010.03.24 20:06:12 | 002,407,792 | ---- | C] () -- C:\Windows\System32\pbsvc_heroes.exe
[2010.03.20 15:39:48 | 000,276,196 | ---- | C] () -- C:\Windows\System32\NvApps.xml
[2010.03.20 15:39:48 | 000,066,714 | ---- | C] () -- C:\Windows\System32\NvwsApps.xml
[2010.03.20 15:33:19 | 000,001,865 | -HS- | C] () -- C:\Windows\System32\mmf.sys
[2010.03.20 15:33:18 | 000,249,856 | ---- | C] () -- C:\Windows\lcmmfu.cpl
[2010.03.20 15:33:18 | 000,048,640 | ---- | C] () -- C:\Windows\mmfs.dll
[2010.03.20 15:33:18 | 000,016,384 | ---- | C] () -- C:\Windows\runservice.exe
[2010.03.16 19:01:23 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{ff15ed99-3117-11df-96ce-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.03.16 19:01:23 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{ff15ed99-3117-11df-96ce-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.03.16 19:01:23 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{ff15ed99-3117-11df-96ce-001eec50fd60}.TM.blf
[2010.02.14 04:03:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.02.13 16:08:34 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{1814c5cb-189b-11df-963f-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2010.02.13 16:08:34 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{1814c5cb-189b-11df-963f-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2010.02.13 16:08:34 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{1814c5cb-189b-11df-963f-001eec50fd60}.TM.blf
[2010.01.28 05:10:29 | 000,000,091 | ---- | C] () -- C:\Users\dak\AppData\Local\fusioncache.dat
[2010.01.05 01:08:10 | 000,008,864 | ---- | C] () -- C:\Windows\System32\drivers\CDAC15BA.SYS
[2009.12.15 19:01:23 | 000,000,000 | ---- | C] () -- C:\Users\dak\.gtk-bookmarks
[2009.12.09 18:00:14 | 000,000,020 | -HS- | C] () -- C:\Windows\WINPROD.DLL
[2009.12.07 15:45:39 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{f274a58d-e335-11de-bee8-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2009.12.07 15:45:38 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{f274a58d-e335-11de-bee8-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2009.12.07 15:45:38 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{f274a58d-e335-11de-bee8-001eec50fd60}.TM.blf
[2009.12.07 15:39:52 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{88a7cc06-e334-11de-9f3b-001eec50fd60}.TMContainer00000000000000000002.regtrans-ms
[2009.12.07 15:39:52 | 000,524,288 | -HS- | C] () -- C:\Users\dak\ntuser.dat{88a7cc06-e334-11de-9f3b-001eec50fd60}.TMContainer00000000000000000001.regtrans-ms
[2009.12.07 15:39:51 | 000,065,536 | -HS- | C] () -- C:\Users\dak\ntuser.dat{88a7cc06-e334-11de-9f3b-001eec50fd60}.TM.blf
[2009.12.03 10:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009.11.12 17:04:15 | 000,123,988 | ---- | C] () -- C:\Users\dak\AppData\Local\debuggee.mdmp
[2009.11.06 23:06:01 | 000,000,055 | ---- | C] () -- C:\Windows\MSYS.INI
[2009.10.31 12:14:12 | 000,007,619 | ---- | C] () -- C:\Users\dak\AppData\Local\Resmon.ResmonCfg
[2009.10.31 12:04:13 | 000,000,048 | ---- | C] () -- C:\Users\dak\AppData\Roaming\ItDb.enc
[2009.10.28 00:13:56 | 000,000,600 | ---- | C] () -- C:\Users\dak\AppData\Roaming\winscp.rnd
[2009.10.24 15:40:47 | 000,000,348 | ---- | C] () -- C:\Users\dak\cvtest.log
[2009.10.24 15:40:47 | 000,000,342 | ---- | C] () -- C:\Users\dak\cvtest.sum
[2009.10.24 15:40:47 | 000,000,283 | ---- | C] () -- C:\Users\dak\cvtest.csv
[2009.10.24 15:29:52 | 000,000,600 | ---- | C] () -- C:\Users\dak\AppData\Local\PUTTY.RND
[2009.10.19 15:25:07 | 000,000,172 | ---- | C] () -- C:\Windows\ODBC.INI
[2009.10.19 14:58:26 | 000,033,576 | ---- | C] () -- C:\Windows\System32\BCGPOleAcc.dll
[2009.10.19 14:53:43 | 000,178,176 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009.10.19 14:53:42 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009.10.19 14:53:42 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009.10.19 14:53:42 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2009.10.19 14:53:41 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009.10.19 14:53:41 | 000,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2009.10.19 12:19:53 | 000,000,095 | ---- | C] () -- C:\Windows\winamp.ini
[2009.10.19 11:51:46 | 000,000,020 | -HS- | C] () -- C:\Users\dak\ntuser.ini
[2009.10.19 11:51:45 | 003,145,728 | ---- | C] () -- C:\Users\dak\ntuser.dat
[2009.10.19 11:51:45 | 000,524,288 | -HS- | C] () -- C:\Users\dak\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009.10.19 11:51:45 | 000,524,288 | -HS- | C] () -- C:\Users\dak\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009.10.19 11:51:45 | 000,262,144 | -HS- | C] () -- C:\Users\dak\ntuser.dat.LOG1
[2009.10.19 11:51:45 | 000,065,536 | -HS- | C] () -- C:\Users\dak\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009.10.19 11:51:45 | 000,000,000 | -HS- | C] () -- C:\Users\dak\ntuser.dat.LOG2
[2009.07.14 18:15:00 | 000,178,432 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.06.15 07:20:54 | 000,355,432 | ---- | C] () -- C:\Windows\System32\vfprintpthelper.dll
[2007.04.19 15:21:14 | 000,266,240 | ---- | C] () -- C:\Windows\System32\EMSC.DLL
[2007.04.19 15:21:14 | 000,009,856 | ---- | C] () -- C:\Windows\System32\drivers\EMSC.sys
[2006.03.09 00:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:05EE1EEF
< End of report >
////////////////////////////////
Error: Unable to interpret <netsvcs> in the current context!
Error: Unable to interpret <drivers32> in the current context!
Error: Unable to interpret <HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s> in the current context!
Error: Unable to interpret <c:\windows\*.* /U> in the current context!
Error: Unable to interpret </md5start> in the current context!
Error: Unable to interpret <eventlog.dll> in the current context!
Error: Unable to interpret <scecli.dll> in the current context!
Error: Unable to interpret <netlogon.dll> in the current context!
Error: Unable to interpret <cngaudit.dll> in the current context!
Error: Unable to interpret <sceclt.dll> in the current context!
Error: Unable to interpret <ntelogon.dll> in the current context!
Error: Unable to interpret <logevent.dll> in the current context!
Error: Unable to interpret <iaStor.sys> in the current context!
Error: Unable to interpret <nvstor.sys> in the current context!
Error: Unable to interpret <atapi.sys> in the current context!
Error: Unable to interpret <IdeChnDr.sys> in the current context!
Error: Unable to interpret <viasraid.sys> in the current context!
Error: Unable to interpret <AGP440.sys> in the current context!
Error: Unable to interpret <vaxscsi.sys> in the current context!
Error: Unable to interpret <nvatabus.sys> in the current context!
Error: Unable to interpret <viamraid.sys> in the current context!
Error: Unable to interpret <nvata.sys> in the current context!
Error: Unable to interpret <nvgts.sys> in the current context!
Error: Unable to interpret <iastorv.sys> in the current context!
Error: Unable to interpret <ViPrt.sys> in the current context!
Error: Unable to interpret <eNetHook.dll> in the current context!
Error: Unable to interpret <ahcix86.sys> in the current context!
Error: Unable to interpret <KR10N.sys> in the current context!
Error: Unable to interpret <nvstor32.sys> in the current context!
Error: Unable to interpret <ahcix86s.sys> in the current context!
Error: Unable to interpret <nvrd32.sys> in the current context!
Error: Unable to interpret <symmpi.sys> in the current context!
Error: Unable to interpret <ndis.sys> in the current context!
Error: Unable to interpret <winlogon.exe> in the current context!
Error: Unable to interpret <explorer.exe> in the current context!
Error: Unable to interpret <userinit.exe> in the current context!
Error: Unable to interpret <lsass.exe> in the current context!
Error: Unable to interpret <svchost.exe> in the current context!
Error: Unable to interpret <smss.exe> in the current context!
Error: Unable to interpret <hal.dll> in the current context!
Error: Unable to interpret <ws2_32.dll> in the current context!
Error: Unable to interpret </md5stop> in the current context!
Error: Unable to interpret <%systemroot%\*. /mp /s> in the current context!
Error: Unable to interpret <CREATERESTOREPOINT> in the current context!
Error: Unable to interpret <%systemroot%\system32\*.dll /lockedfiles> in the current context!
Error: Unable to interpret <reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c> in the current context!

OTL by OldTimer - Version 3.2.1.1 log created on 04182010_233949
////////////////////////
druhy log na me pusobi dojmem, ze se neco nepovedlo

Nepovedlo, ale nevadí, zítra Vám napíšu další pokyny, dnes už jdu spát

Problémy jsou pořád stejné?

bohuzel ano, jedinou moznosti je proces periodicky zabijet..

Vytěžuje Vám to i v nouzovém režimu?

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:05EE1EEF

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s

:COMMANDS
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde

------------------------------
edit//

Ještě zkuste vypnout službu (zastavit ručně ve službách)
MMCSS

Službu BITS jste zkoušel vypnout,že? Budeme postupně něco zkoušet

v nouzovem rezimu je vse poradku

//////////////////////////////////////////////
OTL Extras logfile created on: 18.4.2010 23:05:10 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\dak\Desktop
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 67,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 30,00 Gb Total Space | 7,51 Gb Free Space | 25,04% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 0,17 Gb Free Space | 1,74% Space Free | Partition Type: NTFS
Drive E: | 250,09 Gb Total Space | 22,92 Gb Free Space | 9,17% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 982,97 Mb Total Space | 825,44 Mb Free Space | 83,97% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded

Computer Name: A02-0339A
Current User Name: dak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.reg [@ = regfile] -- regedit.exe "%1"

[HKEY_USERS\S-1-5-21-3266397383-775854498-48628368-1000\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- Reg Error: Key error. File not found
.com [@ = ComFile] -- Reg Error: Key error. File not found
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- E:\soft\Firefox3\firefox.exe (Mozilla Corporation)
.pif [@ = piffile] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome File not found
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 File not found
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome File not found
https [open] -- "E:\soft\Firefox3\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [open] -- regedit.exe "%1"
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "E:\soft\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "E:\soft\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "E:\soft\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 File not found
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{02CB752D-8747-33E4-AF64-828226CB0171}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (40715))
"{05EC21B8-4593-3037-A781-A6B5AFFCB19D}" = Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools
"{08C0729E-3E50-11DF-9D81-005056806466}" = Google Earth
"{1374CC63-B520-4f3f-98E8-E9020BF01CFF}" = Prostředí Windows XP Mode
"{137D91E1-2347-4EAC-BB0B-CC06C6B92A52}_is1" = Men of War (Remove Only)
"{137D91E1-2347-4EAC-BB0B-CC06C6B92A52}_update1.11.3.0" = Update 1.11.3.0 for "Men of War"
"{1A655D51-1423-48A3-B748-8F5A0BE294C8}" = Microsoft Visual J# .NET Redistributable Package 1.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23BDF7D8-C353-4BA8-8567-814F91332CEA}" = Wireless Switch
"{241F2BF7-69EB-42A4-9156-96B2426C7504}" = Microsoft SQL Server Compact 3.5 for Devices ENU
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{291B3A3B-F808-45B8-8113-DF232FCB6C82}" = Microsoft .NET Compact Framework 3.5
"{2AE513CF-C0DC-3D92-A092-AD1C68568405}" = Microsoft Windows SDK Intellisense and Reference Assemblies (40715)
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)
"{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}" = Microsoft SQL Server Compact 3.5 Design Tools ENU
"{300A2961-B2B5-4889-9CB9-5C2A570D08AD}" = Debugging Tools for Windows (x86)
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Dragon Age Toolset
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{44D9A2CB-0692-3180-B5E2-26F4E807D067}" = Microsoft Visual C++ Compilers 2008 Standard Edition - enu - x86
"{468F253F-82B2-4182-8B8F-9A2291CE61E9}" = #recognize!
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B59E851-E29D-4D02-B4B7-CE4A0B2B719C}" = Webcam Flix
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{54194F60-988C-4D03-B922-C2B00EFDA39A}" = NVIDIA PhysX
"{56B4002F-671C-49F4-984C-C760FE3806B5}" = Microsoft SQL Server VSS Writer
"{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}" = OpenOffice.org 3.2
"{63112888-EAEA-4C7C-B567-617C2F16584A}" = Windows Media Player 9 Series SDK
"{64c5b887-b5ee-42b8-8596-78905a6b5f1f}" = Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense
"{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}" = Microsoft Document Explorer 2008
"{675DD1E6-637A-4F0E-B6DE-26F45CC26092}_is1" = AC2 server emulator 0.44 by Dormine
"{6C9F6D23-E9AD-43C9-B43A-011562AAF876}" = Windows Mobile 5.0 SDK R2 for Pocket PC
"{6DEF11C0-35FF-4160-A543-FDD336C4DAE5}" = Microsoft SQL Server 2005 Express Edition (BWDATOOLSET)
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EEB695-388B-4835-8EA6-0C04545B06B9}" = Software Intel(R) PROSet/Wireless WiFi
"{73D7F26F-A650-49F3-9928-AD204673797C}" = Green Charger
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{7B738CD9-D107-48C7-8E65-2E6639A39C8D}" = PerfectDisk 10 Professional
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842FAF7C-50EF-4463-9B8F-6222E1384D7D}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8CB66246-75A7-3829-BD89-F659AC7408CF}" = Microsoft Windows SDK for Windows 7 Common Utilities (40715)
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90120000-0021-0000-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer 2007
"{90120000-0021-0409-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{9208FFB8-D5C1-3ADE-B898-35F5D7C2F399}" = Microsoft Windows SDK for Windows 7 Samples (40715)
"{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}" = Windows Mobile 5.0 SDK R2 for Smartphone
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}" = Microsoft SQL Server Database Publishing Wizard 1.2
"{9AFA9294-C7A4-4DD5-ADBE-3DFC98752417}_is1" = Theatre of War 2: Kursk 1943 (Remove Only)
"{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1" = Advanced System Optimizer
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA467959-A1D6-4F45-90CD-11DC57733F32}" = Crystal Reports Basic for Visual Studio 2008
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{AD62165F-29CB-3021-B031-53C47F95A69C}" = Microsoft Windows SDK Net Fx Interop Headers And Libraries (40715)
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{B268E9A1-04A9-40D0-9866-846BE2B74BA7}" = Microsoft Windows SDK for Visual Studio 2008 Win32 Tools
"{B29E1532-EEAE-3197-A6C6-F87E0D162F4B}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (40715)
"{B32E7732-B2FB-3FD0-81AC-6025B1104C66}" = Microsoft Device Emulator version 3.0 - ENU
"{B45FABE7-D101-4D99-A671-E16DA40AF7F0}" = Microsoft Games for Windows - LIVE
"{B578C85A-A84C-4230-A177-C5B2AF565B8C}" = Microsoft Games for Windows - LIVE Redistributable
"{B862B671-59FD-7457-AFA0-C738FB7ABD60}" = Windows SDK Intellidocs
"{B924C008-D667-3B26-84C6-BD70285F9BFC}" = Microsoft Windows SDK for Windows 7 (7.0)
"{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}" = Microsoft SQL Server Compact 3.5 ENU
"{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}" = Microsoft SQL Server Native Client
"{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}" = Microsoft Windows SDK for Visual Studio 2008 Tools
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB974C3D-D101-4411-8F54-DCDC58DED815}" = Protector Suite 2009
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D5F46ED0-ED35-36B5-9767-E172F56D7D73}" = Microsoft Windows SDK for Windows 7 .NET Documentation (40715)
"{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}" = Microsoft Visual Studio 2008 Professional Edition - ENU
"{D8B5B7C3-47B1-40FA-8251-59C74A543880}" = Dragon Age: Origins Character Creator
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = jetAudio Basic
"{E2333A74-D004-3CBD-9BEC-569AC373F48A}" = Microsoft Windows SDK .NET Framework Tools (40715)
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E5B1222C-6D7E-3033-A667-5AFEC02005C0}" = Microsoft Windows SDK for Windows 7 Win32 Documentation (40715)
"{E72400F4-A41E-4019-9143-051BE2951C00}" = Application Verifier
"{e7394a0f-3f80-45b1-87fc-abcd51893246}" = Python 2.6.4
"{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}" = Microsoft .NET Compact Framework 2.0 SP2
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FEF06E73-A519-4510-8CF3-B66041B91D8A}" = EMSC
"{FF29527A-44CD-3422-945E-981A13584000}" = VC Runtimes MSI
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"ACDSee 32" = ACDSee 32
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ATM5_is1" = Advanced Task Manager for Windows Vista & Windows XP
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"DFX for Winamp" = DFX 8 for Winamp
"Dia" = Dia (remove only)
"Diablo II" = Diablo II
"DirectVobSub" = DirectVobSub (remove only)
"emgucv 2.1.0.793" = emgucv 2.1.0.793
"EOS Utility" = Canon Utilities EOS Utility
"ffdshow" = ffdshow (remove only)
"HandyAvi_is1" = HandyAvi 4.3
"HijackThis" = HijackThis 2.0.2
"InstallShield_{23BDF7D8-C353-4BA8-8567-814F91332CEA}" = Wireless Switch
"InstallShield_{73D7F26F-A650-49F3-9928-AD204673797C}" = Green Charger
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.1.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft Document Explorer 2008" = Microsoft Document Explorer 2008
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Microsoft Visual Studio 2005 Tools for Office Runtime
"Microsoft Visual Studio 2008 Professional Edition - ENU" = Microsoft Visual Studio 2008 Professional Edition - ENU
"MiKTeX 2.8" = MiKTeX 2.8
"MinGW" = MinGW 5.1.6
"Miranda IM" = Miranda IM 0.8.10
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Mozilla Thunderbird (2.0.0.24)" = Mozilla Thunderbird (2.0.0.24)
"MSYS-1.0_is1" = "Minimal SYStem 1.0.11"
"Nero8030_Micro_is1" = Nero 8 Micro v8.0.3.0
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Open Source Computer Vision Library_is1" = Open Source Computer Vision Library 1.1pre1
"OpenAL" = OpenAL
"OpenCV2.0" = OpenCV SDK
"PowerISO" = PowerISO
"ProInst" = Intel PROSet Wireless
"PunkBusterSvc" = PunkBuster Services
"RADVideo" = RAD Video Tools
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"SDKSetup_7.0.7600.16385.40715" = Microsoft Windows SDK for Windows 7 (7.0)
"ST6UNST #1" = Hero Editor V0.96
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Totalcmd" = Total Commander (Remove or Repair)
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"VisualWebDeveloper" = Microsoft Visual Studio Web Authoring Component
"VLC media player" = VLC media player 1.0.5
"Winamp" = Winamp (remove only)
"WinEdt_is1" = WinEdt
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinRAR archiver" = WinRAR archiver
"Xvid_is1" = Xvid 1.2.2 final uninstall

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >
//////////////////////////////////ú
zakazal jsem obe sluzby, ale bohuzel ani jedna sluzba to nebyla

take jsem opet zakazal sluzbu wuauserv (Windows Update) a k memu prekvapeni zatez CPU i zapisy na disk ustaly. pri drivejsich pokusech se situace vzdy vratila do normalu, necham proto sluzbu nejakou dobu zakazanou a ujistim se, ze to neni pouze prechodny stav

Ještě můžete porovnat, které služby v nouzovém režimu neběží.
Pár dní pc pozorujte a pak se ozvěte

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.

***********

Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir

***********

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

***********

Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech

po zastaveni sluzby wuauserv je svchost.exe po vetsinu casu v klidu, jsou ale chvili, kdy z niceho nic naskoci a vytizi jadro na 10-15s a pote zas ustane. nic prijemneho, ale system je alespon pouzitelny. zkusim jeste jine sluzby, ale s prihlednutim k nahodnosti problemu je to beh na dlouhou trat
nic proto system nezachrani pred obnouvou ze zalohy, jen co si to budu moci dovolit
dekuji za Vas cas a rady

Bohužel jsem opravdu nic špatného nenašla.

Není zač

VIRY.CZ

svchost.exe nonstop plne zatezuje jadro a zapisuje na disk

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di

Re: svchost.exe nonstop plne zatezuje jadro a zapisuje na di