Neustálý restart Windows Průzkumníka

[tresta3]

Zdravím, řeším problém kdy mi po restartu PC po aktualizacích začal Windows Průzkumník neustále restartovat. V porcesech jsem zjistil že během restartu se spuští a ukončuje zároveň soubor DLLHOST.EXE

Zasílám log na kontrolu z RSIT, ComboFixu a MBAM jako přílohu

RSIT&ComboFix&MBAV.zip

(20.86 KiB) Staženo 54 x

[Rudy]

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

Collect::
c:\windows\is-VEUVL.exe

Uložte na plochu jako CFSCript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkaz ze skriptu.

[tresta3]

Tady je log


ComboFix 10-09-14.05 - Martin 15.09.2010 22:48:34.3.2 - x86
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3071.1569 [GMT 2:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Martin\Desktop\CFSCript.txt
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-08-15 do 2010-09-15 )))))))))))))))))))))))))))))))
.

2010-09-15 20:55 . 2010-09-15 20:55 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-09-15 20:55 . 2010-09-15 20:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-15 18:43 . 2010-09-15 20:55 -------- d-----w- c:\users\Martin\AppData\Local\Temp
2010-09-15 18:35 . 2010-09-15 18:35 21357 ----a-w- C:\RSIT&ComboFix&MBAV.zip
2010-09-15 18:18 . 2010-09-15 18:18 -------- d-----w- C:\_rf
2010-09-15 17:37 . 2010-09-15 17:37 -------- d-----w- c:\windows\Panther
2010-09-15 17:32 . 2010-08-16 06:15 804864 ----a-w- c:\windows\system32\FntCache.dll
2010-09-15 17:32 . 2010-08-16 06:14 1076224 ----a-w- c:\windows\system32\DWrite.dll
2010-09-15 17:32 . 2010-08-16 06:14 737280 ----a-w- c:\windows\system32\d2d1.dll
2010-09-15 17:32 . 2010-08-16 06:14 218624 ----a-w- c:\windows\system32\d3d10_1core.dll
2010-09-15 17:32 . 2010-08-16 06:14 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2010-09-15 17:32 . 2010-06-26 05:14 1495040 ----a-w- c:\windows\system32\ExplorerFrame.dll
2010-09-15 17:31 . 2010-09-15 17:32 -------- d-----w- c:\program files\Feedback Tool
2010-09-15 17:21 . 2010-09-15 17:22 -------- d-----w- C:\rsit
2010-09-15 17:14 . 2010-09-15 17:14 388096 ----a-r- c:\users\Martin\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-09-15 17:09 . 2010-09-15 17:09 -------- d-----w- c:\program files\Trend Micro
2010-09-15 17:03 . 2010-09-15 17:03 -------- d-----w- c:\users\Martin\AppData\Roaming\Malwarebytes
2010-09-15 17:03 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-15 17:03 . 2010-09-15 17:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-09-15 17:03 . 2010-09-15 17:03 -------- d-----w- c:\programdata\Malwarebytes
2010-09-15 17:03 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-15 15:24 . 2010-09-15 15:24 7168 ----a-w- c:\windows\system32\drivers\utexnjiw.sys
2010-09-15 15:23 . 2010-09-15 15:23 11264 ----a-w- c:\windows\system32\drivers\uzexnjiw.sys
2010-09-15 15:23 . 2010-09-15 15:23 10240 ----a-w- c:\windows\system32\drivers\ujexnjiw.sys
2010-09-15 15:18 . 2010-09-16 02:44 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-09-15 12:47 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-12 21:31 . 2010-09-12 21:31 -------- d-----w- c:\program files\SystemRequirementsLab
2010-09-12 21:31 . 2010-09-12 21:31 -------- d-----w- c:\users\Martin\SystemRequirementsLab
2010-09-11 22:11 . 2010-09-11 22:11 -------- d-----w- c:\temp\mplayer
2010-09-11 22:09 . 2009-01-14 05:25 9548288 ----a-w- c:\temp\ffmpeg.exe
2010-09-11 22:09 . 2009-01-14 07:17 14285824 ----a-w- c:\temp\MEncoder.exe
2010-09-11 22:09 . 2009-06-12 03:14 13551635 ----a-w- c:\temp\MPlayer.exe
2010-09-11 22:09 . 2010-09-14 16:43 -------- d-----w- C:\Temp
2010-09-11 22:09 . 2008-12-09 14:50 199680 ----a-w- c:\temp\MediaInfo.exe
2010-09-11 22:09 . 2008-12-09 14:50 1548288 ----a-w- c:\temp\MediaInfo.dll
2010-09-11 16:59 . 2010-09-11 17:10 -------- d-----w- c:\program files\Android Commander
2010-09-10 20:28 . 2010-09-10 20:28 90 ---ha-w- C:\aaw7boot.cmd
2010-09-10 20:16 . 2010-09-10 20:16 95024 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-09-10 20:12 . 2010-09-10 20:12 -------- d-----w- c:\users\Martin\AppData\Local\Sunbelt Software
2010-09-10 20:12 . 2010-09-11 17:04 -------- d-----w- c:\program files\Lavasoft
2010-09-10 20:12 . 2010-09-10 20:30 -------- d-----w- c:\programdata\Lavasoft
2010-09-09 19:03 . 2010-09-09 19:03 1868800 ----a-r- c:\users\Martin\AppData\Roaming\Microsoft\Installer\{1D7F1C32-E5D9-42CB-836D-352CBCCCD4D3}\AppIcon.exe
2010-09-08 11:42 . 2010-09-08 11:44 -------- d-----w- c:\programdata\organiser
2010-09-08 11:42 . 2008-12-01 08:06 102 ----a-w- c:\programdata\organiser\StartServer.Bat
2010-09-08 11:42 . 2008-08-22 20:14 21638 ----a-w- c:\windows\system32\Ckldrv.sys
2010-09-08 11:42 . 2008-05-07 23:29 122880 ----a-w- c:\windows\system32\Crypserv.exe
2010-09-08 11:42 . 1999-06-18 20:49 165888 ----a-w- c:\windows\Ckconfig.exe
2010-09-08 11:42 . 1996-05-03 16:21 27648 ----a-r- c:\windows\Setup_ck.exe
2010-09-08 11:42 . 1996-05-03 14:36 18432 ----a-w- c:\windows\Setup_ck.dll
2010-09-08 11:42 . 1995-07-04 17:33 11776 ----a-w- c:\windows\Ckrfresh.exe
2010-09-08 11:42 . 2010-09-08 11:42 -------- d-----w- c:\programdata\WorkshopData
2010-09-08 11:42 . 2006-02-28 07:19 0 ----a-w- c:\programdata\WorkshopData\47\workshop.exe
2010-09-08 11:42 . 1999-08-02 00:02 8768 ----a-w- c:\programdata\WorkshopData\47\CK16rmv.exe
2010-09-04 11:38 . 2010-09-04 11:38 -------- d-----w- c:\users\Martin\AppData\Local\Songbird2
2010-09-04 11:38 . 2010-09-04 11:38 -------- d-----w- c:\users\Martin\AppData\Roaming\Songbird2
2010-09-04 07:59 . 2010-09-04 08:00 -------- d-----w- c:\users\Martin\AppData\Roaming\Zoner
2010-09-04 07:59 . 2010-09-04 07:59 -------- d-----w- c:\users\Martin\AppData\Local\Zoner
2010-09-04 07:59 . 2010-09-04 07:59 -------- d-----w- c:\program files\Zoner
2010-09-03 07:56 . 2010-09-03 07:44 53632 ----a-w- c:\users\Martin\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-09-03 07:56 . 2010-09-03 07:44 2605008 ----a-w- c:\users\Martin\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
2010-09-03 07:43 . 2010-09-03 07:51 -------- d-----w- c:\users\Martin\AppData\Roaming\Auslogics
2010-09-02 21:53 . 2010-08-31 15:18 536576 ----a-w- c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\extensions\{22119944-ED35-4ab1-910B-E619EA06A115}\components\rfproxy_31.dll
2010-09-02 21:09 . 2010-09-02 21:09 -------- d-----w- c:\program files\Microsoft Synchronization Services
2010-09-02 21:08 . 2010-09-02 21:08 -------- d-----w- c:\program files\Microsoft Sync Framework
2010-09-02 21:01 . 2010-09-02 21:16 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-09-02 20:59 . 2010-09-02 20:59 -------- d-----w- c:\program files\Microsoft Analysis Services
2010-09-02 19:59 . 2010-09-06 20:50 -------- d-----w- c:\program files\Pošta 3
2010-09-02 19:59 . 2010-09-02 19:59 -------- d-----w- c:\users\Martin\AppData\Roaming\Posta
2010-09-02 09:27 . 2010-08-11 23:52 85464 ----a-w- c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}\platform\WINNT_x86-msvc\components\WeaveCrypto.dll
2010-09-02 09:27 . 2010-08-11 23:52 38872 ----a-w- c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}\platform\WINCE\components\WeaveCrypto.dll
2010-09-02 08:21 . 2010-09-02 08:21 -------- d-----w- c:\users\Martin\AppData\Roaming\RoboForm
2010-09-01 09:59 . 2010-09-01 09:59 -------- d-----w- c:\users\Martin\AppData\Roaming\ICZ
2010-09-01 09:59 . 2010-09-01 09:59 -------- d--h--w- c:\program files\Zero G Registry
2010-09-01 09:59 . 2010-09-01 09:59 -------- d-----w- c:\program files\JRF
2010-09-01 09:59 . 2010-09-01 09:59 -------- d--h--w- c:\users\Martin\InstallAnywhere
2010-08-31 16:43 . 2010-08-31 16:43 -------- d-----w- c:\program files\StarCraft II
2010-08-31 11:27 . 2010-08-27 13:02 30528 ----a-w- c:\windows\system32\TURegOpt.exe
2010-08-31 11:27 . 2010-08-27 12:56 21312 ----a-w- c:\windows\system32\authuitu.dll
2010-08-31 11:27 . 2010-08-27 12:56 30016 ----a-w- c:\windows\system32\uxtuneup.dll
2010-08-31 11:27 . 2010-08-31 11:27 -------- d-----w- c:\users\Martin\AppData\Roaming\TuneUp Software
2010-08-31 11:27 . 2010-08-31 11:27 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-08-31 11:26 . 2010-08-31 11:27 -------- d-----w- c:\programdata\TuneUp Software
2010-08-31 11:26 . 2010-08-31 11:26 -------- d-sh--w- c:\programdata\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-08-28 20:18 . 2010-09-01 10:36 -------- d-----w- c:\program files\QuickTime
2010-08-27 17:29 . 2010-08-27 17:29 -------- d-----w- c:\program files\Obalky
2010-08-27 10:36 . 2010-08-27 10:36 -------- d-----w- c:\windows\en
2010-08-27 10:30 . 2010-08-31 19:16 -------- d-----w- c:\program files\Windows Live
2010-08-25 20:23 . 2010-08-25 20:23 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-08-25 20:23 . 2010-08-25 20:23 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-08-25 20:20 . 2010-08-25 20:20 -------- d-----w- c:\users\Public\Recorded TV
2010-08-25 18:54 . 2010-09-03 10:07 -------- d-----w- c:\program files\RapidShareManager
2010-08-25 13:23 . 2010-08-25 13:23 -------- d-----w- c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
2010-08-25 13:23 . 2010-08-25 13:23 -------- d-----w- c:\programdata\NVIDIA Corporation
2010-08-25 13:22 . 2010-07-09 22:37 11008040 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2010-08-25 13:22 . 2010-07-09 22:37 56936 ----a-w- c:\windows\system32\OpenCL.dll
2010-08-25 13:22 . 2010-07-09 22:37 4553832 ----a-w- c:\windows\system32\nvcuda.dll
2010-08-25 13:22 . 2010-07-09 22:37 314984 ----a-w- c:\windows\system32\nvdecodemft.dll
2010-08-25 13:22 . 2010-07-09 22:37 2892904 ----a-w- c:\windows\system32\nvcuvid.dll
2010-08-25 13:22 . 2010-07-09 22:37 2506344 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-08-25 13:22 . 2010-07-09 22:37 14092904 ----a-w- c:\windows\system32\nvoglv32.dll
2010-08-25 13:22 . 2010-07-09 22:37 236136 ----a-w- c:\windows\system32\nvcod1922.dll
2010-08-25 13:22 . 2010-07-09 22:37 236136 ----a-w- c:\windows\system32\nvcod.dll
2010-08-25 13:22 . 2010-07-09 22:37 10267240 ----a-w- c:\windows\system32\nvcompiler.dll
2010-08-25 09:55 . 2010-08-25 09:55 53248 ----a-r- c:\users\Martin\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-08-25 09:53 . 2010-08-25 09:53 -------- d-----w- c:\program files\Logitech
2010-08-25 06:19 . 2010-08-25 06:21 -------- d-----w- c:\users\Martin\AppData\Roaming\dvdcss
2010-08-25 00:29 . 2010-04-07 07:10 571904 ----a-w- c:\windows\system32\oleaut32.dll
2010-08-24 19:39 . 2010-08-24 19:39 -------- d-----w- c:\program files\GmoteServer
2010-08-23 20:53 . 2010-08-23 20:53 -------- d-----w- c:\users\Martin\AppData\Roaming\RigNRoll_usa_ws
2010-08-23 20:48 . 2010-08-23 20:48 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2010-08-23 20:48 . 2010-08-23 20:48 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2010-08-23 20:48 . 2010-08-23 20:48 -------- d-----w- c:\program files\OpenAL
2010-08-21 20:16 . 2010-08-21 20:39 -------- d-----w- c:\program files\CABviaActiveSync
2010-08-18 21:11 . 2010-08-18 21:11 94208 ----a-w- c:\windows\system32\pkcs11wrapper.dll
2010-08-18 16:21 . 2010-09-02 21:08 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-08-18 16:20 . 2010-08-27 10:38 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-08-17 21:53 . 2010-08-18 14:25 -------- d-----w- c:\users\Martin\AppData\Local\Xmarks
2010-08-17 20:52 . 2010-08-17 20:52 -------- d-----w- c:\users\Martin\AppData\Local\119614890734200052
2010-08-17 20:52 . 2010-08-17 20:52 -------- d-----w- c:\users\Martin\AppData\Local\119611678098662644

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-16 02:44 . 2010-02-12 23:52 -------- d-----w- c:\programdata\P4G
2010-09-16 02:44 . 2010-02-13 07:57 -------- d-----w- c:\program files\NSNetMon
2010-09-16 02:41 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Portable Devices
2010-09-15 22:33 . 2010-02-20 21:54 -------- d-----w- c:\program files\The KMPlayer
2010-09-15 20:23 . 2009-08-26 09:31 669198 ----a-w- c:\windows\system32\perfh005.dat
2010-09-15 20:23 . 2009-08-26 09:31 140798 ----a-w- c:\windows\system32\perfc005.dat
2010-09-15 20:13 . 2010-05-26 13:46 -------- d-----w- c:\program files\Trillian
2010-09-15 20:13 . 2010-02-13 07:45 -------- d-----w- c:\users\Martin\AppData\Roaming\Skype
2010-09-15 12:51 . 2009-07-07 19:10 -------- d-----w- c:\programdata\Microsoft Help
2010-09-14 16:41 . 2010-09-14 16:40 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-09-14 16:31 . 2010-04-06 19:09 -------- d-----w- c:\program files\Mp4ForHD
2010-09-13 19:24 . 2010-02-13 08:07 -------- d-----w- c:\users\Martin\AppData\Roaming\GoodSync
2010-09-09 19:03 . 2010-05-29 21:34 -------- d-----w- c:\program files\Droid Explorer
2010-09-09 11:42 . 2010-05-07 17:09 -------- d-----w- c:\users\Martin\AppData\Roaming\ICQ
2010-09-09 11:40 . 2010-05-07 17:09 -------- d-----w- c:\program files\ICQ7.1
2010-09-08 09:54 . 2010-04-09 09:09 -------- d-----w- c:\program files\JDownloader
2010-09-07 15:12 . 2010-06-29 12:34 38848 ----a-w- c:\windows\avastSS.scr
2010-09-07 15:11 . 2010-05-26 18:23 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-07 14:52 . 2010-05-26 18:24 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-09-07 14:52 . 2010-05-26 18:24 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-09-07 14:47 . 2010-05-26 18:24 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-09-07 14:47 . 2010-05-26 18:24 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-09-07 14:47 . 2010-05-26 18:24 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-09-06 20:50 . 2010-09-02 19:59 -------- d-----w- c:\program files\Pošta 3
2010-09-05 18:00 . 2010-02-18 21:15 -------- d-----w- c:\program files\CDBurnerXP
2010-09-05 17:58 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-09-04 08:31 . 2010-02-13 08:07 -------- d-----w- c:\program files\Siber Systems
2010-09-03 22:09 . 2010-02-13 07:28 -------- d-----w- c:\program files\CCleaner
2010-09-03 19:50 . 2010-08-12 11:24 -------- d-----w- c:\users\Martin\AppData\Roaming\HTC
2010-09-03 19:50 . 2010-08-05 15:09 -------- d-----w- c:\users\Martin\AppData\Roaming\Outlook
2010-09-02 21:24 . 2010-02-12 22:54 401704 ----a-w- c:\users\Martin\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-02 21:10 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-09-02 21:08 . 2009-07-07 19:15 -------- d-----w- c:\program files\Microsoft.NET
2010-09-02 06:21 . 2010-02-13 11:28 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-01 22:21 . 2010-04-29 15:33 -------- d-----w- c:\program files\JPEG Resampler
2010-08-31 22:46 . 2010-09-15 17:33 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-08-31 22:44 . 2010-09-15 17:33 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-08-31 22:44 . 2010-09-15 17:33 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-08-31 22:43 . 2010-09-15 17:33 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-08-31 22:43 . 2010-09-15 17:33 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-08-31 22:43 . 2010-09-15 17:33 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-08-31 22:43 . 2010-09-15 17:33 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-08-31 22:43 . 2010-09-15 17:33 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-08-31 22:42 . 2010-09-15 17:33 51200 ----a-w- c:\windows\system32\admparse.dll
2010-08-31 22:42 . 2010-09-15 17:33 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-08-31 22:42 . 2010-09-15 17:33 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-08-31 22:42 . 2010-09-15 17:33 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-08-31 22:42 . 2010-09-15 17:33 149504 ----a-w- c:\windows\system32\wextract.exe
2010-08-31 22:42 . 2010-09-15 17:33 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-08-31 22:42 . 2010-09-15 17:33 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-08-31 22:42 . 2010-09-15 17:33 11264 ----a-w- c:\windows\system32\mshta.exe
2010-08-31 22:41 . 2010-09-15 17:33 160768 ----a-w- c:\windows\system32\msls31.dll
2010-08-31 20:01 . 2009-07-07 19:25 -------- d-----w- c:\program files\Google
2010-08-31 19:47 . 2010-08-07 22:32 -------- d-----w- c:\users\Martin\AppData\Roaming\MotionDSP
2010-08-31 19:42 . 2010-02-19 17:44 -------- d-----w- c:\program files\Bonjour
2010-08-31 19:30 . 2010-08-13 11:51 -------- d-----w- c:\program files\Core Services
2010-08-31 19:30 . 2010-08-06 20:53 -------- d-----w- c:\program files\Mp3tag
2010-08-31 17:00 . 2010-08-03 21:19 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2010-08-31 11:49 . 2010-06-22 16:58 -------- d-----w- c:\program files\Steam
2010-08-30 13:15 . 2010-09-04 11:40 282624 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\windowsmedia@songbirdnest.com\platform\WINNT_x86-msvc\components\sbWindowsMediacore.dll
2010-08-30 13:14 . 2010-09-04 11:40 110592 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\quicktime@songbirdnest.com\platform\WINNT_x86-msvc\components\sbQuickTimeMediacore.dll
2010-08-30 13:14 . 2010-09-04 11:40 835584 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\mtp@songbirdnest.com\platform\WINNT_x86-msvc\components\sbMTPWin32.dll
2010-08-30 13:13 . 2010-09-04 11:40 770048 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\msc@songbirdnest.com\platform\WINNT_x86-msvc\components\sbMSCDevice.dll
2010-08-30 13:13 . 2010-09-04 11:40 13312 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\components\sbGracenoteStub.dll
2010-08-30 13:13 . 2010-09-04 11:40 94208 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\lib\sbGracenote.dll
2010-08-30 13:13 . 2010-09-04 11:40 81408 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\lib\gnsdk_musicid_cd.dll
2010-08-30 13:13 . 2010-09-04 11:40 571904 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\lib\gnsdk_sdkmanager.dll
2010-08-30 13:13 . 2010-09-04 11:40 154624 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\lib\gnsdk_search.dll
2010-08-30 13:13 . 2010-09-04 11:40 114688 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\gracenote@songbirdnest.com\platform\WINNT_x86-msvc\lib\gnsdk_link.dll
2010-08-30 13:13 . 2010-09-04 11:40 13312 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\cd-rip@songbirdnest.com\platform\WINNT_x86-msvc\components\sbGearworksStub.dll
2010-08-30 13:13 . 2010-09-04 11:40 65536 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\cd-rip@songbirdnest.com\platform\WINNT_x86-msvc\lib\sbGearworksCD.dll
2010-08-30 13:13 . 2010-09-04 11:40 394600 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\cd-rip@songbirdnest.com\platform\WINNT_x86-msvc\lib\gwrks32.dll
2010-08-30 13:13 . 2010-09-04 11:40 3573096 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\cd-rip@songbirdnest.com\platform\WINNT_x86-msvc\lib\gearaw32.dll
2010-08-30 13:13 . 2010-09-04 11:40 238952 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\cd-rip@songbirdnest.com\platform\WINNT_x86-msvc\lib\gwlangen.dll
2010-08-30 13:12 . 2010-09-04 11:40 49152 ----a-w- c:\users\Martin\AppData\Roaming\Songbird2\Profiles\l1xopy82.default\extensions\concerts@songbirdnest.com\platform\WINNT_x86-msvc\components\sbConcertsComponent.dll
2010-08-26 04:54 . 2010-02-18 19:43 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-08-25 13:27 . 2009-07-07 19:59 -------- d-----w- c:\programdata\NVIDIA
2010-08-25 13:23 . 2010-02-18 19:43 -------- d-----w- c:\program files\NVIDIA Corporation
2010-08-25 09:54 . 2010-02-14 10:59 -------- d-----w- c:\program files\Common Files\Logishrd
2010-08-25 09:54 . 2010-04-09 20:23 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2010-08-25 09:53 . 2010-04-09 20:22 -------- d-----w- c:\programdata\Logishrd
2010-08-24 19:39 . 2010-07-07 14:19 -------- d--h--w- c:\program files\InstallJammer Registry
2010-08-23 19:22 . 2010-08-12 11:22 -------- d-----w- c:\program files\HTC
2010-08-23 19:21 . 2010-05-03 19:37 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-08-23 19:21 . 2010-05-03 19:37 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-08-22 23:45 . 2010-04-26 19:21 -------- d-----w- c:\program files\MSECache
2010-08-22 17:42 . 2010-05-19 19:35 -------- d-----w- c:\users\Martin\AppData\Roaming\Dropbox
2010-08-18 13:14 . 2010-02-12 20:39 -------- d-----w- c:\program files\Common Files\Windows Live
2010-08-15 13:32 . 2010-08-15 13:33 720896 ----a-w- c:\windows\iun6002.exe
2010-08-15 13:29 . 2010-08-15 13:29 -------- d-----w- c:\program files\Recuva
2010-08-14 10:43 . 2010-08-14 10:43 -------- d-----w- c:\program files\Valve
2010-08-12 17:13 . 2010-08-12 17:13 -------- d-----w- c:\program files\Common Files\Java
2010-08-12 17:10 . 2010-04-09 09:09 -------- d-----w- c:\program files\Java
2010-08-12 11:35 . 2010-08-12 11:35 -------- d-----w- c:\users\Martin\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
2010-08-12 11:29 . 2010-02-13 09:06 -------- d-----w- c:\users\Martin\AppData\Roaming\DNA
2010-08-12 11:28 . 2010-08-12 11:27 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-08-12 11:22 . 2010-08-12 11:22 -------- d-----w- c:\program files\Spirent Communications
2010-08-12 08:00 . 2010-09-14 16:40 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-08-12 07:43 . 2010-02-13 09:06 -------- d-----w- c:\program files\DNA
2010-08-10 22:02 . 2010-08-04 20:15 -------- d-----w- c:\program files\AIMP2
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 16:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-05-06 09:29 64592 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /p \??\j:\0autocheck autochk /p \??\J:\0autocheck autochk *

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

[HKLM\~\startupfolder\C:^Users^Martin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Trillian.lnk]
path=c:\users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk
backup=c:\windows\pss\Trillian.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5]
2010-09-07 15:12 2838912 ----a-w- c:\program files\Alwil Software\Avast5\AvastUI.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]
2010-06-26 00:15 1311312 ----a-w- c:\program files\Logitech\SetPointP\SetPoint.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Home 2]
2010-08-30 14:31 371200 ----a-w- c:\users\Martin\Desktop\HTC Home 2.0 Build 123\HTCHome.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSSE]
2010-06-01 12:53 1093208 ----a-w- c:\program files\Microsoft Security Essentials\msseces.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSNetMon_aaeifggihfdfbgca]
2010-02-13 07:57 61440 ----a-w- c:\program files\NSNetMon\netmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm]
2010-09-02 08:19 66040 ----a-w- c:\program files\Siber Systems\AI RoboForm\robotaskbaricon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SE-TrayMenu]
2010-04-04 08:48 213504 ----a-w- c:\program files\SE-SOFT.COM\SE-TrayMenu\SE-TrayMenu.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2010-09-02 13:15 13351304 ----a-r- c:\program files\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uptime2]
2003-05-05 05:13 100352 ----a-w- c:\program files\Uptime2\Uptime2.exe

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys [2010-04-29 26112]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 ujexnjiw;AVZ-SG Kernel Driver;c:\windows\system32\Drivers\ujexnjiw.sys [2010-09-15 10240]
R3 utexnjiw;AVZ Kernel Driver;c:\windows\system32\Drivers\utexnjiw.sys [2010-09-15 7168]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-12 1343400]
R4 DroidExplorerService;DroidExplorer Service;c:\program files\Droid Explorer\DroidExplorer.Service.exe [2010-08-21 253952]
R4 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 135664]
R4 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x]
R4 Norton Internet Security;Norton Internet Security;c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe [x]
R4 pnetmdm;PdaNet Modem;c:\windows\system32\DRIVERS\pnetmdm.sys [2006-09-28 9472]
R4 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-02-13 691696]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [2009-06-18 15416]
S1 aswSP;aswSP; [x]
S1 uzexnjiw;AVZ-RK Kernel Driver;c:\windows\system32\Drivers\uzexnjiw.sys [2010-09-15 11264]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-08-27 1051968]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2008-01-29 29736]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2010-04-29 26112]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-05-08 165888]
S3 SiSGbeLH;SiS191/SiS190 – ovladač NDIS 6.0 zařízení sítě Ethernet;c:\windows\system32\DRIVERS\SiSGB6.sys [2009-07-13 48128]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-24 10064]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\AutorunsDisabled\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-04-22 11:09 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2010-09-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 17:35]

2010-09-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 17:35]

2010-09-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2991250655-3979899331-599909808-1000Core.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-05 21:07]

2010-09-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2991250655-3979899331-599909808-1000UA.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-05 21:07]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.centrum.cz/
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
IE: &Stáhnout FlashGetem - c:\program files\FlashGet\jc_link.htm
IE: &Stáhnout všechny FlashGetem - c:\program files\FlashGet\jc_all.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: Přizpůsobit Menu - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: RF Nástrojová lišta - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: Send to &Bluetooth Device... - c:\program files\ANYCOM\Blue USB-200-250\btsendto_ie_ctx.htm
IE: Uložit formuláře - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Vyplnit formulář - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - c:\program files\Get Styles\ct.htm
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
IE: {{0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\Windows Live\Companion\companioncore.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
FF - component: c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\extensions\{22119944-ED35-4ab1-910B-E619EA06A115}\components\rfproxy_31.dll
FF - component: c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\uankx7h9.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}\platform\WINNT_x86-msvc\components\WeaveCrypto.dll
FF - plugin: c:\progra~1\MICROS~3\Office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\MICROS~3\Office14\NPSPWRAP.DLL
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll
FF - plugin: c:\program files\Opera\program\plugins\nprjplug.dll
FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\users\Martin\AppData\Local\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\windows\system32\Wat\npWatWeb.dll

---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Norton Internet Security]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Engine\16.0.0.125\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG12.00.00.01PROFESSIONAL"="10A2E7C9641E32C9F1A84762257C5352BE210E2912CFF73591DDD495E4F7D9C0AA90299AFABC0D6CE1797D4AEA7E6B456324EE7E7680B6E145B85EA8B43C197463D54B97A94B73DE110492E593DCF2E29BB06B62193987D81A403F96BFDC96F989274FDDB49B8F3E459D26FE6658C243BFDD5C63EA4D8F499A6CB05BB95E633C7EFDE86F3602FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74C5D575E7D6A3B9808FEBC9E127BECC74C9DB7CE019D40AA5C9DB7CE019D40AA5C34805AFA9A463793A2AB3C5B535EDC54DCD83532C47C1F3987ACA6EEE18727C61E93A3BB866F0597EFD1D5D36106BBBE6C972875A3DE974041ADCCE507BF5B98C3B287F625A8B0D031E2D5AA9861F6A8B77156E2F31DD94955F5941B832DBA0E03E50CBAE3C5E55B329E9572E4CBA00097018FAA413CFB34C99761821F1B809A2ED9CADC6778A6D5B0EC060066811E35D505374548A26761954C2DD3D3B93A2E885F70F4065D44E7DD5627EBF22727BDB2DFC3E9FA1CD83A266E028AD09E4D434B6B3E5FCD6F66B86088111491C04795DF9B401AFE586326D9FD8164F7C06D54A3170A3CFB120B7551576C99FEBAE1B8055F4C94ACE9EC17052060E4E07EA660B39E3C6F840A7F4EC0B677E0AC632AA73C7B1C6212C8AE7DF01CE5555516586D8FE353A00FFE6A782FC10613BEEA296A96E2F54CF1D03750585DED3ED2AC3400416B5E3D7801C02B93B5FD1E0D6A3C0995ACB55F4041660C6B74EA6F0DCA42A643DE85F44E004F25D674D7B225DA93913014C9EFA63C742CCD94DEFCEADD5C6E898900BCD5D1B525D784A346469B3496D2F63793844B69351916633C0634316DF7DC1DC98530E8716710839167EDF5ACDA5813A3E8D724AED7F5244AAC04443966EE3C1C09372F524DE2AD12AD7808ED1C600ABE9AB2D4228AD1E0066365EB6E24F7D1F03FE9A493C2F06B0978466877DD595BC6938D831E26EEEF915ED2D2ACF0D3E94E3D2CB907F5CF9B7AD6456DEBDAB0D862800208B4113637D409AF7798818421FAC949327F08B832328DC8BE6FC1FB6BFA438A11FD29B0347A81BE2DD77F2FA68360ECA4D71089B23A95855B2D36708EBF7106A094BB9177F19BA89B97871BC139AFA87EEA97C538651B9691D2CEE8502353380C958FA9A4EEDC793C86AB374BAD9C73FD9A1D1272497E7B871196E3D35969C87D25DA7373E780225ED86F9330BC3F2438CB923722BD5515B51E0C06525DE1C2F1E84B89321774F6A3C6CC65717F60FA14E5DCA51FE0E62BE8B2241594EEA495BB8C7F2C3F7DDAAF040BAF84255602174D56586DD114AFE6410EC3FC7C8EC915013D0C3E8FDD8A694A647BEEF3E6577F740DD045B87A61D6357048CAFA029FF7BA2F79492A3E8EA4959803461C19469CEC000986"

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-15 22:58:44
ComboFix-quarantined-files.txt 2010-09-15 20:58
ComboFix2.txt 2010-09-15 20:43
ComboFix3.txt 2010-09-15 18:15

Před spuštěním: Volných bajtů: 10 422 906 880
Po spuštění: Volných bajtů: 10 369 982 464

- - End Of File - - EB26A0FEB5634FA728BC0CE96056E45D

[Rudy]

Log již vypadá čistý. Nastala nějaká změna?

[tresta3]

Ne, pořád se průzkumník restartuje jak blázen, AV mi viry už taky nehlásí, nevim co mu dneska drbnulo...Asi dam přes noc formát, už se ho nedělal ani nepamatuju

[Rudy]

Můžete ještě zkusit obnovu systému k datu, kdy korektně fungoval.

[tresta3]

To jsem zkoušel už taky, ale po čase to začne znova...

[Rudy]

Pak už jen oprava Win7Managerem: http://www.yamicsoft.com/windows7manager/ , nebo z instal. DVD.

[tresta3]

V noci jsem provedl formát, už sem byl vynervovanej a NB si to zasloužil, díky za reakce a tvůj čas

[Rudy]

Rádo se stalo!