VIRY.CZ

Dobrý den seká se mi pc donedávna bylo všechno v pohodě, ale teď cca každou půl hodinu se na chvíly začne sekat u čehokoliv třeba i když si jenom pouštim film nebo brouzdám po netu.
Windowsy mam sedmičky 86x, ty sem přeinstaloval na stejný a pc sem vyčistil od prachu a nic z toho nepomohlo.
Pc je rok starej, hdd necelých 10 měsíců a donedávna běhal krásně.
udělal jsem videa pro představu...seká se to takhle cca každou půl hodinu. Děkuju moc za každou radu

Log z RSIT


Logfile of random's system information tool 1.08 (written by random/random)
Run by Andy at 2010-10-02 19:35:15
Microsoft Windows 7 Ultimate
System drive C: has 12 GB (21%) free of 54 GB
Total RAM: 2046 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:21, on 2.10.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Steam\steam.exe
C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Andy\Desktop\RSIT.exe
C:\Program Files\trend micro\Andy.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Infium] "C:\Program Files\QIP 2010\qip.exe" /autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O23 - Service: LLLZKY - Sysinternals - www.sysinternals.com - C:\Users\Andy\AppData\Local\Temp\LLLZKY.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: UJVU - Sysinternals - www.sysinternals.com - C:\Users\Andy\AppData\Local\Temp\UJVU.exe

--
End of file - 5340 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-06 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"RemoteControl10"=C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-03 87336]
"BDRegion"=C:\Program Files\Cyberlink\Shared files\brs.exe [2010-06-28 75048]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-07-28 9398888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Infium"=C:\Program Files\QIP 2010\qip.exe [2010-08-12 5829584]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-29 386936]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Steam"=C:\Program Files\Steam\Steam.exe [2010-08-25 1242448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2010-10-02 19:35:16 ----D---- C:\Program Files\trend micro
2010-10-02 19:35:15 ----D---- C:\rsit
2010-10-02 05:09:16 ----D---- C:\Windows\Sun
2010-10-01 13:28:51 ----D---- C:\Program Files\CCleaner
2010-10-01 13:26:11 ----SHD---- C:\Config.Msi
2010-09-29 00:28:05 ----D---- C:\ProgramData\Futuremark
2010-09-29 00:22:00 ----RA---- C:\Windows\system32\drivers\Entech.sys
2010-09-29 00:22:00 ----D---- C:\Windows\system32\Futuremark
2010-09-29 00:21:59 ----D---- C:\Program Files\Common Files\Futuremark Shared
2010-09-29 00:21:13 ----D---- C:\Program Files\Futuremark
2010-09-29 00:21:12 ----D---- C:\Windows\45235788142C44BE8A4DDDE9A84492E5.TMP
2010-09-29 00:21:02 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-09-29 00:17:32 ----D---- C:\Users\Andy\AppData\Roaming\InstallShield
2010-09-26 20:19:35 ----D---- C:\Program Files\Xilisoft
2010-09-15 20:43:39 ----D---- C:\Users\Andy\AppData\Roaming\Ashampoo
2010-09-15 20:42:17 ----D---- C:\ProgramData\ashampoo
2010-09-15 20:41:39 ----D---- C:\Program Files\Ashampoo
2010-09-06 17:03:41 ----D---- C:\ProgramData\Sun
2010-09-06 17:03:40 ----D---- C:\Program Files\Common Files\Java
2010-09-06 17:03:25 ----A---- C:\Windows\system32\javaws.exe
2010-09-06 17:03:25 ----A---- C:\Windows\system32\javaw.exe
2010-09-06 17:03:25 ----A---- C:\Windows\system32\java.exe
2010-09-06 17:03:25 ----A---- C:\Windows\system32\deployJava1.dll
2010-09-06 17:03:17 ----D---- C:\Program Files\Java
2010-09-01 08:41:08 ----D---- C:\ProgramData\Raxco
2010-09-01 08:40:33 ----D---- C:\Program Files\Raxco
2010-08-31 19:42:01 ----D---- C:\Program Files\Akordy
2010-08-30 12:27:37 ----D---- C:\Program Files\ATI
2010-08-30 12:27:20 ----D---- C:\Program Files\ATI Technologies
2010-08-30 12:27:00 ----D---- C:\ATI
2010-08-30 12:26:42 ----D---- C:\Windows\system32\RTCOM
2010-08-30 12:26:31 ----A---- C:\Windows\system32\WavesLib.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\SRSWOW.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\SRSHP360.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RtkAPO.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RTEEP32A.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RTEEL32A.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RTEEG32A.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RTEED32A.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RP3DHT32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\RP3DAA32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MBWrp32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MBppld32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MBPPCn32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MBAPO32.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2010-08-30 12:26:31 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-08-30 12:26:30 ----A---- C:\Windows\system32\FMAPO.dll
2010-08-30 12:26:29 ----A---- C:\Windows\system32\AERTARen.dll
2010-08-30 12:26:29 ----A---- C:\Windows\system32\AERTACap.dll
2010-08-30 12:26:28 ----HD---- C:\Program Files\Temp
2010-08-30 12:26:28 ----A---- C:\Windows\RtlExUpd.dll
2010-08-30 12:26:26 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-30 12:24:19 ----A---- C:\Windows\system32\drivers\Rtnicxp.sys
2010-08-30 12:21:28 ----A---- C:\Windows\system32\RTNUninst32.dll
2010-08-30 12:21:28 ----A---- C:\Windows\system32\RtNicProp32.dll
2010-08-30 12:21:28 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2010-08-30 12:21:25 ----D---- C:\Program Files\Realtek
2010-08-30 12:20:30 ----D---- C:\Program Files\Intel
2010-08-30 12:20:30 ----A---- C:\Windows\system32\CSVer.dll
2010-08-30 12:20:23 ----D---- C:\Intel
2010-08-30 12:02:50 ----D---- C:\Windows\system32\system
2010-08-30 12:02:36 ----D---- C:\Program Files\Driver-Soft
2010-08-30 08:51:41 ----A---- C:\Windows\system32\CmdLineExt03.dll
2010-08-30 08:40:28 ----A---- C:\Windows\DIIUnin.pif
2010-08-30 08:40:28 ----A---- C:\Windows\DIIUnin.exe
2010-08-29 21:24:15 ----A---- C:\STFD4A8.tmp
2010-08-29 17:23:14 ----D---- C:\Program Files\Winamp Detect
2010-08-29 17:23:11 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-08-29 17:23:08 ----D---- C:\Users\Andy\AppData\Roaming\Winamp
2010-08-29 17:23:08 ----D---- C:\Program Files\Winamp
2010-08-27 15:35:39 ----A---- C:\STF8571.tmp
2010-08-27 15:23:25 ----A---- C:\STF527E.tmp
2010-08-27 12:40:26 ----A---- C:\Windows\hpdj3500.ini
2010-08-27 10:06:54 ----A---- C:\STF8A29.tmp
2010-08-26 21:08:14 ----A---- C:\STFA4AC.tmp
2010-08-25 22:59:36 ----A---- C:\STF3BA1.tmp
2010-08-22 14:11:19 ----D---- C:\Windows\system32\URTTEMP
2010-08-22 13:50:41 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-08-22 13:50:41 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-08-22 13:50:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-08-22 13:50:38 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-08-22 13:50:37 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-08-22 13:50:36 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-08-22 13:50:35 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\xinput1_3.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\d3dx10.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-08-22 13:50:34 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\xinput1_2.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\xinput1_1.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-08-22 13:50:33 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-08-22 13:50:32 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-08-22 13:50:30 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-08-22 13:50:30 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-08-22 13:50:30 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-08-22 13:50:30 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-08-22 13:50:29 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-08-22 13:50:29 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-08-22 13:50:29 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-08-22 13:50:29 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-08-22 13:50:29 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-08-22 13:42:49 ----D---- C:\Program Files\Common Files\Steam
2010-08-22 13:42:47 ----D---- C:\Program Files\Steam
2010-08-16 21:32:35 ----D---- C:\Users\Andy\AppData\Roaming\NVIDIA
2010-08-16 21:26:01 ----D---- C:\Users\Andy\AppData\Roaming\CyberLink
2010-08-16 21:21:24 ----D---- C:\ProgramData\CyberLink
2010-08-16 21:21:14 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-16 21:21:14 ----D---- C:\Program Files\Common Files\CyberLink
2010-08-16 21:19:27 ----D---- C:\Program Files\CyberLink
2010-08-16 21:19:27 ----A---- C:\Windows\system32\msxml3a.dll
2010-08-16 21:19:27 ----A---- C:\Windows\system32\msvcr71.dll
2010-08-16 21:19:27 ----A---- C:\Windows\system32\msvcp71.dll
2010-08-16 21:19:02 ----D---- C:\ProgramData\Temp
2010-08-16 21:06:16 ----D---- C:\Users\Andy\AppData\Roaming\ArcSoft
2010-08-16 21:03:33 ----A---- C:\Windows\system32\drivers\afc.sys
2010-08-16 21:03:06 ----D---- C:\ProgramData\ArcSoft
2010-08-16 21:03:01 ----D---- C:\Program Files\Common Files\ArcSoft
2010-08-16 21:03:01 ----D---- C:\Program Files\ArcSoft
2010-08-16 11:19:36 ----D---- C:\Program Files\Guitar Pro 5
2010-08-16 11:19:22 ----D---- C:\Users\Andy\AppData\Roaming\WinRAR
2010-08-16 11:19:08 ----D---- C:\Program Files\WinRAR
2010-08-16 10:03:08 ----A---- C:\Windows\system32\msonpmon.dll
2010-08-16 10:02:24 ----D---- C:\Program Files\Microsoft Works
2010-08-16 10:02:07 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-16 10:02:07 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-16 10:01:51 ----D---- C:\Windows\PCHEALTH
2010-08-16 10:01:51 ----D---- C:\Program Files\Microsoft.NET
2010-08-16 10:00:47 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-08-16 10:00:18 ----D---- C:\Program Files\Microsoft Office
2010-08-16 10:00:16 ----D---- C:\ProgramData\Microsoft Help
2010-08-16 09:59:44 ----RHD---- C:\MSOCache
2010-08-16 09:48:08 ----D---- C:\ProgramData\Adobe
2010-08-16 09:48:04 ----D---- C:\Program Files\Common Files\Adobe
2010-08-16 09:48:04 ----D---- C:\Program Files\Adobe
2010-08-16 00:35:14 ----D---- C:\Windows\Panther
2010-08-16 00:24:21 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-08-16 00:21:57 ----D---- C:\Program Files\DAEMON Tools Lite
2010-08-16 00:21:43 ----D---- C:\Users\Andy\AppData\Roaming\DAEMON Tools Lite
2010-08-16 00:21:38 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-08-16 00:21:25 ----D---- C:\ProgramData\NVIDIA
2010-08-16 00:19:31 ----D---- C:\ProgramData\NVIDIA Corporation
2010-08-16 00:19:24 ----D---- C:\Program Files\NVIDIA Corporation
2010-08-16 00:18:39 ----A---- C:\Windows\system32\OpenCL.dll
2010-08-16 00:18:39 ----A---- C:\Windows\system32\nvoglv32.dll
2010-08-16 00:18:39 ----A---- C:\Windows\system32\nvdecodemft.dll
2010-08-16 00:18:39 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2010-08-16 00:18:39 ----A---- C:\Windows\system32\dpinst.exe
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvd3dum.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcuvid.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcuvenc.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcuda.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcompiler.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcod1922.dll
2010-08-16 00:18:38 ----A---- C:\Windows\system32\nvcod.dll
2010-08-16 00:18:36 ----A---- C:\Windows\system32\nvapi.dll
2010-08-16 00:18:33 ----D---- C:\NVIDIA
2010-08-16 00:14:51 ----D---- C:\Program Files\Ask.com
2010-08-16 00:14:25 ----D---- C:\Program Files\The KMPlayer
2010-08-16 00:11:58 ----D---- C:\Program Files\uTorrent
2010-08-16 00:11:44 ----D---- C:\Users\Andy\AppData\Roaming\uTorrent
2010-08-16 00:09:50 ----D---- C:\Program Files\QIP 2010
2010-08-16 00:09:41 ----SHD---- C:\Windows\Installer
2010-08-16 00:09:37 ----D---- C:\ProgramData\Alwil Software
2010-08-16 00:09:37 ----D---- C:\Program Files\Alwil Software
2010-08-16 00:09:05 ----N---- C:\Windows\system32\MpSigStub.exe
2010-08-16 00:05:32 ----D---- C:\Users\Andy\AppData\Roaming\Macromedia
2010-08-16 00:05:32 ----D---- C:\Users\Andy\AppData\Roaming\Adobe
2010-08-16 00:05:23 ----D---- C:\Windows\system32\Macromed
2010-08-15 23:53:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-15 23:50:02 ----D---- C:\Users\Andy\AppData\Roaming\Mozilla
2010-08-15 23:49:58 ----D---- C:\Program Files\Mozilla Firefox
2010-08-15 23:44:58 ----D---- C:\Users\Andy\AppData\Roaming\Identities
2010-08-15 23:44:34 ----SD---- C:\Users\Andy\AppData\Roaming\Microsoft
2010-08-15 23:44:34 ----D---- C:\Users\Andy\AppData\Roaming\Media Center Programs
2010-08-15 23:43:12 ----SHD---- C:\Recovery
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Šablony
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Plocha
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Oblíbené položky
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Nabídka Start
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Dokumenty
2010-08-15 23:43:12 ----SHD---- C:\ProgramData\Data aplikací
2010-08-15 23:38:51 ----D---- C:\Windows\SoftwareDistribution
2010-08-15 23:36:17 ----D---- C:\Windows\Prefetch
2010-08-15 23:36:04 ----ASH---- C:\pagefile.sys
2010-08-15 23:36:03 ----SHD---- C:\System Volume Information
2010-08-15 23:36:03 ----ASH---- C:\hiberfil.sys
2010-07-09 16:20:08 ----A---- C:\Windows\system32\nvmctray.dll
2010-07-09 16:20:06 ----A---- C:\Windows\system32\nvvsvc.exe
2010-07-09 16:20:06 ----A---- C:\Windows\system32\nvsvcr.dll
2010-07-09 16:20:06 ----A---- C:\Windows\system32\nvsvc.dll
2010-07-09 16:20:06 ----A---- C:\Windows\system32\nvshext.dll
2010-07-09 16:20:06 ----A---- C:\Windows\system32\nvcpl.dll

======List of files/folders modified in the last 3 months======

2010-10-02 19:35:17 ----D---- C:\Windows\Temp
2010-10-02 19:35:16 ----RD---- C:\Program Files
2010-10-02 18:42:55 ----D---- C:\Windows\System32
2010-10-02 18:36:33 ----D---- C:\Windows\system32\drivers
2010-10-02 05:09:16 ----D---- C:\Windows
2010-10-01 13:29:21 ----D---- C:\Windows\debug
2010-10-01 13:26:24 ----HD---- C:\ProgramData
2010-10-01 13:26:20 ----D---- C:\Windows\system32\DriverStore
2010-10-01 13:26:20 ----D---- C:\Windows\system32\catroot
2010-10-01 13:26:19 ----D---- C:\Windows\inf
2010-10-01 07:50:29 ----D---- C:\Windows\system32\config
2010-09-29 00:21:59 ----D---- C:\Program Files\Common Files
2010-09-29 00:18:53 ----RSD---- C:\Windows\assembly
2010-09-13 14:59:49 ----D---- C:\Windows\system32\wdi
2010-09-06 14:29:02 ----D---- C:\Windows\system32\catroot2
2010-09-01 08:41:18 ----D---- C:\Windows\winsxs
2010-08-29 17:28:08 ----D---- C:\Program Files\Windows Media Player
2010-08-25 22:41:26 ----RSD---- C:\Windows\Fonts
2010-08-22 14:12:05 ----D---- C:\Windows\Registration
2010-08-22 14:11:19 ----D---- C:\Program Files\Internet Explorer
2010-08-22 13:50:30 ----D---- C:\Windows\Microsoft.NET
2010-08-22 13:50:12 ----D---- C:\Windows\Logs
2010-08-16 21:24:15 ----D---- C:\Windows\system32\Tasks
2010-08-16 21:14:57 ----D---- C:\Windows\ehome
2010-08-16 11:37:33 ----D---- C:\Windows\system32\LogFiles
2010-08-16 10:02:22 ----D---- C:\Program Files\Common Files\microsoft shared
2010-08-16 10:02:17 ----D---- C:\Program Files\MSBuild
2010-08-16 10:02:05 ----D---- C:\Windows\ShellNew
2010-08-16 10:01:51 ----SD---- C:\ProgramData\Microsoft
2010-08-16 10:00:35 ----A---- C:\Windows\win.ini
2010-08-16 10:00:34 ----D---- C:\Program Files\Common Files\System
2010-08-16 00:34:52 ----D---- C:\Windows\Setup
2010-08-16 00:20:12 ----D---- C:\Windows\Help
2010-08-16 00:07:56 ----D---- C:\Windows\system32\restore
2010-08-15 23:59:22 ----D---- C:\Windows\system32\CodeIntegrity
2010-08-15 23:48:34 ----D---- C:\Windows\system32\wbem
2010-08-15 23:44:50 ----SHD---- C:\$Recycle.Bin
2010-08-15 23:44:33 ----RD---- C:\Users
2010-08-15 23:43:12 ----D---- C:\Program Files\Windows NT
2010-08-15 23:42:51 ----D---- C:\Windows\rescache
2010-08-15 23:39:58 ----D---- C:\Windows\system32\sysprep
2010-08-15 23:38:04 ----D---- C:\Windows\system32\drivers\UMDF
2010-08-15 23:36:41 ----D---- C:\Windows\CSC
2010-07-10 00:37:00 ----A---- C:\Windows\system32\nvwgf2um.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-08-16 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/08/16 21:21:23]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-06-28 87536]
R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2010-04-07 135184]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-07-28 3154920]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-23 43008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 axkp7y91;axkp7y91; C:\Windows\system32\drivers\axkp7y91.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2008-04-22 27672]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2010-05-27 1565960]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
R3 PDEngine;PDEngine; C:\Program Files\Raxco\PerfectDisk\PDEngine.exe [2010-05-27 1471752]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 LLLZKY;LLLZKY; C:\Users\Andy\AppData\Local\Temp\LLLZKY.exe [2010-10-01 392064]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2009-07-16 316664]
S3 UJVU;UJVU; C:\Users\Andy\AppData\Local\Temp\UJVU.exe [2010-10-01 514944]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

ComboFix 10-10-01.07 - Andy 02.10.2010 20:06:43.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2046.1219 [GMT 2:00]
Spuštěný z: c:\users\Andy\Desktop\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\system

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-09-02 do 2010-10-02 )))))))))))))))))))))))))))))))
.

2010-10-02 18:09 . 2010-10-02 18:10 -------- d-----w- c:\users\Andy\AppData\Local\temp
2010-10-02 18:09 . 2010-10-02 18:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-10-02 17:35 . 2010-10-02 17:35 -------- d-----w- c:\program files\trend micro
2010-10-02 17:35 . 2010-10-02 17:35 -------- d-----w- C:\rsit
2010-10-02 03:09 . 2010-10-02 03:09 -------- d-----w- c:\windows\Sun
2010-10-01 11:28 . 2010-10-01 11:28 -------- d-----w- c:\program files\CCleaner
2010-09-28 22:28 . 2010-09-28 22:28 -------- d-----w- c:\users\Andy\AppData\Local\AskToolbar
2010-09-28 22:28 . 2010-09-28 22:28 -------- d-----w- c:\programdata\Futuremark
2010-09-28 22:22 . 2010-09-28 22:22 -------- d-----w- c:\windows\system32\Futuremark
2010-09-28 22:22 . 2008-04-22 06:53 27672 ----a-r- c:\windows\system32\drivers\Entech.sys
2010-09-28 22:21 . 2010-09-28 22:21 -------- d-----w- c:\program files\Common Files\Futuremark Shared
2010-09-28 22:21 . 2010-09-28 22:21 -------- d-----w- c:\program files\Futuremark
2010-09-28 22:21 . 2010-09-28 22:21 -------- d-----w- c:\windows\45235788142C44BE8A4DDDE9A84492E5.TMP
2010-09-28 22:21 . 2010-09-28 22:21 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-09-28 22:17 . 2010-09-28 22:17 -------- d-----w- c:\users\Andy\AppData\Roaming\InstallShield
2010-09-26 18:19 . 2010-09-26 18:19 -------- d-----w- c:\program files\Xilisoft
2010-09-15 18:43 . 2010-09-15 18:43 -------- d-----w- c:\users\Andy\AppData\Roaming\Ashampoo
2010-09-15 18:42 . 2010-09-15 18:43 -------- d-----w- c:\users\Andy\AppData\Local\ashampoo
2010-09-15 18:42 . 2010-09-15 18:42 -------- d-----w- c:\programdata\ashampoo
2010-09-15 18:41 . 2010-09-15 18:41 -------- d-----w- c:\program files\Ashampoo
2010-09-08 22:02 . 2010-09-08 22:02 -------- d-----w- c:\users\Andy\dwhelper
2010-09-06 15:03 . 2010-09-06 15:03 -------- d-----w- c:\program files\Common Files\Java
2010-09-06 15:03 . 2010-09-06 15:03 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-09-06 15:03 . 2010-09-06 15:03 -------- d-----w- c:\program files\Java
2010-09-06 12:29 . 2010-09-06 12:29 -------- d-----w- c:\users\Andy\AppData\Local\ESET

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-02 18:05 . 2010-08-15 22:21 -------- d-----w- c:\programdata\NVIDIA
2010-10-02 16:30 . 2010-08-15 22:11 -------- d-----w- c:\users\Andy\AppData\Roaming\uTorrent
2010-10-02 16:09 . 2010-08-22 11:42 -------- d-----w- c:\program files\Steam
2010-10-01 13:38 . 2010-08-15 22:11 -------- d-----w- c:\program files\uTorrent
2010-09-29 20:29 . 2009-07-14 08:44 634370 ----a-w- c:\windows\system32\perfh005.dat
2010-09-29 20:29 . 2009-07-14 08:44 124746 ----a-w- c:\windows\system32\perfc005.dat
2010-09-28 22:21 . 2010-08-16 19:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-01 06:41 . 2010-09-01 06:41 -------- d-----w- c:\programdata\Raxco
2010-09-01 06:41 . 2010-09-01 06:40 -------- d-----w- c:\program files\Raxco
2010-08-31 17:42 . 2010-08-31 17:42 -------- d-----w- c:\program files\Akordy
2010-08-30 10:36 . 2010-08-15 22:09 -------- d-----w- c:\programdata\Alwil Software
2010-08-30 10:27 . 2010-08-30 10:27 -------- d-----w- c:\program files\ATI
2010-08-30 10:27 . 2010-08-30 10:27 -------- d-----w- c:\program files\ATI Technologies
2010-08-30 10:26 . 2010-08-30 10:26 -------- d--h--w- c:\program files\Temp
2010-08-30 10:26 . 2010-08-30 10:21 -------- d-----w- c:\program files\Realtek
2010-08-30 10:26 . 2010-08-30 10:26 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-30 10:20 . 2010-08-30 10:20 -------- d-----w- c:\program files\Intel
2010-08-30 10:02 . 2010-08-30 10:02 -------- d-----w- c:\program files\Driver-Soft
2010-08-30 06:51 . 2010-08-30 06:51 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2010-08-30 06:51 . 2010-08-30 06:40 30114 ----a-w- c:\windows\DIIUnin.dat
2010-08-30 06:40 . 2010-08-30 06:40 94208 ----a-w- c:\windows\DIIUnin.exe
2010-08-30 06:40 . 2010-08-30 06:40 2829 ----a-w- c:\windows\DIIUnin.pif
2010-08-29 19:24 . 2010-08-29 19:24 2652 ----a-w- C:\STFD4A8.tmp
2010-08-29 15:25 . 2010-08-29 15:23 -------- d-----w- c:\users\Andy\AppData\Roaming\Winamp
2010-08-29 15:23 . 2010-08-29 15:23 -------- d-----w- c:\program files\Winamp
2010-08-29 15:23 . 2010-08-29 15:23 -------- d-----w- c:\program files\Winamp Detect
2010-08-29 15:23 . 2010-08-29 15:23 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-08-27 14:05 . 2010-08-15 22:21 -------- d-----w- c:\users\Andy\AppData\Roaming\DAEMON Tools Lite
2010-08-27 13:35 . 2010-08-27 13:35 2652 ----a-w- C:\STF8571.tmp
2010-08-27 13:23 . 2010-08-27 13:23 2652 ----a-w- C:\STF527E.tmp
2010-08-27 08:06 . 2010-08-27 08:06 2652 ----a-w- C:\STF8A29.tmp
2010-08-26 19:08 . 2010-08-26 19:08 2652 ----a-w- C:\STFA4AC.tmp
2010-08-26 06:28 . 2010-08-15 21:47 110008 ----a-w- c:\users\Andy\AppData\Local\GDIPFONTCACHEV1.DAT
2010-08-25 20:59 . 2010-08-25 20:59 2622 ----a-w- C:\STF3BA1.tmp
2010-08-22 12:13 . 2010-08-22 12:13 21630 ----a-r- c:\users\Andy\AppData\Roaming\Microsoft\Installer\{B4D9F24E-C5C2-4B5E-A56D-8E13E0729C64}\_294823.exe
2010-08-22 11:50 . 2010-08-15 22:19 -------- d-----w- c:\program files\NVIDIA Corporation
2010-08-22 11:42 . 2010-08-22 11:42 -------- d-----w- c:\program files\Common Files\Steam
2010-08-16 19:32 . 2010-08-16 19:32 -------- d-----w- c:\users\Andy\AppData\Roaming\NVIDIA
2010-08-16 19:32 . 2010-08-16 19:21 -------- d-----w- c:\programdata\CyberLink
2010-08-16 19:26 . 2010-08-16 19:26 -------- d-----w- c:\users\Andy\AppData\Roaming\CyberLink
2010-08-16 19:21 . 2010-08-16 19:19 -------- d-----w- c:\program files\CyberLink
2010-08-16 19:21 . 2010-08-16 19:21 -------- d-----w- c:\program files\Common Files\CyberLink
2010-08-16 19:18 . 2010-08-16 19:19 505128 ----a-w- c:\windows\system32\msvcp71.dll
2010-08-16 19:18 . 2010-08-16 19:19 353576 ----a-w- c:\windows\system32\msvcr71.dll
2010-08-16 19:18 . 2010-08-16 19:19 29480 ----a-w- c:\windows\system32\msxml3a.dll
2010-08-16 19:18 . 2010-08-16 19:19 53319 ----a-w- c:\programdata\Temp\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\PostBuild.exe
2010-08-16 19:15 . 2010-08-16 19:03 -------- d-----w- c:\program files\ArcSoft
2010-08-16 19:15 . 2010-08-16 19:03 -------- d-----w- c:\program files\Common Files\ArcSoft
2010-08-16 19:07 . 2010-08-16 19:06 -------- d-----w- c:\users\Andy\AppData\Roaming\ArcSoft
2010-08-16 19:05 . 2010-08-16 19:03 2820 ----a-w- c:\programdata\ArcSoft\arcsoft-tme-10-071119-web\acforall.dll
2010-08-16 19:03 . 2010-08-16 19:03 -------- d-----w- c:\programdata\ArcSoft
2010-08-16 09:19 . 2010-08-16 09:19 -------- d-----w- c:\program files\Guitar Pro 5
2010-08-16 08:03 . 2010-08-16 08:00 -------- d-----w- c:\programdata\Microsoft Help
2010-08-16 08:02 . 2010-08-16 08:02 -------- d-----w- c:\program files\Microsoft Works
2010-08-16 08:02 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-08-16 08:01 . 2010-08-16 08:01 -------- d-----w- c:\program files\Microsoft.NET
2010-08-16 08:00 . 2010-08-16 08:00 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-08-16 07:48 . 2010-08-16 07:48 -------- d-----w- c:\program files\Common Files\Adobe
2010-08-15 23:03 . 2010-08-15 22:14 -------- d-----w- c:\program files\The KMPlayer
2010-08-15 22:24 . 2010-08-15 22:21 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-08-15 22:24 . 2010-08-15 22:24 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-08-15 22:21 . 2010-08-15 22:21 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-08-15 22:19 . 2010-08-15 22:19 -------- d-----w- c:\programdata\NVIDIA Corporation
2010-08-15 22:14 . 2010-08-15 22:14 -------- d-----w- c:\program files\Ask.com
2010-08-15 22:10 . 2010-08-15 22:09 -------- d-----w- c:\program files\QIP 2010
2010-08-15 22:09 . 2010-08-15 22:09 -------- d-----w- c:\program files\Alwil Software
2010-08-15 21:50 . 2010-08-15 21:50 0 ----a-w- c:\windows\nsreg.dat
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Plocha
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Oblíbené položky
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Šablony
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Nabídka Start
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Dokumenty
2010-08-15 21:43 . 2010-08-15 21:43 -------- d-sh--we c:\programdata\Data aplikací
2010-08-15 21:38 . 2010-08-15 21:38 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-07-28 16:23 . 2010-08-30 10:26 3154920 ----a-w- c:\windows\system32\drivers\RTKVHDA.sys
2010-07-28 16:23 . 2010-08-30 10:26 1829992 ----a-w- c:\windows\system32\RtkPgExt.dll
2010-07-28 16:23 . 2010-08-30 10:26 64616 ----a-w- c:\windows\system32\RtkCoInst.dll
2010-07-28 16:23 . 2010-08-30 10:26 367208 ----a-w- c:\windows\system32\RtkApoApi.dll
2010-07-28 16:23 . 2010-08-30 10:26 3604584 ----a-w- c:\windows\system32\RtkAPO.dll
2010-07-27 11:54 . 2010-08-30 10:26 1251944 ----a-w- c:\windows\RtlExUpd.dll
2010-07-22 14:37 . 2010-08-30 10:26 175200 ----a-w- c:\windows\system32\AERTACap.dll
2010-07-09 14:20 . 2010-07-09 14:20 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-07-09 14:20 . 2010-07-09 14:20 66664 ----a-w- c:\windows\system32\nvshext.dll
2010-07-09 14:20 . 2010-07-09 14:20 1881704 ----a-w- c:\windows\system32\nvsvcr.dll
2010-07-09 14:20 . 2010-07-09 14:20 1469544 ----a-w- c:\windows\system32\nvsvc.dll
2010-07-09 14:20 . 2010-07-09 14:20 13939816 ----a-w- c:\windows\system32\nvcpl.dll
2010-07-09 14:20 . 2010-07-09 14:20 129640 ----a-w- c:\windows\system32\nvvsvc.exe
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 14:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Infium"="c:\program files\QIP 2010\qip.exe" [2010-08-12 5829584]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-09-29 386936]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Steam"="c:\program files\Steam\Steam.exe" [2010-08-25 1242448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"RemoteControl10"="c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-02 87336]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2010-06-28 75048]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-07-28 9398888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

R3 LLLZKY;LLLZKY;c:\users\Andy\AppData\Local\Temp\LLLZKY.exe [x]
R3 UJVU;UJVU;c:\users\Andy\AppData\Local\Temp\UJVU.exe [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-08-15 691696]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/08/16 21:21];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-06-28 20:50 87536]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]

.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\fxo36hf6.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-10-02 20:11:01
ComboFix-quarantined-files.txt 2010-10-02 18:11

Před spuštěním: Volných bajtů: 11 977 629 696
Po spuštění: Volných bajtů: 11 944 280 064

- - End Of File - - 328182749B81D17A7FF502C39106320B

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Collect::
C:\STF8571.tmp
C:\STF527E.tmp
C:\STF8A29.tmp
C:\STFA4AC.tmp
c:\users\Andy\AppData\Local\Temp\LLLZKY.exe
c:\users\Andy\AppData\Local\Temp\UJVU.exe

Driver::
LLLZKY
UJVU

Folder::
c:\program files\Ask.com

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pustte. CF se spustí a vykoná příkazy ze skriptu.

Tak jsem to udělal, ale problém bohužel přetrvává

Ještě jednou spustte CF tímto skriptem:

Collect::
C:\STFD4A8.tmp
C:\STF3BA1.tmp

Bohužel stále nepomáhá

Log již vypadá čistý. Zkuste obnovu systému k datu, kdy korektně fungoval.

Problém je že nemam zálohu dat a nabízí mi to pouze obnovu z 2.10.2010

Zkuste opravu systému pomocí Win7Manageru: http://www.yamicsoft.com/windows7manager/ .

Bohužel ani to nepomohlo už se obávám že to bude nějaký vadný hw.

Andrew.st píše:Bohužel ani to nepomohlo už se obávám že to bude nějaký vadný hw.

To je možné. Udělejte systémový checkdisk s opravou chyb. Doporučuji předem provést zálohu důležitých dat.

Tak bohužel ani to nepomohlo

Může být vadný hw, poškozený systém, nebo sw kolize. Vzpomenete si, co jste instaloval těsně před tím, než se problém objevil?

No to už je právě nějaký ten pátek zpátky takže si nevzpomenu, ale vim, že sem měl zavirovaný pc tak, že mi ani programy nešli spouštět a spolu s tim se to začalo sekat.Jinak viry jsem smazal, programy mi jdou v pořádku, ale sekání nezmizelo . Pc je stále v záruce tak bude asi nejlepší možností poslat pc na reklamaci