VIRY.CZ

Ahoj
Prosím o kontrolu logu.
Problém: Před nějakým časem jsem spozoroval postupné zpomalení systému. Vypadá to tak jako když hrajete hru na max. detaily a pc Vám to neutáhne. Zpomalí se načítání oken myš jezdí jak zpomalená. Děje se to jak při práci na internetu tak i třeba připsaní. Zkontroloval jsem všechny ovladače ty jsou OK. Registry čistím pravidelně. Pc je staré 5 měsíců. Problém začal asi tak po 2 měsíčním používáni.
Někdy se neobjeví vůbec někdy ihned někdy třeba po hodině práce. Po restartu problém zmizí pak se třeba objeví nebo taky ne. Občas se stane, že dojde i k úplnému zaseknutí do mrtě (málo kdy kdy nejde pc ani restartovat a musím ho vypnout), ale většinou se již nedá pracovat tak PC restartuji.
Děkuji
Viktor
Logfile of random's system information tool 1.08 (written by random/random)
Run by ox at 2011-05-31 18:53:04
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 144 GB (48%) free of 298 GB
Total RAM: 4095 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:53:17, on 31.5.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
C:\Program Files (x86)\AVG\AVG9\avgtray.exe
C:\Program Files (x86)\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\FastStone Capture\FSCapture.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\ox.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5w4531t954
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5w4531t954
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5w4531t954
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: + &Download Express: download this file - C:\Program Files (x86)\Download Express\Add_Url.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - (no file)
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10642 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
"C:\Program Files (x86)\AVG\AVG9\avgchsva.exe"
"C:\Program Files (x86)\AVG\AVG9\avgrsa.exe"
/pipeName=d7193fbe-5f53-431d-9ec2-50e74bd48b1b /coreSdkOptions=30 /logConfFile="C:\ProgramData\avg9\temp\5caf108b-3325-4c21-a664-b7cc4faf4417-254-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG9\" /tempPath="C:\ProgramData\avg9\temp\"
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe" AVGIDSAgent
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe"
"C:\Program Files (x86)\AVG\AVG9\avgfws9.exe"
"C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe"
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe" -runService:MsDepSvc
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe" /StartService
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
WLIDSvcM.exe 2472
"C:\Program Files (x86)\AVG\AVG9\avgam.exe"
"C:\Program Files (x86)\AVG\AVG9\avgnsa.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e714b98f-83a7-448c-a4dd-140ec1c5160a -SystemEventPortName:HostProcess-88d3009a-b963-40f4-b377-fee3402a1523 -IoCancelEventPortName:HostProcess-c1215561-9353-4c83-b4e8-68f6a39081a5 -NonStateChangingEventPortName:HostProcess-7f71327b-74cf-4cce-bd35-0521949f0cb2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bb2a1966-6a04-450a-abb6-7e5b33dcd92f
"C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe" /TUStart /pid:2340
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\Dwm.exe"
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
/pipeName=60bb9341-c308-490a-afb3-7b9ef618e4dd /coreSdkOptions=18 /logConfFile="C:\ProgramData\avg9\temp\605bd030-0229-4fb9-9a8c-667b810a4eda-b8c-oopp.tmp" /loggerName=AVG.NS.Core /tempPath="C:\ProgramData\avg9\temp\"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\AVG\AVG9\avgtray.exe"
"C:\Program Files (x86)\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe"
\??\C:\Windows\system32\conhost.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\FastStone Capture\FSCapture.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5616.8c6f080.880985274 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" "Mozilla.Firefox.4.0.1" -omnijar C:\Program Files (x86)\Mozilla Firefox\omni.jar 5616 \\.\pipe\gecko-crash-server-pipe.5616 plugin
"C:\Users\ox\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2924783212-1197404565-261339847-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2924783212-1197404565-261339847-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll [2011-05-03 2334560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG9\avgssie.dll [2011-05-03 1623392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll [2011-03-18 2471240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-01-21 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll [2011-03-18 2471240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-05 186904]
"fssui"=C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [2010-09-23 884584]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-28 11786344]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeDeluxeAgent]
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2009-09-29 128296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-08-12 261888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecLiveUpdate]
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\ox\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-11 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility]
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2009-08-18 629280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-01-13 6129496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2011-03-01 190808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2009-09-10 349480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie]
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2009-09-29 181480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AVG9_TRAY"=C:\PROGRA~2\AVG\AVG9\avgtray.exe [2011-05-04 2071904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="avgrssta.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - C:\Windows\NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2011-05-31 18:53:04 ----D---- C:\rsit
2011-05-31 18:53:04 ----D---- C:\Program Files\trend micro
2011-05-30 19:11:18 ----D---- C:\Program Files (x86)\AutoMapa EU
2011-05-30 19:07:31 ----A---- C:\AutoMapaSetupLog.txt
2011-05-25 06:05:55 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-05-20 14:58:56 ----A---- C:\Windows\EurekaLog.ini
2011-05-19 19:24:50 ----D---- C:\ProgramData\Skype Extras
2011-05-16 17:50:00 ----D---- C:\Program Files (x86)\Microsoft WebMatrix
2011-05-16 17:49:41 ----D---- C:\Windows\SYSWOW64\1033
2011-05-16 17:49:41 ----D---- C:\Windows\system32\1033
2011-05-16 17:49:41 ----D---- C:\Program Files\Microsoft SQL Server
2011-05-16 17:49:33 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2011-05-16 17:49:25 ----D---- C:\Program Files (x86)\IIS Express
2011-05-16 17:49:08 ----D---- C:\Program Files\IIS
2011-05-16 17:49:08 ----D---- C:\Program Files (x86)\IIS
2011-05-16 17:49:02 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-05-16 17:48:55 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2011-05-16 17:45:02 ----D---- C:\Program Files\Microsoft
2011-05-16 17:45:02 ----D---- C:\Program Files (x86)\Microsoft
2011-05-15 08:30:23 ----D---- C:\Users\ox\AppData\Roaming\translateclient
2011-05-15 08:30:06 ----D---- C:\Program Files (x86)\Translate Client
2011-05-13 15:34:05 ----D---- C:\ProgramData\Google
2011-05-13 08:16:50 ----D---- C:\ProgramData\NCH Software
2011-05-13 08:16:25 ----D---- C:\Program Files (x86)\NCH Software
2011-05-13 08:09:35 ----A---- C:\Windows\SYSWOW64\ImgX4.dll
2011-05-13 08:09:35 ----A---- C:\Windows\Fce32.dll
2011-05-13 08:09:34 ----A---- C:\Windows\SYSWOW64\See32.dll
2011-05-13 08:09:34 ----A---- C:\Windows\SYSWOW64\Fce32.dll
2011-05-11 12:12:26 ----HD---- C:\$AVG
2011-05-11 11:34:02 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2011-05-11 11:34:02 ----A---- C:\Windows\system32\poqexec.exe
2011-05-11 09:20:42 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-05-11 09:20:41 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-05-11 09:20:41 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-05-11 09:20:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-05-11 09:20:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-05-11 09:20:41 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-05-11 09:20:40 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2011-05-11 09:20:40 ----A---- C:\Windows\system32\drivers\usbd.sys
2011-05-11 09:20:40 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-05-09 18:56:47 ----HD---- C:\Windows\Icons
2011-05-09 18:01:33 ----A---- C:\Windows\system32\TURegOpt.exe
2011-05-09 18:01:31 ----A---- C:\Windows\SYSWOW64\uxtuneup.dll
2011-05-09 18:01:31 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2011-05-09 18:01:31 ----A---- C:\Windows\system32\uxtuneup.dll
2011-05-09 18:01:31 ----A---- C:\Windows\system32\authuitu.dll
2011-05-09 18:01:23 ----D---- C:\Users\ox\AppData\Roaming\TuneUp Software
2011-05-09 18:01:20 ----D---- C:\Program Files (x86)\TuneUp Utilities 2011
2011-05-09 18:01:00 ----D---- C:\ProgramData\TuneUp Software
2011-05-09 18:00:56 ----SHD---- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-05-09 11:05:39 ----A---- C:\Users\ox\AppData\Roaming\wss.ini
2011-05-09 11:04:00 ----D---- C:\ProgramData\WebacamSurveyor
2011-05-09 11:03:56 ----D---- C:\Program Files (x86)\Webcam Surveyor
2011-05-04 13:49:28 ----D---- C:\Program Files\WMV9_VCM
2011-05-04 13:48:49 ----D---- C:\Program Files (x86)\iSpy
2011-05-04 13:46:17 ----D---- C:\Users\ox\AppData\Roaming\NCH Software
2011-05-03 17:42:00 ----A---- C:\Windows\system32\avgrssta.dll
2011-05-03 17:40:26 ----A---- C:\Windows\system32\drivers\avgrkx64.sys
2011-05-03 17:40:26 ----A---- C:\Windows\system32\drivers\AVGIDSwa.sys
2011-05-03 17:40:25 ----A---- C:\Windows\system32\drivers\avgtdia.sys
2011-05-03 17:40:20 ----A---- C:\Windows\system32\drivers\avgldx64.sys
2011-05-03 17:40:15 ----A---- C:\Windows\system32\drivers\avgmfx64.sys
2011-05-03 17:40:14 ----D---- C:\Windows\system32\drivers\Avg
2011-05-03 17:40:13 ----D---- C:\ProgramData\AVG Security Toolbar
2011-05-03 17:39:48 ----A---- C:\Windows\system32\drivers\avgfwd6a.sys

======List of files/folders modified in the last 1 months======

2011-05-31 18:53:17 ----D---- C:\Windows\Prefetch
2011-05-31 18:53:16 ----D---- C:\Windows\Temp
2011-05-31 18:53:04 ----RD---- C:\Program Files
2011-05-31 18:51:39 ----D---- C:\Users\ox\AppData\Roaming\FileZilla
2011-05-31 18:16:25 ----D---- C:\Windows\system32\config
2011-05-31 16:58:15 ----D---- C:\Users\ox\AppData\Roaming\Skype
2011-05-31 16:34:31 ----D---- C:\Users\ox\AppData\Roaming\skypePM
2011-05-30 19:18:46 ----D---- C:\Users\ox\AppData\Roaming\uTorrent
2011-05-30 19:11:18 ----RD---- C:\Program Files (x86)
2011-05-29 13:54:51 ----D---- C:\Windows\system32\LogFiles
2011-05-29 03:07:57 ----D---- C:\Windows
2011-05-27 12:27:43 ----SHD---- C:\Windows\Installer
2011-05-27 09:30:08 ----D---- C:\Windows\System32
2011-05-27 09:30:08 ----D---- C:\Windows\inf
2011-05-27 09:30:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-05-26 07:19:51 ----D---- C:\Windows\system32\catroot2
2011-05-25 12:49:07 ----D---- C:\Windows\Tasks
2011-05-25 12:49:07 ----D---- C:\Windows\system32\Tasks
2011-05-25 06:11:15 ----D---- C:\Windows\system32\drivers
2011-05-25 06:11:14 ----D---- C:\Windows\winsxs
2011-05-25 06:11:12 ----SHD---- C:\System Volume Information
2011-05-25 06:05:01 ----D---- C:\Windows\system32\catroot
2011-05-20 14:45:41 ----D---- C:\Windows\SYSWOW64\RTCOM
2011-05-20 14:45:03 ----D---- C:\ProgramData\NVIDIA
2011-05-20 14:40:42 ----HD---- C:\Program Files (x86)\Temp
2011-05-20 14:27:33 ----D---- C:\Windows\SYSWOW64\drivers
2011-05-19 19:24:50 ----HD---- C:\ProgramData
2011-05-19 19:24:40 ----RD---- C:\Program Files (x86)\Skype
2011-05-19 19:24:40 ----D---- C:\ProgramData\Skype
2011-05-19 19:24:40 ----D---- C:\Program Files (x86)\Common Files
2011-05-18 13:58:15 ----D---- C:\Windows\SysWOW64
2011-05-17 22:44:04 ----RSD---- C:\Windows\assembly
2011-05-17 22:44:04 ----D---- C:\Windows\Microsoft.NET
2011-05-17 11:33:22 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-05-16 17:50:15 ----SD---- C:\Users\ox\AppData\Roaming\Microsoft
2011-05-16 17:49:02 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2011-05-15 08:30:08 ----RSD---- C:\Windows\Fonts
2011-05-13 07:16:30 ----D---- C:\Program Files (x86)\The KMPlayer
2011-05-12 16:47:57 ----D---- C:\Windows\debug
2011-05-11 11:40:27 ----D---- C:\Windows\system32\DriverStore
2011-05-11 11:34:26 ----A---- C:\Windows\system32\MRT.exe
2011-05-10 17:14:41 ----D---- C:\Windows\system32\wdi
2011-05-09 19:42:39 ----SHD---- C:\$Recycle.Bin
2011-05-09 19:42:17 ----RD---- C:\Users
2011-05-09 19:28:59 ----HD---- C:\Windows\system32\GroupPolicyUsers
2011-05-09 17:41:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-05-09 17:41:18 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-05-09 17:39:20 ----D---- C:\NVIDIA
2011-05-09 17:14:26 ----D---- C:\Program Files (x86)\Trillian
2011-05-06 18:42:43 ----D---- C:\Program Files (x86)\Opera
2011-05-04 13:18:47 ----D---- C:\Program Files\Common Files\Logishrd
2011-05-04 11:10:12 ----D---- C:\Windows\SYSWOW64\logishrd
2011-05-04 11:10:12 ----D---- C:\Windows\system32\logishrd
2011-05-03 17:39:46 ----D---- C:\ProgramData\avg9
2011-05-02 20:17:11 ----D---- C:\Windows\system32\drivers\etc
2011-05-02 11:22:41 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2011-05-01 08:44:22 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSErHrw7a;AVG9IDSErHr; C:\Windows\System32\Drivers\AVGIDSwa.sys [2011-05-03 27216]
R0 AvgRkx64;avgrkx64.sys; C:\Windows\System32\Drivers\avgrkx64.sys [2011-05-03 56008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2011-05-03 29976]
R1 AvgLdx64;AVG AVI Loader Driver x64; C:\Windows\System32\Drivers\avgldx64.sys [2011-05-03 269904]
R1 AvgMfx64;AVG On-access Scanner Minifilter Driver x64; C:\Windows\System32\Drivers\avgmfx64.sys [2011-05-03 35536]
R1 AvgTdiA;AVG Network Redirector x64; C:\Windows\System32\Drivers\avgtdia.sys [2011-05-06 317520]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-02 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-02 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-02 60464]
R2 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
R3 AVGIDSDriverw7a;AVG9IDSDriver; \??\C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_WIN764\AVGIDSDriver.sys [2011-05-03 132688]
R3 AVGIDSFilterw7a;AVG9IDSFilter; \??\C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_WIN764\AVGIDSFilter.sys [2011-05-03 35920]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y62x64.sys [2009-06-12 287960]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-04-06 2826984]
R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2011-04-01 341856]
R3 LVUVC64;Logitech HD Webcam C270(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2011-04-01 4184672]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-03-03 174184]
R3 nvoclk64;NVIDIA Enthusiasts Platform KDM; C:\Windows\system32\DRIVERS\nvoclk64.sys [2009-09-15 42088]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2011-02-10 11856]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]
S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg9wd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [2011-05-03 308136]
R2 avgfws9;AVG Firewall; C:\Program Files (x86)\AVG\AVG9\avgfws9.exe [2011-05-03 2331544]
R2 AVGIDSAgent;AVG9IDSAgent; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-05-03 5897808]
R2 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2011-02-28 163496]
R2 MsDepSvc;Web Deployment Agent Service; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2011-04-01 67400]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-04-07 1012328]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-03-30 2026304]
R2 UMVPFSrv;UMVPFSrv; C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
R2 UpdateCenterService;Update Center Service; C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe [2009-11-06 282728]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-25 136176]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe [2011-03-18 947528]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-13 182768]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-11 1255736]
S4 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-08-25 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-13 62208]
S4 nTuneService;Performance Service; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [2010-03-22 276584]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-04-08 2218600]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-04-07 378472]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Pro práci s CF budete muset dočasně odinstalovat AVG.

ComboFix 11-05-31.01 - ox 31.05.2011 21:00:07.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4095.2345 [GMT 2:00]
Spuštěný z: c:\users\ox\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\ox\AppData\Roaming\.#
c:\users\ox\AppData\Roaming\Microsoft\Windows\Recent\desktop_2690106.ico
c:\windows\SysWow64\Ijl11.dll
c:\windows\SysWow64\system
c:\windows\SysWow64\vbpng1.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-04-28 do 2011-05-31 )))))))))))))))))))))))))))))))
.
.
2011-05-31 19:06 . 2011-05-31 19:06 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2011-05-31 19:06 . 2011-05-31 19:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-31 16:53 . 2011-05-31 17:14 -------- d-----w- c:\program files\trend micro
2011-05-31 16:53 . 2011-05-31 16:53 -------- d-----w- C:\rsit
2011-05-31 14:56 . 2011-05-31 14:56 -------- d-----w- c:\users\ox\AppData\Local\{6BDF9C7E-B5C2-4AD2-B0F6-19AC644C875C}
2011-05-31 02:55 . 2011-05-31 02:56 -------- d-----w- c:\users\ox\AppData\Local\{2B23AAFD-4C06-4120-B5E3-2294ADC2F5DC}
2011-05-30 17:11 . 2011-05-30 17:11 -------- d-----w- c:\program files (x86)\AutoMapa EU
2011-05-30 13:48 . 2011-05-30 13:48 -------- d-----w- c:\users\ox\AppData\Local\{BE878369-D19F-4BFB-B022-6D096A8E8BC3}
2011-05-30 01:41 . 2011-05-30 01:42 -------- d-----w- c:\users\ox\AppData\Local\{621BBC4B-9F02-4C37-9A30-0BCB53E3FBEA}
2011-05-29 13:12 . 2011-05-29 13:12 -------- d-----w- c:\users\ox\AppData\Local\{6B9A2F18-1D68-4B7E-89CD-92FA36E34B44}
2011-05-29 01:11 . 2011-05-29 01:11 -------- d-----w- c:\users\ox\AppData\Local\{4A94CECF-141C-4779-9F89-9CB8AF74BDEA}
2011-05-28 07:20 . 2011-05-28 07:21 -------- d-----w- c:\users\ox\AppData\Local\{23084A46-9546-4F39-B4E5-5D0B1043F6BF}
2011-05-27 19:20 . 2011-05-27 19:20 -------- d-----w- c:\users\ox\AppData\Local\{94E33916-F0CB-4BB6-96C6-74400344D4E6}
2011-05-27 07:19 . 2011-05-27 07:19 -------- d-----w- c:\users\ox\AppData\Local\{B14DBECB-5650-48E3-A460-06E65267545C}
2011-05-27 06:58 . 2011-05-27 06:58 -------- d-----w- c:\users\ox\AppData\Local\{9ADC59E2-D883-495E-9B10-0EF00A06DF95}
2011-05-26 16:03 . 2011-05-26 16:04 -------- d-----w- c:\users\ox\AppData\Local\{51DF65E3-9576-4A43-BA19-C51B0DFB5258}
2011-05-26 04:03 . 2011-05-26 04:03 -------- d-----w- c:\users\ox\AppData\Local\{2F52B6EF-E39A-42BC-BB56-8C690C9E40CD}
2011-05-25 16:02 . 2011-05-25 16:02 -------- d-----w- c:\users\ox\AppData\Local\{8A1E6A60-3E88-483A-9353-0313379A11BF}
2011-05-25 04:05 . 2011-04-22 22:15 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-25 04:01 . 2011-05-25 04:02 -------- d-----w- c:\users\ox\AppData\Local\{AA751322-3971-4819-989C-2EDDBA10EE2B}
2011-05-24 14:09 . 2011-05-24 14:09 -------- d-----w- c:\users\ox\AppData\Local\{EB36281D-D0B2-4D38-8334-08404F3B53CF}
2011-05-24 02:08 . 2011-05-24 02:08 -------- d-----w- c:\users\ox\AppData\Local\{2C46287E-2932-47F8-9ACD-253C7A2A89DD}
2011-05-23 13:42 . 2011-05-23 13:42 -------- d-----w- c:\users\ox\AppData\Local\{0D01EA2B-60A7-4046-B3AF-2672FB1178DB}
2011-05-23 01:41 . 2011-05-23 01:42 -------- d-----w- c:\users\ox\AppData\Local\{26387A22-7D5A-417A-99AD-3D6604749980}
2011-05-22 13:41 . 2011-05-22 13:41 -------- d-----w- c:\users\ox\AppData\Local\{07F652E3-CC3C-4E0E-93DF-AD060F810877}
2011-05-22 01:40 . 2011-05-22 01:40 -------- d-----w- c:\users\ox\AppData\Local\{68C44C54-1D76-45E4-A79C-9882221C9628}
2011-05-21 07:17 . 2011-05-21 07:17 -------- d-----w- c:\users\ox\AppData\Local\{6234088C-6B36-4F3C-A99E-6CB896A6FB3C}
2011-05-20 19:16 . 2011-05-20 19:16 -------- d-----w- c:\users\ox\AppData\Local\{702C3DEA-6457-4C96-90D4-2D93BE45EE8C}
2011-05-20 07:15 . 2011-05-20 07:16 -------- d-----w- c:\users\ox\AppData\Local\{9F571D01-22F8-4A4C-AF6B-E2583613F7B6}
2011-05-19 17:41 . 2011-05-19 17:41 -------- d-----w- c:\users\ox\AppData\Local\{90F5CD90-3D28-4B41-BA8A-EA6596D530AA}
2011-05-19 17:24 . 2011-05-30 08:56 -------- d-----w- c:\programdata\Skype Extras
2011-05-19 17:24 . 2011-05-19 17:24 -------- d-----w- c:\program files (x86)\Common Files\Skype
2011-05-19 05:40 . 2011-05-19 05:41 -------- d-----w- c:\users\ox\AppData\Local\{594EF734-66E6-455C-8E95-686070262871}
2011-05-18 17:40 . 2011-05-18 17:40 -------- d-----w- c:\users\ox\AppData\Local\{F6BA9C90-FA37-4AEE-A8E7-1D1C08F24106}
2011-05-18 11:58 . 2011-05-18 11:58 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-18 05:39 . 2011-05-18 05:39 -------- d-----w- c:\users\ox\AppData\Local\{959F30DA-E8C3-4A66-90F9-92669D56091B}
2011-05-17 16:39 . 2011-05-17 16:39 -------- d-----w- c:\users\ox\AppData\Local\{76926CEF-B468-4880-9E99-22A2D5C2D1F5}
2011-05-17 04:38 . 2011-05-17 04:39 -------- d-----w- c:\users\ox\AppData\Local\{BA1EA429-7AA7-488B-9F89-52935855A3D8}
2011-05-16 15:50 . 2011-05-16 15:50 -------- d-----w- c:\program files (x86)\Microsoft WebMatrix
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\windows\SysWow64\1033
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\windows\system32\1033
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files\Microsoft SQL Server
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files (x86)\Microsoft SQL Server
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files (x86)\IIS Express
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files\IIS
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files (x86)\IIS
2011-05-16 15:49 . 2011-05-16 15:49 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-05-16 15:48 . 2011-05-16 15:48 -------- d-----w- c:\program files (x86)\Microsoft ASP.NET
2011-05-16 15:45 . 2011-05-16 15:45 -------- d-----w- c:\program files\Microsoft
2011-05-16 15:45 . 2011-05-16 15:45 -------- d-----w- c:\program files (x86)\Microsoft
2011-05-16 04:37 . 2011-05-16 16:38 -------- d-----w- c:\users\ox\AppData\Local\{3C4A2FBD-53D3-4EFD-9469-1E168A17B162}
2011-05-15 16:36 . 2011-05-15 16:36 -------- d-----w- c:\users\ox\AppData\Local\{6E8A3B53-2B15-441E-B73A-DB5DA9033008}
2011-05-15 06:30 . 2011-05-25 21:23 -------- d-----w- c:\users\ox\AppData\Roaming\translateclient
2011-05-15 06:30 . 2011-05-26 01:19 -------- d-----w- c:\program files (x86)\Translate Client
2011-05-15 04:35 . 2011-05-15 04:35 -------- d-----w- c:\users\ox\AppData\Local\{8A64682A-3EAD-4DA6-9908-8FC3F47F0FC0}
2011-05-14 16:34 . 2011-05-14 16:35 -------- d-----w- c:\users\ox\AppData\Local\{A2D9E32A-4964-441C-8C12-35704E2AC21C}
2011-05-14 04:32 . 2011-05-14 04:32 -------- d-----w- c:\users\ox\AppData\Local\{C24D422B-DF20-4C8E-B71C-324CF7B81925}
2011-05-13 16:32 . 2011-05-13 16:32 -------- d-----w- c:\users\ox\AppData\Local\{1C694515-72A5-48C6-8F31-82BEF6E9E769}
2011-05-13 06:16 . 2011-05-22 05:20 -------- d-----w- c:\programdata\NCH Software
2011-05-13 06:16 . 2011-05-22 05:20 -------- d-----w- c:\program files (x86)\NCH Software
2011-05-13 03:24 . 2011-05-13 03:24 -------- d-----w- c:\users\ox\AppData\Local\{86061A30-AB97-4015-A8CB-C3B977DAF58E}
2011-05-12 15:23 . 2011-05-12 15:23 -------- d-----w- c:\users\ox\AppData\Local\{FB298137-B3D1-4765-9288-9AEDE203CDC9}
2011-05-12 15:23 . 2011-05-12 15:23 -------- d-----w- c:\users\ox\AppData\Local\{C405D1E4-5C32-4CE9-B07D-0019784E01C9}
2011-05-12 03:22 . 2011-05-12 03:22 -------- d-----w- c:\users\ox\AppData\Local\{220A56CB-5F73-481B-8881-1D27C5486C33}
2011-05-11 15:21 . 2011-05-11 15:22 -------- d-----w- c:\users\ox\AppData\Local\{7C660258-B784-485B-A74D-6B6983B7A812}
2011-05-11 09:34 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-11 09:34 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-11 07:20 . 2011-04-09 07:02 5562240 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 07:20 . 2011-04-09 06:02 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 07:20 . 2011-04-09 06:02 3912576 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-11 07:20 . 2011-03-25 03:29 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 07:20 . 2011-03-25 03:29 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 07:20 . 2011-03-25 03:29 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 07:20 . 2011-03-25 03:29 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 07:20 . 2011-03-25 03:29 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-05-11 07:20 . 2011-03-25 03:28 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-11 03:21 . 2011-05-11 03:21 -------- d-----w- c:\users\ox\AppData\Local\{A60042A5-8B16-4B5A-B345-7A6FBC8FEE63}
2011-05-10 13:15 . 2011-05-10 13:15 -------- d-----w- c:\users\ox\AppData\Local\{6B2FBE32-BFEA-4A33-80E6-B666400C4C29}
2011-05-10 01:14 . 2011-05-10 01:14 -------- d-----w- c:\users\ox\AppData\Local\{DEF869FF-0C83-4BCB-BE41-8F9D5D54E48F}
2011-05-09 17:42 . 2011-05-31 18:54 -------- d-----w- c:\users\Oxana
2011-05-09 16:56 . 2011-05-09 16:57 -------- d--h--w- c:\windows\Icons
2011-05-09 16:01 . 2011-03-30 17:02 34624 ----a-w- c:\windows\system32\TURegOpt.exe
2011-05-09 16:01 . 2011-03-30 16:57 25920 ----a-w- c:\windows\system32\authuitu.dll
2011-05-09 16:01 . 2011-03-30 16:57 21312 ----a-w- c:\windows\SysWow64\authuitu.dll
2011-05-09 16:01 . 2011-03-30 16:57 36160 ----a-w- c:\windows\system32\uxtuneup.dll
2011-05-09 16:01 . 2011-03-30 16:57 29504 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2011-05-09 16:01 . 2011-05-09 16:51 -------- d-----w- c:\users\ox\AppData\Roaming\TuneUp Software
2011-05-09 16:01 . 2011-05-09 16:04 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2011
2011-05-09 16:01 . 2011-05-09 16:01 -------- d-----w- c:\programdata\TuneUp Software
2011-05-09 16:00 . 2011-05-09 16:00 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-05-09 15:40 . 2011-05-09 15:41 -------- d-----w- c:\users\ox\AppData\Local\NVIDIA Corporation
2011-05-09 13:13 . 2011-05-09 13:13 -------- d-----w- c:\users\ox\AppData\Local\{E0E6B88A-047D-4AC1-B9F3-B38CCCC070CE}
2011-05-09 09:04 . 2011-05-09 14:54 -------- d-----w- c:\programdata\WebacamSurveyor
2011-05-09 09:03 . 2011-05-09 15:30 -------- d-----w- c:\program files (x86)\Webcam Surveyor
2011-05-08 09:04 . 2011-05-08 09:05 -------- d-----w- c:\users\ox\AppData\Local\{0ACBEE15-EC3E-45C9-AD3F-70C5E090154D}
2011-05-07 15:21 . 2011-05-07 15:21 -------- d-----w- c:\users\ox\AppData\Local\{9D8D19BD-C900-4D63-8178-563FCED1434A}
2011-05-04 11:56 . 2011-05-04 11:56 -------- d-----w- c:\users\ox\AppData\Local\www.ispyconnect.com
2011-05-04 11:49 . 2011-05-13 05:38 -------- d-----w- c:\program files\WMV9_VCM
2011-05-04 11:48 . 2011-05-04 11:48 -------- d-----w- c:\program files (x86)\iSpy
2011-05-04 11:46 . 2011-05-22 05:20 -------- d-----w- c:\users\ox\AppData\Roaming\NCH Software
2011-05-04 11:18 . 2011-05-04 11:18 53248 ----a-r- c:\users\ox\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-05-04 10:47 . 2011-05-04 10:47 -------- d-----w- c:\users\ox\AppData\Local\{4D7FE29A-A592-4C55-B4C2-A59338F95AAC}
2011-05-04 10:46 . 2011-05-04 10:46 -------- d-----w- c:\users\ox\Tracing
2011-05-04 10:43 . 2011-05-04 10:43 -------- d-----w- c:\users\ox\AppData\Local\{9CC1A108-7DC5-4F7E-ABE9-D15FD19D35A4}
2011-05-03 04:30 . 2011-04-18 07:15 8802128 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{31BC0621-C651-4E0B-9E70-8F1F3DB688E3}\mpengine.dll
2011-05-02 18:17 . 2011-05-02 18:17 -------- d-----w- c:\users\ox\AppData\Local\Trend Micro
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-14 11:37 . 2011-04-14 11:37 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-04-14 11:37 . 2011-04-14 11:37 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-04-14 11:37 . 2011-04-14 11:37 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-04-14 11:37 . 2011-04-14 11:37 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-04-14 11:37 . 2011-04-14 11:37 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-04-14 11:37 . 2011-04-14 11:37 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-04-14 11:37 . 2011-04-14 11:37 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-04-14 11:37 . 2011-04-14 11:37 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-04-14 11:37 . 2011-04-14 11:37 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-04-14 11:37 . 2011-04-14 11:37 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-04-14 11:37 . 2011-04-14 11:37 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-04-14 11:37 . 2011-04-14 11:37 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-04-14 11:37 . 2011-04-14 11:37 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-04-14 11:37 . 2011-04-14 11:37 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-14 11:37 . 2011-04-14 11:37 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-04-14 11:37 . 2011-04-14 11:37 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-04-14 11:37 . 2011-04-14 11:37 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-04-14 11:37 . 2011-04-14 11:37 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-04-14 11:37 . 2011-04-14 11:37 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-14 11:37 . 2011-04-14 11:37 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-04-14 11:37 . 2011-04-14 11:37 222208 ----a-w- c:\windows\system32\msls31.dll
2011-04-14 11:37 . 2011-04-14 11:37 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-14 11:37 . 2011-04-14 11:37 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-04-14 11:37 . 2011-04-14 11:37 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-04-14 11:37 . 2011-04-14 11:37 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-04-14 11:37 . 2011-04-14 11:37 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-04-14 11:37 . 2011-04-14 11:37 12288 ----a-w- c:\windows\system32\mshta.exe
2011-04-14 11:37 . 2011-04-14 11:37 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-04-14 11:37 . 2011-04-14 11:37 114176 ----a-w- c:\windows\system32\admparse.dll
2011-04-14 11:37 . 2011-04-14 11:37 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-04-14 11:37 . 2011-04-14 11:37 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-14 11:37 . 2011-04-14 11:37 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-04-14 11:37 . 2011-04-14 11:37 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-04-14 11:37 . 2011-04-14 11:37 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-04-14 11:37 . 2011-04-14 11:37 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-14 11:37 . 2011-04-14 11:37 448512 ----a-w- c:\windows\system32\html.iec
2011-04-14 11:37 . 2011-04-14 11:37 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-14 11:37 . 2011-04-14 11:37 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-04-14 11:37 . 2011-04-14 11:37 160256 ----a-w- c:\windows\system32\wextract.exe
2011-04-14 11:37 . 2011-04-14 11:37 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-14 11:37 . 2011-04-14 11:37 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-14 11:37 . 2011-04-14 11:37 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-08 05:14 . 2011-04-22 15:57 8411752 ----a-w- c:\windows\system32\nvwgf2umx.dll
2011-04-08 05:14 . 2011-04-22 15:57 6974056 ----a-w- c:\windows\system32\nvcuda.dll
2011-04-08 05:14 . 2011-04-22 15:57 67176 ----a-w- c:\windows\system32\OpenCL.dll
2011-04-08 05:14 . 2011-04-22 15:57 6299752 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2011-04-08 05:14 . 2011-04-22 15:57 57960 ----a-w- c:\windows\SysWow64\OpenCL.dll
2011-04-08 05:14 . 2011-04-22 15:57 5183080 ----a-w- c:\windows\SysWow64\nvcuda.dll
2011-04-08 05:14 . 2011-04-22 15:57 2893416 ----a-w- c:\windows\system32\nvcuvid.dll
2011-04-08 05:14 . 2011-04-22 15:57 2765928 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2011-04-08 05:14 . 2011-04-22 15:57 2204264 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-04-08 05:14 . 2011-04-22 15:57 2074216 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2011-04-08 05:14 . 2011-04-22 15:57 20700264 ----a-w- c:\windows\system32\nvoglv64.dll
2011-04-08 05:14 . 2011-04-22 15:57 1619048 ----a-w- c:\windows\system32\nvdispco6420140.dll
2011-04-08 05:14 . 2011-04-22 15:57 15227496 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2011-04-08 05:14 . 2011-04-22 15:57 1404008 ----a-w- c:\windows\system32\nvgenco642060.dll
2011-04-08 05:14 . 2011-04-22 15:57 13262184 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-04-08 05:14 . 2011-04-22 15:57 12934248 ----a-w- c:\windows\system32\nvd3dumx.dll
2011-04-08 05:14 . 2011-04-22 15:57 10071656 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2011-04-08 05:14 . 2011-04-22 15:57 2273896 ----a-w- c:\windows\system32\nvapi64.dll
2011-04-08 05:14 . 2011-04-22 15:57 2034280 ----a-w- c:\windows\SysWow64\nvapi.dll
2011-04-08 05:14 . 2011-04-22 15:57 18578536 ----a-w- c:\windows\system32\nvcompiler.dll
2011-04-08 05:14 . 2011-04-22 15:57 13007464 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2011-04-07 21:19 . 2011-04-07 21:19 61032 ----a-w- c:\windows\system32\nvshext.dll
2011-04-07 21:19 . 2011-04-07 21:19 2582120 ----a-w- c:\windows\system32\nvsvcr.dll
2011-04-07 21:19 . 2011-04-07 21:19 117864 ----a-w- c:\windows\system32\nvmctray.dll
2011-04-07 21:19 . 2011-04-07 21:19 1012328 ----a-w- c:\windows\system32\nvvsvc.exe
2011-04-07 21:19 . 2011-04-07 21:19 797288 ----a-w- c:\windows\system32\easyUpdatusAPIU64.dll
2011-04-07 21:19 . 2011-04-07 21:19 6338152 ----a-w- c:\windows\system32\nvcpl.dll
2011-04-07 21:18 . 2011-04-07 21:18 3041384 ----a-w- c:\windows\system32\nvsvc64.dll
2011-04-06 13:33 . 2011-04-27 09:45 2826984 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2011-04-06 08:15 . 2011-04-27 09:45 952320 ----a-w- c:\windows\system32\RCoRes64.dat
2011-04-01 11:06 . 2011-04-01 11:06 228864 ----a-w- c:\windows\system32\Ncs2Setp.dll
2011-04-01 10:55 . 2011-04-01 10:55 854136 ----a-w- c:\windows\system32\ncs2dmix.dll
2011-04-01 10:55 . 2011-04-01 10:55 835192 ----a-w- c:\windows\system32\accesor.dll
2011-04-01 10:32 . 2011-04-01 10:32 217208 ----a-w- c:\windows\system32\ncs2instutility.dll
2011-04-01 10:14 . 2011-04-01 10:14 2562680 ----a-w- c:\windows\system32\ncscolib.dll
2011-04-01 05:10 . 2011-04-01 05:10 539232 ----a-w- c:\windows\SysWow64\LVUI2RC.dll
2011-04-01 05:10 . 2011-04-01 05:10 543328 ----a-w- c:\windows\SysWow64\LVUI2.dll
2011-04-01 05:08 . 2011-04-01 05:08 301664 ----a-w- c:\windows\SysWow64\lvcodec2.dll
2011-04-01 05:07 . 2011-04-01 05:07 4184672 ----a-w- c:\windows\system32\drivers\lvuvc64.sys
2011-04-01 05:07 . 2011-04-01 05:07 559712 ----a-w- c:\windows\system32\LVUIRC64.dll
2011-04-01 05:07 . 2011-04-01 05:07 767584 ----a-w- c:\windows\system32\LVUI64.dll
2011-04-01 05:07 . 2011-04-01 05:07 10877272 ----a-w- c:\windows\SysWow64\LogiDPP.dll
2011-04-01 05:07 . 2011-04-01 05:07 10877272 ----a-w- c:\windows\system32\LogiDPP.dll
2011-04-01 05:07 . 2011-04-01 05:07 102744 ----a-w- c:\windows\SysWow64\LogiDPPApp.exe
2011-04-01 05:07 . 2011-04-01 05:07 102744 ----a-w- c:\windows\system32\LogiDPPApp.exe
2011-04-01 05:06 . 2011-04-01 05:06 331608 ----a-w- c:\windows\SysWow64\DevManagerCore.dll
2011-04-01 05:06 . 2011-04-01 05:06 331608 ----a-w- c:\windows\system32\DevManagerCore.dll
2011-04-01 05:06 . 2011-04-01 05:06 341856 ----a-w- c:\windows\system32\drivers\lvrs64.sys
2011-04-01 05:05 . 2011-04-01 05:05 261728 ----a-w- c:\windows\system32\lvco13251014.dll
2011-04-01 05:05 . 2011-04-01 05:05 172128 ----a-w- c:\windows\system32\lvcod64.dll
2011-04-01 04:56 . 2011-04-01 04:56 39318 ----a-w- c:\windows\system32\Repository.reg
2011-03-31 14:49 . 2011-04-27 09:45 2392168 ----a-w- c:\windows\system32\RtPgEx64.dll
2011-03-31 14:49 . 2011-04-27 09:45 3048552 ----a-w- c:\windows\system32\RtkAPO64.dll
2011-03-24 14:03 . 2011-04-27 09:45 84584 ----a-w- c:\windows\system32\RCoInst64.dll
2011-03-22 22:02 . 2011-03-22 22:02 15192 ----a-w- c:\windows\system32\drivers\iKeyLFT264.dll
2011-03-21 03:27 . 2011-03-21 03:27 161896 ----a-w- c:\windows\system32\drivers\iANSW60e.sys
2011-03-15 13:32 . 2011-04-27 09:45 648808 ----a-w- c:\windows\system32\RtkApi64.dll
2011-03-13 09:01 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-10 13:41 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http:" [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"LWS"=c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-25 136176]
R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
R4 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]
R4 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-12 62208]
R4 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-04-08 2218600]
R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-04-07 378472]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x]
S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [x]
S2 MsDepSvc;Web Deployment Agent Service;c:\program files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2011-04-01 67400]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-03-30 2026304]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y62x64.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 nvoclk64;NVIDIA Enthusiasts Platform KDM;c:\windows\system32\DRIVERS\nvoclk64.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2011-02-10 11856]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-05-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-25 10:49]
.
2011-05-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-25 10:49]
.
2011-05-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2924783212-1197404565-261339847-1000Core.job
- c:\users\ox\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-11 16:57]
.
2011-05-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2924783212-1197404565-261339847-1000UA.job
- c:\users\ox\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-11 16:57]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-10 13:44 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"fssui"="c:\program files (x86)\Windows Live\Family Safety\fsui.exe" [2010-09-22 884584]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://google.cz/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&m=aspire_m3800&r=173601111006pe435v115w4531t954
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: + &Download Express: download this file - c:\program files (x86)\Download Express\Add_Url.htm
IE: Add to Google Photos Screensa&ver
IE: E&xport to Microsoft Excel
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
Name-Space Handler: ftp\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: http\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
Name-Space Handler: https\HIEClickCatcher - {E131C96E-4DDB-11D4-84B8-008048B33DEA} - c:\progra~2\DOWNLO~1\mdpph.dll
FF - ProfilePath - c:\users\ox\AppData\Roaming\Mozilla\Firefox\Profiles\2jowurk0.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
Toolbar-Locked - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\MsDepSvc]
"ImagePath"="\"c:\program files\IIS\Microsoft Web Deploy\MsDepSvc.exe\" -runService:MsDepSvc"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-05-31 21:08:15
ComboFix-quarantined-files.txt 2011-05-31 19:08
.
Před spuštěním: Volných bajtů: 151 070 957 568
Po spuštění: Volných bajtů: 150 593 716 224
.
- - End Of File - - 90EE2E602852FA69637E7E641CDAE927

Několik infikovaných položek CF smazal, zbytek logu vypadá čistý. Nastala nějaká změna?

Zdá se, že se vrátila původní rychlost načítání oken atd. Uvidím za provozu dneska zda se potíže objeví. Pokud ano dám vědět.
Děkuji za pomoc
V.

Nemáte zač!