Zamrzání Explorer.exe

[Dancan]

Zdravím,
mám problém s průzkumníkem. Stále zamrzá a musím pořád ho ručně restartovat. Pomůže mi někdo? DÍKY!!!
Tady je výpis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:53:40, on 1.11.2009
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Spyware Terminator\Spywareterminatorshield.Exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Common Files\PCTV Systems\RemoTerm\remoterm.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe
C:\Program Files\DAEMON Tools Lite\DTLiteShellHlp.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\explorer.exe
C:\totalcmd\TOTALCMD.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\explorer.exe
C:\Users\Tatínek\Desktop\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AsusStartupHelp] C:\Program Files\ASUS\AASP\1.00.17\AsRunHelp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [C6501Sound] RunDll32 C6501.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" /S
O4 - HKLM\..\Run: [RivaTuner] "C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" /T
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [RemoTerm.exe] C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: AnyDATA NetWork – zástupce.lnk = ?
O4 - Global Startup: Vyhledat aktualizace.lnk = C:\Program Files\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 3188160479
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{981CA828-CA00-4108-8DA3-E74D64F0928F}: NameServer = 160.218.10.200 160.218.43.200
O17 - HKLM\System\CS1\Services\Tcpip\..\{981CA828-CA00-4108-8DA3-E74D64F0928F}: NameServer = 160.218.10.200 160.218.43.200
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 8978 bytes

[facility]

Pre istotu ... http://www.virustotal.com/cs/

vloz tam co je v "code"..a odosli ....pockaj na analizu?

Kód: Vybrat vše

 C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe

-mimo ine toho terminatora nahrad spybotom ....
-win sidebarom by som si nezatazoval start a beh systemu....
-DAEMON Tools osobne spustam manualne ked potrebujem....u startu zbytocne zatazuje....

kcomu ti je Yahoo Toolbar ? je to zbytoce....

fixni

Kód: Vybrat vše

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)

Stahni si http://www.eset.cz/eset-online-skener
preskenuj system...

[Dancan]

Pre istotu ... http://www.virustotal.com/cs/

vloz tam co je v "code"..a odosli ....pockaj na analizu?

Kód: Vybrat vše

 C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe

-mimo ine toho terminatora nahrad spybotom ....
-win sidebarom by som si nezatazoval start a beh systemu....
-DAEMON Tools osobne spustam manualne ked potrebujem....u startu zbytocne zatazuje....

kcomu ti je Yahoo Toolbar ? je to zbytoce....

fixni

Kód: Vybrat vše

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)

Stahni si http://www.eset.cz/eset-online-skener
preskenuj system...

Projel jsem to esetem a co bys řekl? Byl tam Tady je report:

C:\System Volume Information\_restore{787D658C-3D9E-4B9A-A103-6516A4369D1A}\RP10\A0000270.dll Win32/Adware.HotBar aplikace vylé?en smazáním - ulo?en do karantény
C:\System Volume Information\_restore{787D658C-3D9E-4B9A-A103-6516A4369D1A}\RP10\A0000271.dll Win32/Adware.180Solutions aplikace vylé?en smazáním - ulo?en do karantény
C:\System Volume Information\_restore{787D658C-3D9E-4B9A-A103-6516A4369D1A}\RP10\A0000272.dll Win32/Adware.HotBar aplikace vylé?en smazáním - ulo?en do karantény
C:\Users\Tatínek\Downloads\Setup(3).exe Win32/Adware.180Solutions aplikace vylé?en smazáním - ulo?en do karantény
D:\Hry\vietcong 2\Vietcong 2 Cracky\vietcong2.exe pravd?podobn? varianta infiltrace Win32/Obfuscated trojský k?? vylé?en smazáním - ulo?en do karantény
F:\Instal\registrysmart\snd.nfo.viewer.exe pravd?podobn? varianta infiltrace Win32/Agent trojský k?? vylé?en smazáním - ulo?en do karantény
F:\Instal\UPM\upm.dll pravd?podobn? varianta infiltrace Win32/Agent trojský k?? vylé?en smazáním - ulo?en do karantény
F:\Instal\UPM\upm.exe pravd?podobn? varianta infiltrace Win32/Genetik trojský k?? vylé?en smazáním - ulo?en do karantény

Jenže to nepomohlo Pořád zamrzá.

PS: Vyměnil jsem Terminátora za spybot. Už jednou jsem ho používal Se sidebarem a s daemonem jsi měl pravdu. Vyhodil jsem je ze spouštění při startu. A Yahoo... škoda mluvit. Ani sem se s nim nestihl rozloučit

[facility]

Je mozne ze je poskodene/zmenene jadro operacneho systemu...
no co spust ...ctrl+shift+esc a hladaj proces neco ako "cmd.exe"ak to tam bude tak ukonci ten proces....je to asi to jadro problemu....
Odporucam ti skusit nabotovat z instal DVD a dat opravit system ...bude potreba ak je to origo... serial alebo inak po oprave spustit system v nudzovom rezime a tak ho znovu aktivovat ...
bude to trvat mozna dlchsie ako format a nova instalace...ale zachranis si terajsi system z programami atd...

[zombux]

použil bych ComboFix

[Dancan]

Posílám výpis

ComboFix 09-11-01.04 - Tatínek 02.11.2009 19:44.1.2 - NTFSx86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2046.1178 [GMT 1:00]
Spuštěný z: c:\users\Tatínek\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1229 [VPS 081212-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: avast! antivirus 4.8.1229 [VPS 081212-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-51003140-4199384537-3980697693-500

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-10-02 do 2009-11-02 )))))))))))))))))))))))))))))))
.

2009-11-02 18:53 . 2009-11-02 18:53 -------- d-----w- c:\users\Maminka\AppData\Local\temp
2009-11-02 18:53 . 2009-11-02 18:53 -------- d-----w- c:\users\Filip\AppData\Local\temp
2009-11-01 13:00 . 2009-11-01 13:00 -------- d-----w- c:\program files\ESET
2009-11-01 12:28 . 2009-11-01 13:26 -------- d-----w- C:\rsit
2009-10-31 19:41 . 2009-10-31 19:45 -------- d-----w- c:\program files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
2009-10-31 16:43 . 2009-10-31 16:43 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2009-10-31 13:14 . 2009-10-31 13:14 -------- d-----w- c:\program files\Common Files\Apple
2009-10-31 13:09 . 2009-10-31 13:11 -------- d-----w- c:\program files\QuickTime
2009-10-31 12:40 . 2009-10-31 12:41 -------- d-----w- c:\program files\Apple Software Update
2009-10-31 10:08 . 2009-10-31 10:56 -------- d-----w- c:\programdata\DAEMON Tools Lite
2009-10-31 10:08 . 2009-10-31 10:59 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2009-10-31 10:07 . 2009-10-31 10:59 -------- d-----w- c:\program files\DAEMON Tools Lite
2009-10-31 08:21 . 2009-10-31 08:21 -------- d-----w- c:\programdata\FreeDownloadManager.ORG
2009-10-31 08:21 . 2009-10-31 08:22 -------- d-----w- c:\program files\Free Download Manager
2009-10-31 07:49 . 2009-10-31 07:49 -------- d-----w- c:\program files\XviD
2009-10-30 16:34 . 2005-09-30 04:52 13056 ----a-w- c:\windows\system32\drivers\nvnetbus.sys
2009-10-30 16:34 . 2005-09-30 04:52 301312 ----a-w- c:\windows\system32\drivers\nvnrm.sys
2009-10-30 16:34 . 2005-09-30 04:51 9728 ----a-w- c:\windows\system32\bdco1ins.dll
2009-10-30 16:34 . 2005-09-30 04:51 9728 ----a-w- c:\windows\system32\bdco1.dll
2009-10-30 16:34 . 2005-09-29 16:24 34304 ----a-w- c:\windows\system32\nvconrm.dll
2009-10-30 16:34 . 2005-09-30 04:51 222464 ----a-w- c:\windows\system32\drivers\nvsnpu.sys
2009-10-30 07:08 . 2009-10-30 07:08 112392 ----a-w- c:\users\Filip\AppData\Local\GDIPFONTCACHEV1.DAT
2009-10-29 18:37 . 2009-10-29 18:37 -------- d-----w- c:\program files\PlayReady
2009-10-29 18:06 . 2009-10-29 18:11 -------- d-----w- c:\program files\Common Files\PCTV Systems
2009-10-29 18:06 . 2009-10-29 18:06 -------- d-----w- c:\program files\PCTV Systems
2009-10-29 18:04 . 2009-10-29 18:13 -------- d-----w- c:\programdata\PCTV Systems
2009-10-29 17:57 . 2009-10-29 17:57 -------- d-----w- c:\programdata\UAB
2009-10-29 17:04 . 2001-11-23 17:08 712704 ----a-w- c:\windows\system\a3d.dll
2009-10-29 17:04 . 2001-11-23 17:08 712704 ----a-w- c:\windows\system\c6501a3d.dll
2009-10-29 17:04 . 2006-06-27 19:54 32768 ----a-w- c:\windows\system32\c6501prop.dll
2009-10-29 17:03 . 2006-10-06 10:47 319968 ----a-w- c:\windows\difxapi.dll
2009-10-29 17:03 . 2007-01-16 20:49 65536 ----a-w- c:\windows\VMix.dll
2009-10-29 17:03 . 2007-04-13 19:49 1307136 ----a-w- c:\windows\system32\drivers\c6501.sys
2009-10-28 20:06 . 1994-12-06 01:30 12800 ----a-w- c:\windows\system\WING32.DLL
2009-10-28 19:59 . 2009-10-28 19:59 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-10-28 12:08 . 2009-11-01 13:05 -------- d-----w- c:\program files\WinClamAVShield
2009-10-28 08:46 . 2009-10-28 11:57 -------- d-----w- c:\program files\Enigma Software Group
2009-10-27 23:30 . 2009-10-27 23:30 -------- d-----w- c:\program files\NVIDIA Corporation
2009-10-27 23:02 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll
2009-10-27 22:43 . 2009-10-27 22:43 -------- d-----w- c:\program files\Common Files\Skype
2009-10-27 22:24 . 2009-10-02 04:06 728648 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-10-27 22:24 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\system32\CertEnroll.dll
2009-10-27 22:24 . 2009-08-19 07:20 442920 ----a-w- c:\windows\system32\winresume.exe
2009-10-27 22:24 . 2009-08-19 07:20 507568 ----a-w- c:\windows\system32\winload.exe
2009-10-27 22:24 . 2009-08-03 05:35 2613248 ----a-w- c:\windows\explorer.exe
2009-10-27 22:24 . 2009-07-30 16:29 108544 ----a-w- c:\windows\system32\t2embed.dll
2009-10-27 22:24 . 2009-07-30 16:27 71168 ----a-w- c:\windows\system32\fontsub.dll
2009-10-27 22:24 . 2009-08-29 06:54 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2009-10-27 22:24 . 2009-07-30 04:44 293888 ----a-w- c:\windows\system32\atmfd.dll
2009-10-27 22:20 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll
2009-10-27 21:35 . 2009-10-29 19:59 -------- d-----w- c:\windows\system32\wbem\Performance
2009-10-27 20:59 . 2009-10-27 20:59 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2009-10-27 20:24 . 2009-10-27 20:24 -------- d-----w- c:\windows\system32\URTTEMP
2009-10-27 20:24 . 2009-11-01 10:11 -------- d-sh--w- c:\windows\Installer
2009-10-27 20:21 . 2006-08-30 05:38 253952 ----a-r- c:\windows\system32\c6501rm.exe
2009-10-27 20:21 . 2006-06-27 06:54 32768 ----a-r- c:\windows\system32\c6501p.dll
2009-10-27 20:21 . 2005-12-26 09:23 53248 ----a-r- c:\windows\system32\c6501rm.dll
2009-10-27 20:21 . 2001-11-23 04:08 712704 ----a-r- c:\windows\system32\c6501a3d.dll
2009-10-27 20:21 . 2001-11-23 04:08 712704 ----a-r- c:\windows\system32\a3d.dll
2009-10-27 20:21 . 2009-10-27 20:21 -------- d-----w- c:\programdata\Hewlett-Packard
2009-10-27 20:21 . 2009-10-31 18:12 -------- d-----w- c:\program files\Common Files\logishrd
2009-10-27 20:16 . 2009-10-27 21:31 -------- d-----w- c:\windows\Panther
2009-10-27 20:15 . 2005-05-02 11:55 64896 ----a-r- c:\windows\system32\drivers\adusbser65.sys
2009-10-27 20:15 . 2005-05-02 11:55 64896 ----a-r- c:\windows\system32\drivers\adusbmdm65.sys
2009-10-27 20:14 . 2005-08-18 08:52 289792 ----a-r- c:\windows\system32\idecoins.dll
2009-10-27 20:14 . 2005-08-18 08:52 289792 ----a-r- c:\windows\system32\idecoi.dll
2009-10-27 20:14 . 2005-08-18 08:52 93568 ----a-r- c:\windows\system32\drivers\nvata.sys
2009-10-27 20:14 . 2005-08-03 05:52 33280 ----a-r- c:\windows\system32\NVCOI.DLL
2009-10-27 20:01 . 2009-10-27 21:15 -------- d-----w- C:\$WINDOWS.~Q
2009-10-27 16:52 . 2009-10-27 20:40 -------- d-----w- c:\program files\Windows Easy Transfer 7
2009-10-27 15:25 . 2009-10-27 20:28 -------- d-----w- c:\program files\Ashampoo
2009-10-25 19:06 . 2009-10-27 20:43 -------- d-----w- c:\windows\system32\SPReview
2009-10-24 07:24 . 2009-10-27 20:42 -------- d-----w- c:\windows\CheckSur
2009-10-23 15:46 . 2009-10-27 20:43 -------- d-----w- c:\windows\system32\EventProviders
2009-10-14 17:18 . 2009-10-27 20:55 -------- d-----w- c:\users\Maminka\AppData\Roaming\Zoner
2009-10-13 16:01 . 2009-10-28 19:51 -------- d-----w- c:\programdata\Norton
2009-10-13 16:01 . 2009-10-27 20:42 -------- d-----w- c:\programdata\NortonInstaller
2009-10-12 16:46 . 2009-10-12 16:46 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-12 16:39 . 2009-10-27 20:43 -------- d-----w- c:\windows\system32\Adobe
2009-10-11 09:24 . 2009-10-27 20:54 -------- d-----w- c:\users\Filip\AppData\Roaming\Zoner
2009-10-11 07:13 . 2009-10-27 20:40 -------- d-----w- c:\program files\VideoLAN

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-02 17:04 . 2008-04-08 19:55 -------- d-----w- c:\programdata\NVIDIA
2009-11-02 17:04 . 2009-10-27 20:21 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs
2009-11-01 15:19 . 2008-02-16 17:22 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2009-11-01 14:57 . 2008-02-16 17:22 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-11-01 11:49 . 2008-02-22 15:54 -------- d-----w- c:\program files\Zaklínač
2009-11-01 10:10 . 2008-04-11 15:54 -------- d-----w- c:\program files\Common Files\LightScribe
2009-10-31 18:42 . 2009-03-27 17:40 -------- d-----w- c:\program files\Vietcong2
2009-10-31 18:39 . 2008-03-15 17:43 -------- d-----w- c:\program files\THQ
2009-10-31 18:14 . 2008-02-16 17:27 -------- d-----w- c:\program files\DivX
2009-10-31 16:39 . 2008-02-16 15:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-10-31 16:39 . 2008-09-27 09:54 -------- d-----w- c:\program files\DOOM 3
2009-10-31 16:13 . 2008-05-11 12:13 -------- d-----w- c:\program files\EA Games
2009-10-31 15:40 . 2008-04-13 14:25 -------- d-----w- c:\program files\Warcraft III
2009-10-31 13:49 . 2008-04-16 15:48 -------- d-----w- c:\program files\Call of Duty 2
2009-10-31 12:15 . 2009-05-13 16:14 -------- d-----w- c:\program files\Serials 2005
2009-10-31 12:13 . 2008-02-16 15:56 -------- d-----w- c:\program files\ASUS
2009-10-31 12:12 . 2008-03-19 19:25 -------- d-----w- c:\program files\nLite
2009-10-31 10:58 . 2008-03-25 17:02 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-10-31 08:55 . 2009-03-28 13:24 -------- d-----w- c:\programdata\NFS Underground
2009-10-31 08:42 . 2008-02-20 16:14 110920 ----a-w- c:\windows\system32\GDIPFONTCACHEV1.DAT
2009-10-31 08:03 . 2008-02-16 18:12 -------- d-----w- c:\program files\Electronic Arts
2009-10-31 07:49 . 2008-02-16 17:14 -------- d-----w- c:\program files\AutoGK
2009-10-31 07:48 . 2008-02-16 17:15 -------- d-----w- c:\program files\AviSynth 2.5
2009-10-29 19:59 . 2009-07-14 08:44 651532 ----a-w- c:\windows\system32\perfh005.dat
2009-10-29 19:59 . 2009-07-14 08:44 132590 ----a-w- c:\windows\system32\perfc005.dat
2009-10-29 17:46 . 2008-03-01 12:19 -------- d-----w- c:\program files\Pinnacle
2009-10-28 13:41 . 2009-10-28 13:41 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2009-10-27 23:29 . 2008-02-16 18:11 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-10-27 23:29 . 2008-02-16 18:11 -------- d-----w- c:\program files\AGEIA Technologies
2009-10-27 22:43 . 2008-02-16 17:10 -------- d-----r- c:\program files\Skype
2009-10-27 22:43 . 2008-02-16 17:10 -------- d-----w- c:\programdata\Skype
2009-10-27 21:33 . 2009-10-27 21:33 32 ----a-w- c:\programdata\ezsid.dat
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Plocha
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Oblíbené položky
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Šablony
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Nabídka Start
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Dokumenty
2009-10-27 21:31 . 2009-10-27 21:31 -------- d-sh--we c:\programdata\Data aplikací
2009-10-27 21:12 . 2008-04-08 18:55 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-27 20:59 . 2009-07-14 04:52 -------- d-----w- c:\program files\Microsoft Games
2009-10-27 20:55 . 2008-12-18 16:55 -------- d-----w- c:\users\Maminka\AppData\Roaming\Teleca
2009-10-27 20:55 . 2008-12-18 16:54 -------- d-----w- c:\users\Maminka\AppData\Roaming\Sony Ericsson
2009-10-27 20:55 . 2008-06-22 11:41 -------- d-----w- c:\users\Maminka\AppData\Roaming\Ubisoft
2009-10-27 20:55 . 2008-04-30 05:58 -------- d-----w- c:\users\Maminka\AppData\Roaming\skypePM
2009-10-27 20:55 . 2008-04-30 05:55 -------- d-----w- c:\users\Maminka\AppData\Roaming\Skype
2009-10-27 20:55 . 2008-02-17 07:05 -------- d-----w- c:\users\Maminka\AppData\Roaming\Windows Desktop Search
2009-10-27 20:55 . 2008-02-17 07:05 -------- d-----w- c:\users\Maminka\AppData\Roaming\Nero
2009-10-27 20:55 . 2009-03-22 06:13 -------- d-----w- c:\users\Maminka\AppData\Roaming\FlashGet
2009-10-27 20:55 . 2009-02-24 09:08 -------- d-----w- c:\users\Maminka\AppData\Roaming\DisplayTune
2009-10-27 20:55 . 2008-09-29 14:11 -------- d-----w- c:\users\Maminka\AppData\Roaming\DivX
2009-10-27 20:55 . 2008-04-04 10:54 -------- d-----w- c:\users\Maminka\AppData\Roaming\CyberLink
2009-10-27 20:55 . 2008-03-12 17:04 -------- d-----w- c:\users\Maminka\AppData\Roaming\ICQ
2009-10-27 20:42 . 2009-05-07 13:14 -------- d-----w- c:\programdata\vsosdk
2009-10-27 20:42 . 2008-12-12 17:05 -------- d-----w- c:\programdata\Teleca
2009-10-27 20:42 . 2008-07-04 15:26 -------- d-----w- c:\programdata\WindowsSearch
2009-10-27 20:42 . 2008-06-14 10:05 -------- d-----w- c:\programdata\Ubisoft
2009-10-27 20:42 . 2008-02-19 18:46 -------- d-----w- c:\programdata\Symantec
2009-10-27 20:42 . 2008-02-16 19:18 -------- d-----w- c:\programdata\Sony Ericsson
2009-10-27 20:42 . 2009-01-28 17:08 -------- d-----w- c:\programdata\Sony
2009-10-27 20:42 . 2008-03-01 12:16 -------- d-----w- c:\programdata\Pinnacle
2009-10-27 20:42 . 2008-08-25 17:28 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2009-10-27 20:42 . 2008-03-19 21:23 -------- d-----w- c:\programdata\Microsoft Corporation
2009-10-27 20:42 . 2008-02-16 20:22 -------- d-----w- c:\programdata\Nero
2009-10-27 20:42 . 2008-02-16 20:14 -------- d-----w- c:\programdata\Microsoft Help
2009-10-27 20:41 . 2009-02-14 07:59 -------- d-----w- c:\programdata\LogiShrd
2009-10-27 20:41 . 2008-12-21 18:13 -------- d-----w- c:\programdata\ICQ
2009-10-27 20:41 . 2008-04-11 17:55 -------- d-----w- c:\programdata\LightScribe
2009-10-27 20:41 . 2009-03-25 17:59 -------- d-----w- c:\programdata\Electronic Arts
2009-10-27 20:41 . 2008-04-19 11:18 -------- d-----w- c:\programdata\Ahead
2009-10-27 20:41 . 2008-02-16 17:19 -------- d-----w- c:\programdata\Apple Computer
2009-10-27 20:41 . 2008-02-16 17:19 -------- d-----w- c:\programdata\Apple
2009-10-27 20:41 . 2008-02-16 15:47 -------- d-sh--w- c:\programdata\DRM
2009-10-27 20:41 . 2008-02-16 16:32 -------- d-----w- c:\program files\Zoner
2009-10-27 20:39 . 2008-03-01 09:53 -------- d-----w- c:\program files\Software602
2009-10-27 20:39 . 2009-03-07 16:59 -------- d-----w- c:\program files\Sierra
2009-10-27 20:39 . 2009-02-14 16:01 -------- d-----w- c:\program files\Rockstar Games
2009-10-27 20:38 . 2008-07-19 14:58 -------- d-----w- c:\program files\RivaTuner v2.09
2009-10-27 20:38 . 2008-03-15 17:52 -------- d-----w- c:\program files\rapget
2009-10-27 20:37 . 2009-03-08 15:01 -------- d-----w- c:\program files\Nival Interactive
2009-10-27 20:37 . 2008-02-16 20:22 -------- d-----w- c:\program files\Nero
2009-10-27 20:37 . 2008-06-13 17:01 -------- d-----w- c:\program files\MyHeritage
2009-10-27 20:37 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2009-10-27 20:37 . 2008-03-19 17:58 -------- d-----w- c:\program files\MSXML 6.0
2009-10-27 20:37 . 2008-02-16 16:16 -------- d-----w- c:\program files\My Company Name
2009-10-27 20:37 . 2009-05-12 15:21 -------- d-----w- c:\program files\Mpresent
2009-10-27 20:37 . 2008-03-19 17:58 -------- d-----w- c:\program files\Microsoft Silverlight
2009-10-27 20:37 . 2008-02-16 20:17 -------- d-----w- c:\program files\Microsoft Works
2009-10-27 20:37 . 2008-02-16 20:16 -------- d-----w- c:\program files\Microsoft.NET
2009-10-27 20:36 . 2009-02-16 17:30 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-10-27 20:35 . 2009-01-24 08:32 -------- d-----w- c:\program files\Microsoft
2009-10-27 20:35 . 2008-02-16 17:16 -------- d-----w- c:\program files\MediaCoder
2009-10-27 20:35 . 2008-02-16 15:48 -------- d-----w- c:\program files\microsoft frontpage
2009-10-27 20:35 . 2009-03-07 18:13 -------- d-----w- c:\program files\Mafia
2009-10-27 20:35 . 2009-02-14 08:22 -------- d-----w- c:\program files\Logitech
2009-10-27 20:35 . 2008-02-16 20:11 -------- d-----w- c:\program files\Knights Of The Temple
2009-10-27 20:35 . 2008-02-16 16:27 -------- d-----w- c:\program files\KYE
2009-10-27 20:35 . 2008-04-21 16:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-10-27 20:35 . 2008-02-16 16:40 -------- d-----w- c:\program files\Java
2009-10-27 20:35 . 2008-12-21 18:13 -------- d-----w- c:\program files\ICQ6Toolbar
2009-10-27 20:35 . 2008-12-21 18:11 -------- d-----w- c:\program files\ICQ6.5
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2009-07-14 144384]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]
"Free Download Manager"="c:\program files\Free Download Manager\fdm.exe" [2009-01-31 3399727]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-07-04 161064]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-12 149280]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-09-27 13949544]
"RivaTunerStartupDaemon"="c:\program files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" [2009-08-22 24576]
"RivaTuner"="c:\program files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" [2009-08-22 24576]

c:\users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]

c:\users\Maminka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]

c:\users\Tatˇnek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Vyhledat aktualizace.lnk - c:\program files\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe [2009-4-17 238864]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" /hide

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [5.4.2008 9:20 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [5.4.2008 9:20 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [8.4.2008 22:12 53328]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [1.11.2009 15:41 1153368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [27.9.2009 16:48 240232]
R3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501);c:\windows\System32\drivers\adusbmdm65.sys [27.10.2009 21:15 64896]
R3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501);c:\windows\System32\drivers\adusbser65.sys [27.10.2009 21:15 64896]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\System32\drivers\c6501.sys [29.10.2009 18:03 1307136]
R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [3.4.2007 9:43 1131136]
S2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE [30.3.2009 15:28 1533808]
S3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\System32\drivers\3xHybrid.sys [13.2.2008 17:22 1121536]
S3 96EW;96EW Filter;c:\windows\System32\drivers\96EW.sys [29.5.2009 15:38 20480]
S3 fssfltr;fssfltr;c:\windows\System32\drivers\fssfltr.sys [31.3.2009 19:31 55280]
S3 fsssvc;Windows Live Zabezpečení rodiny;c:\program files\Windows Live\Family Safety\fsssvc.exe [6.2.2009 17:08 533360]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\System32\drivers\s0017mdfl.sys [28.1.2009 17:52 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\System32\drivers\s0017mdm.sys [28.1.2009 17:52 122152]

--- Ostatní služby/ovladače v paměti ---

*NewlyCreated* - PROCEXP113
*Deregistered* - LVPr2Mon
*Deregistered* - PROCEXP113

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Obsah adresáře 'Naplánované úlohy'

2009-11-02 c:\windows\Tasks\User_Feed_Synchronization-{D9EA0062-B748-4686-82E2-80C622C2AE92}.job
- c:\windows\system32\msfeedssync.exe [2009-07-13 01:14]
.
.
------- Doplňkový sken -------
.
uStart Page =
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Stáhnout Free Download Managerem - file://c:\program files\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://c:\program files\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://c:\program files\Free Download Manager\dlall.htm
Trusted Zone: gemoney.cz\www
Trusted Zone: mojebanka.cz\www
TCP: {981CA828-CA00-4108-8DA3-E74D64F0928F} = 160.218.10.200 160.218.43.200
DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} - hxxp://www.myheritage.cz/Genoogle/Components/A ... eQuery.dll
FF - ProfilePath - c:\users\Tatínek\AppData\Roaming\Mozilla\Firefox\Profiles\0ydcq9mj.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-Run-C6501Sound - C6501.cpl
AddRemove-{B931FB80-537A-4600-00AD-AC5DEDB6C25B} - c:\program files\Electronic Arts\The Lord of the Rings


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1757981266-573735546-682003330-1003\Software\SecuROM\License information*]
"datasecu"=hex:13,3f,93,62,84,59,1a,2f,0c,b4,84,ba,64,72,22,bd,03,0a,6a,bc,df,
ff,ff,95,22,f1,13,2d,5d,f4,bf,d4,be,a0,53,aa,6b,c8,1e,2c,36,2a,e7,34,b6,27,\
"rkeysecu"=hex:a9,d3,23,f9,93,21,54,52,02,a4,98,60,8d,29,d7,7c

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\Default_Monitor\5&39252fc1&0&UID83886336\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\HWP26FA\5&1dc98871&0&UID67109120\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Device Parameters\MODES]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\DISPLAY\HWP26FA\5&39252fc1&0&UID83886336\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
Celkový čas: 2009-11-02 19:56
ComboFix-quarantined-files.txt 2009-11-02 18:56

Před spuštěním: Volných bajtů: 48 053 989 376
Po spuštění: Volných bajtů: 50 022 313 984

- - End Of File - - C543D617FC7993300575662BF4F8C71D

[zombux]

hm to vypadá relativně čistě. s jakou hláškou ten explorer zamrzá? můžeš dát screenshot?

[Dancan]

Tady to posílám, ale z toho asi nic nevyčteš. Zpravidla se to objevuje, když dám vlastnosti nějakého zástupce na ploše a pak přepínám mezi záložkami. Zhruba do dvou vteřin zmrzne. Už jsem z toho jelen, srnec i daněk dohromady.

[Dancan]

Ještě jeden postřeh. Zjistil jsem, že mi to zamrzá pravidelně, pokud chci nějakého zástupce třeba jenom vymazat. Přes kontextové menu nemám šanci. Okamžitě zmrzne. Klávesou Del se mi to podaří, ale po vymazaní zase zmrzne. O úpravě nějaké jeho vlastnosti snad ani nemá cenu se zmiňovat. Tudy cesta nevede. Připadá mi, že explorer záhadně nechce přijímat změny ve vztahu k zástupcům.

[zombux]

reinstal a hotovo, je to rychlejší než si tady x dní lámat hlavu

[Dancan]

Tak to už jsem zkoušel taky. Při bootování z DVD mi to napsalo hlášku něco jako neznámá verze Windows Prostě instalátor Win 7 nepoznal že je v compu instalace win 7. Nechce se mi přijít o data, ale asi budu muset provést čistou instalaci Tohle zrovna není moc ideální řešení, ale díky za snahu o pomoc

[Paul]

Nemáš na disku něco se securomem?

Stáhni si shellexview, seřaď si to podle jména společnosti a najdi SONY DADC.

Pokud to tam máš, tak napiš jakou máš verzi..jedna starší mi způsobovala padání exploreru.

[Dancan]

Tuhle ochranu v compu nemám. Díky za tip Jinak shellexwiev dost dobrý