HiJackThis - Nejde se zbavit AVG

[Orcus]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna

Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.

Až doběhne, log nedávej a rovnou přejdi sem:

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený červeně:

ClearJavaCache::
KillAll::

Registry::
[HKEY_USERS\S-1-5-18\Software\Avg]

[HKEY_USERS\S-1-5-18\Software\Avg\Avg2014]

[HKEY_USERS\S-1-5-18\Software\Avg\Avg2014\Avgdiag]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiRSAlert]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanFinished]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanFinishedThreatFound]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanStarted]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdEnd]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdEndFail]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdStart]

[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiWSAlert]

[HKEY_USERS\S-1-5-18\AppEvents\Schemes\Apps\avgui]

[HKEY_USERS\S-1-5-18\AppEvents\Schemes\Apps\avgui]

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\11a820c3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\29314414_0]
@="{0.0.0.00000000}.{d5d0d6d1-533a-4416-b259-8655744fcb98}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\2f5fd9a3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume2\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\970f75a2_0]
@="{0.0.0.00000000}.{a7681001-7f5f-46ea-88c1-bcf3627295c6}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9b805c24_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\d7ab0320_0]
@="{0.0.0.00000000}.{9fda8337-3c3c-4133-838a-fae6c0a5accb}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"

[HKEY_USERS\.DEFAULT\Software\Avg]

[HKEY_USERS\.DEFAULT\Software\Avg\Avg2014]

[HKEY_USERS\.DEFAULT\Software\Avg\Avg2014\Avgdiag]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}]
"url"="fwstats.mtrap.avg.com"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager]
"BootExecute"="autocheck autochk * c:\progra~2\avg\avg2012\avgrsa.exe /sync /restart"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
"EventMessageFile"="C:\Program Files (x86)\AVG\AVG2012\avgameh.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
"CategoryMessageFile"="C:\Program Files (x86)\AVG\AVG2012\avgameh.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiRSAlert]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanFinished]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanFinishedThreatFound]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanStarted]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdEnd]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdEndFail]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdStart]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiWSAlert]
[HKEY_USERS\.DEFAULT\AppEvents\Schemes\Apps\avgui]
[HKEY_USERS\.DEFAULT\AppEvents\Schemes\Apps\avgui]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\AVG SafeGuard toolbar]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgfws_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgfws_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgui_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgui_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}]
"url"="fwstats.mtrap.avg.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\avgnsa.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03417262F87C7FE4AAD0D2FBFC7CB9F3]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\scanlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E9A06E17F2CBFC42908A7AD66EF5401]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\corelog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F391EB72F3A0F44798692F96613B5A0]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\tdilog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\41ED20A6906033F43860CECF0824F36F]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\privlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\47267D11CB256E640ADFDCA61B72D247]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\cfgexlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5522F383C5285CC459238472161300DA]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\cfglog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\583CA4CF0AC7F8843A84E5D8130C367A]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\ldrlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D70FD512AFFB5C459F4EB79441AB0CA]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\rslog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6692140C420A7034BB32511EEF6A4046]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avgss.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B73052A1DF4DEC4F82474ABD9C86A1D]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\csllog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84A020F387925634F9769E7BFE004F20]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\wdlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9238717B266ADD643AD39013EA460A97]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\arklog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A1134359B7955984A9B6A1FC0EEB7EBE]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\nslog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4DF15DF1AEF0BC4194959FAC3C8D515]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\chjwlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABD4495076F8C342BE6AC610F4FC2AD]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\amlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AEA16B55A833DBE4784A89E373C82EF0]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\publog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6240439242E4BC4E8F83A199AC2AEE2]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\vaultlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9416FA855A98BF4792271554BFDAABB]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\lnglog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CBBE5F8AE6A8DE247A8A775E67E44B3C]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avguilog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CBD102EF66D93CB4A8C6AA14FD2335B3]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\updlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEA9A6D8B5FDFB34B875367D1065891A]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\schedlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D55441B1479F59740AFBE9FDD2740122]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\srmlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E44FA2B654640724596D61083C5FD4A4]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\wdsvclog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F061708F3225D9D4D906120730B2AC2D]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\idplog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1C570715109D3A4A99BE27ED26855D8]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avgmail.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2A8FCE0C74359D4093F67EC7D6E1500]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\emclog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F59EFE50136030B4E87919A92806215B]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\lscanlog.cfg"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\11a820c3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\29314414_0]
@="{0.0.0.00000000}.{d5d0d6d1-533a-4416-b259-8655744fcb98}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\2f5fd9a3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume2\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\970f75a2_0]
@="{0.0.0.00000000}.{a7681001-7f5f-46ea-88c1-bcf3627295c6}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9b805c24_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\d7ab0320_0]
@="{0.0.0.00000000}.{9fda8337-3c3c-4133-838a-fae6c0a5accb}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"



Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.


Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu

Upozornění : Může se stát, že po aplikaci skriptu a restartu počítače Windows nenaběhnou, pak znovu restartuj počítač, mačkej F8 a pak zvol poslední známou funkční konfiguraci.

[Reklama]

[tux]

ComboFix 14-09-12.01 - petr 14.09.2014 16:00:56.9.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4092.2196 [GMT 2:00]
Spuštěný z: c:\users\petr\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\petr\Desktop\CFScript.txt
AV: AVG Internet Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Internet Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-08-14 do 2014-09-14 )))))))))))))))))))))))))))))))
.
.
2014-09-14 14:15 . 2014-09-14 14:15 -------- d-----w- c:\users\test\AppData\Local\temp
2014-09-14 14:15 . 2014-09-14 14:15 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-09-14 14:15 . 2014-09-14 14:15 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-09-14 14:15 . 2014-09-14 14:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-09-10 09:09 . 2014-09-10 09:09 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2014-09-10 08:57 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-09-10 08:57 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2014-09-10 08:45 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-09-10 08:45 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-09-10 08:44 . 2014-06-24 03:29 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2014-09-10 08:44 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2014-09-10 08:43 . 2014-07-07 02:06 728064 ----a-w- c:\windows\system32\kerberos.dll
2014-09-10 08:43 . 2014-07-07 02:06 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-09-10 08:43 . 2014-07-07 01:40 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-09-10 08:43 . 2014-07-07 01:40 550912 ----a-w- c:\windows\SysWow64\kerberos.dll
2014-09-10 08:43 . 2014-07-07 01:39 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-09-10 08:43 . 2014-09-05 02:10 578048 ----a-w- c:\windows\system32\aepdu.dll
2014-09-10 08:43 . 2014-09-05 02:05 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-08-28 04:49 . 2014-08-23 02:07 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-08-28 04:49 . 2014-08-23 01:45 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-08-28 04:49 . 2014-08-23 00:59 3163648 ----a-w- c:\windows\system32\win32k.sys
2014-08-17 15:50 . 2014-08-17 15:50 -------- d-----w- c:\program files (x86)\Common Files\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-10 18:13 . 2012-06-10 16:07 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-09-10 18:13 . 2011-09-15 10:37 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-10 08:58 . 2011-10-08 23:20 101694776 ----a-w- c:\windows\system32\MRT.exe
2014-07-25 00:35 . 2014-07-25 00:35 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-07-16 03:23 . 2014-08-13 10:58 2048 ----a-w- c:\windows\system32\tzres.dll
2014-07-16 02:46 . 2014-08-13 10:58 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2014-07-14 02:02 . 2014-08-13 10:56 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
2014-07-14 01:40 . 2014-08-13 10:56 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2014-07-09 02:03 . 2014-08-13 10:57 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-07-09 02:03 . 2014-08-13 10:57 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2014-07-09 02:03 . 2014-08-13 10:57 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2014-07-09 02:03 . 2014-08-13 10:57 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2014-07-09 02:03 . 2014-08-13 10:57 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2014-07-09 01:31 . 2014-08-13 10:57 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2014-07-09 01:31 . 2014-08-13 10:57 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2014-06-30 22:24 . 2014-08-13 11:15 8856 ----a-w- c:\windows\system32\icardres.dll
2014-06-30 22:14 . 2014-08-13 11:15 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2014-06-25 02:05 . 2014-08-13 10:57 14175744 ----a-w- c:\windows\system32\shell32.dll
2014-06-18 02:18 . 2014-08-06 10:07 692736 ----a-w- c:\windows\system32\osk.exe
2014-06-18 01:51 . 2014-08-06 10:07 646144 ----a-w- c:\windows\SysWow64\osk.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0oodbs
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys;c:\windows\SYSNATIVE\Drivers\androidusb.sys [x]
R3 Axtmvflt;Axesstel USB Filter Service;c:\windows\system32\DRIVERS\Axtmvflt.sys;c:\windows\SYSNATIVE\DRIVERS\Axtmvflt.sys [x]
R3 Axtmvmdm;Axesstel USB Modem;c:\windows\system32\DRIVERS\Axtmvmdm.sys;c:\windows\SYSNATIVE\DRIVERS\Axtmvmdm.sys [x]
R3 Axtmvprt;Axesstel Diagnostic Port;c:\windows\system32\Drivers\Axtmvprt.sys;c:\windows\SYSNATIVE\Drivers\Axtmvprt.sys [x]
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;c:\program files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe;c:\program files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys;c:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys;c:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys;c:\program files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 whfltr2k;WheelMouse USB Lower Filter Driver;c:\windows\system32\DRIVERS\whfltr2k.sys;c:\windows\SYSNATIVE\DRIVERS\whfltr2k.sys [x]
R3 XICTAMDM;CELOT-W USB MODEM Driver;c:\windows\system32\DRIVERS\XICTAMDM.sys;c:\windows\SYSNATIVE\DRIVERS\XICTAMDM.sys [x]
R3 XICTANmea;CELOT-W NMEA Device Driver(WDM);c:\windows\system32\DRIVERS\XICTANmea.sys;c:\windows\SYSNATIVE\DRIVERS\XICTANmea.sys [x]
R3 XICTAVSP;CELOT-W DM Interface Driver(WDM);c:\windows\system32\DRIVERS\XICTAVSP.sys;c:\windows\SYSNATIVE\DRIVERS\XICTAVSP.sys [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 OODefragAgent;O&O Defrag;c:\program files\OO Software\Defrag\oodag.exe;c:\program files\OO Software\Defrag\oodag.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-09-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-10 18:13]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-28 11101800]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2014-02-24 5581888]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.cz/
mLocal Page = c:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 192.168.200.1
FF - ProfilePath - c:\users\petr\AppData\Roaming\Mozilla\Firefox\Profiles\ke4ww8pb.default\
FF - prefs.js: browser.search.selectedEngine - Google Česká republika
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&o ... &gfns=1&q=
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\SecuROM\License information*]
"datasecu"=hex:5b,d5,b5,c8,45,e5,5c,e5,82,a3,9f,7c,58,a5,53,8c,57,64,3c,e2,e2,
5a,72,48,6f,73,8a,a0,f0,03,12,a7,53,42,78,32,bf,cb,0c,09,fb,4a,40,6a,df,3a,\
"rkeysecu"=hex:f3,85,1e,93,e5,8f,a4,59,cc,6e,8a,5b,e9,f0,b9,f0
.
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\c:\Games\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T16:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T16:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T16:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\c:\games\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T16:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T16:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T16:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T16:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T16:42\00\00"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
.
**************************************************************************
.
Celkový čas: 2014-09-14 16:49:51 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-09-14 14:49
ComboFix2.txt 2014-09-14 13:57
.
Před spuštěním: Volných bajtů: 233 668 497 408
Po spuštění: Volných bajtů: 233 384 927 232
.
- - End Of File - - D0146711835DF22E873E34F250B57039
A36C5E4F47E84449FF07ED3517B43A31

[Orcus]

Zkus jestli to pomohlo + nový systemlook.

[tux]

Zabralo, je fuč, eset šel v pohodě odinstalovat (a znova nainstalovat na 30 dní )


SystemLook 30.07.11 by jpshortstuff
Log created at 21:51 on 15/09/2014 by petr
Administrator - Elevation successful

========== filefind ==========

Searching for "AVG"
No files found.

Searching for "AVG 2014"
No files found.

========== dir ==========

AVG 2014 - Unable to find folder.

========== regfind ==========

Searching for "AVG 2014"
No data found.

Searching for "AVG"
[HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\10.0\AVGeneral]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\11a820c3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\29314414_0]
@="{0.0.0.00000000}.{d5d0d6d1-533a-4416-b259-8655744fcb98}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\2f5fd9a3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume2\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\970f75a2_0]
@="{0.0.0.00000000}.{a7681001-7f5f-46ea-88c1-bcf3627295c6}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9b805c24_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\d7ab0320_0]
@="{0.0.0.00000000}.{9fda8337-3c3c-4133-838a-fae6c0a5accb}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Windows Photo Viewer\Slideshow\Screensaver]
"EncryptedPIDL"="FAAfQiVIHgOUe8NNsTHpRrRMjdUgAAAAGgDuu/4jAAAQAJ+ukKk7oIBOlLyZEtdQ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[HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x86_2014_4116.exe"="AVG Remover Utility"
[HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x64_2014_4116.exe"="AVG Remover Utility"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\c:|Program Files (x86)|Microsoft Silverlight|5.1.20913.0|pl|mscorlib.resources.dll]
"mscorlib.resources,culture="pl",fileVersion="5.1.20913.0",processorArchitecture="MSIL",publicKeyToken="7cec85d7bea7798e",version="5.0.5.0""="3PgDT0$gy?~Dc}DI]?&!Complete5.1.20913.0>d9pc6DT6a?]5U}8ric(f 3PgDT0$gy?~Dc}DI]?&!Complete5.1.20913.0>D-AvgirCg8~K)8ISuCC6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\10CF97668EC18004B8CF607FA7924D3E]
"1029"="vUpAVLkm@$!!!!!MKKSkExcelConverter12Intl_1029>?9p@&.h.K@6='tRix^nJ vUpAVIkm@$!!!!!MKKSkExcelConverter12Intl_1029>?9p@&.h.K@6='tRix^nJ vUpAVGkm@$!!!!!MKKSkEXCELFilesIntl_1029>?9p@&.h.K@6='tRix^nJ"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\122BC46DF1D81D118A6000AA00740998]
"1051"="vUpAVgD1C$!!!!!MKKSkSpellingAndGrammarFilesExp2_1051>!K3XUF'^z8S}8Gkcn6(l"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\34BE92CC2CB71D119A12000A9CE1A22A]
"1051"="vUpAVgD1C$!!!!!MKKSkThesaurusFiles_1051>H6.6plwWw?v{&X]C9~Pl"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\53BE92CC2CB71D119A12000A9CE1A22A]
"1051"="vUpAVgD1C$!!!!!MKKSkHyphenationFiles_1051>5~*gP7Slx@Hik'S*R]{N"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\54BE92CC2CB71D119A12000A9CE1A22A]
"1051"="vUpAVgD1C$!!!!!MKKSkThesaurusFiles_1051>U].f]e&vf(Xku.QMS8u7"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\5B5EF7AEDE9827842B7BD01C302B3B02]
"analys32.xll"="vUpAVGkm@$!!!!!MKKSkExcelAddinATPFilesIntl_1029<Analytické nástroje\Obsahuje nástroje pro analýzu statistických a inženýrských dat."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\5B5EF7AEDE9827842B7BD01C302B3B02]
"atpvbaen.xlam"="vUpAVGkm@$!!!!!MKKSkExcelAddinATPFilesIntl_1029<Analytické nástroje – VBA\Funkce jazyka VBA pro analytické nástroje."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\5B5EF7AEDE9827842B7BD01C302B3B02]
"lookup.xlam"="vUpAVGkm@$!!!!!MKKSkExcelAddinLookupFilesIntl_1029<Průvodce vyhledáváním\Pomůže vytvořit vzorce sloužící k vyhledávání dat v seznamech."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\5B5EF7AEDE9827842B7BD01C302B3B02]
"solver.xlam"="vUpAVGkm@$!!!!!MKKSkExcelAddinSolverFilesIntl_1029<Řešitel\Nástroj obsahující sadu numerických metod pro řešení a optimalizaci rovnic"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\5B5EF7AEDE9827842B7BD01C302B3B02]
"sumif.xlam"="vUpAVGkm@$!!!!!MKKSkExcelAddinSumIfFilesIntl_1029<Průvodce podmíněným součtem\Pomůže vytvořit vzorce sloužící k sečítání vybraných dat v seznamech."
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{1CF26E88-2DE7-4E32-9C87-0DB955A6AAB7},List\1029"="vUpAVFkm@$!!!!!MKKSkGimme_OnDemandData<ACCESSFiles vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles vUpAVJlm@$!!!!!MKKSkGimme_OnDemandData<LISTFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EC17-7BC2-11D1-A921-00A0C91E2AA2},1029\stslist.chm"="vUpAVFkm@$!!!!!MKKSkGimme_OnDemandData<ACCESSFiles vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles vUpAVJlm@$!!!!!MKKSkGimme_OnDemandData<LISTFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\BILLSTA7.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\BLOODPT8.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\EXPENRP9.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\LOANAMO1.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\PMONBUD2.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\SALEREP4.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{863226F8-F40F-48B7-A9B7-0212EE66F812},1029\TIMECAR6.XLX"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EC17-7BC2-11D1-A921-00A0C91E2AA2},1029\xladdin.chm"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EC17-7BC2-11D1-A921-00A0C91E2AA2},1029\xlmacro.chm"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EC17-7BC2-11D1-A921-00A0C91E2AA2},1029\xlmain11.chm"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EC17-7BC2-11D1-A921-00A0C91E2AA2},1029\vbaxl10.chm"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelHelpFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{1CF26E88-2DE7-4E32-9C87-0DB955A6AAB7},Excel\1029"="vUpAVLkm@$!!!!!MKKSkGimme_OnDemandData<AlwaysInstalled vUpAVIkm@$!!!!!MKKSkGimme_OnDemandData<AlwaysInstalled vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{6679FC01-1CE8-4008-8BFC-06F77A29D4E3},1029"="vUpAVLkm@$!!!!!MKKSkGimme_OnDemandData<AlwaysInstalled vUpAVIkm@$!!!!!MKKSkGimme_OnDemandData<AlwaysInstalled vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{EA7FE5B5-89ED-4872-B2B7-0DC103B2B320},analys32.xll"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelAddinATPFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{EA7FE5B5-89ED-4872-B2B7-0DC103B2B320},atpvbaen.xlam"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelAddinATPFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{EA7FE5B5-89ED-4872-B2B7-0DC103B2B320},lookup.xlam"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelAddinLookupFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{EA7FE5B5-89ED-4872-B2B7-0DC103B2B320},solver.xlam"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelAddinSolverFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{EA7FE5B5-89ED-4872-B2B7-0DC103B2B320},sumif.xlam"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<ExcelAddinSumIfFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CFB38738-AB0F-4FD8-A530-81EB37FA8948},1029"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{B9BEFFFD-2160-48AB-B029-B8F00228688E},1029"="vUpAVLkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden vUpAVIkm@$!!!!!MKKSkGimme_OnDemandData<AlwaysInstalled vUpAVKkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{24AAE126-0911-478F-A019-07B875EB9996},msiquote.iqy"="vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<EXCELFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{4EAD0498-4F35-4FF3-A6A6-3AE68392BA5E},1029"="vUpAVLkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden vUpAVKkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden vUpAVGkm@$!!!!!MKKSkGimme_OnDemandData<WhiteRabbitHidden"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB35-7BC2-11D1-A921-00A0C91E2AA2},1051"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<HyphenationFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB37-7BC2-11D1-A921-00A0C91E2AA2},1051"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<HyphenationFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{D64CB221-8D1F-11D1-A806-00AA00479089},1051"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<SpellingAndGrammarFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB3D-7BC2-11D1-A921-00A0C91E2AA2},1051\Normal"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<SpellingAndGrammarFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB3F-7BC2-11D1-A921-00A0C91E2AA2},1051\Normal"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<SpellingAndGrammarFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB43-7BC2-11D1-A921-00A0C91E2AA2},1051"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<ThesaurusFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{CC29EB45-7BC2-11D1-A921-00A0C91E2AA2},1051"="vUpAVgD1C$!!!!!MKKSkGimme_OnDemandData<ThesaurusFiles_1051"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\621EAA421190F8740A91708B57BE9969]
"msiquote.iqy"="vUpAVGkm@$!!!!!MKKSkEXCELNonBootFilesIntl_1029>lg3{*@?b0AiE%,jBB?vx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\71CE92CC2CB71D119A12000A9CE1A22A]
"1029\stslist.chm"="vUpAVFkm@$!!!!!MKKSkACCESSNonBootFilesIntl_1029>~mtcR~w)W=u2{mJ%N9Bo vUpAVGkm@$!!!!!MKKSkEXCELNonBootFilesIntl_1029>~mtcR~w)W=u2{mJ%N9Bo vUpAVJlm@$!!!!!MKKSkLISTFilesIntl_1029>~mtcR~w)W=u2{mJ%N9Bo"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\71CE92CC2CB71D119A12000A9CE1A22A]
"1029\xladdin.chm"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>DtrRQuLIO@YD%}whP`J'"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\71CE92CC2CB71D119A12000A9CE1A22A]
"1029\xlmacro.chm"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>*T&t^4alB@Hs%Z)oE6H9"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\71CE92CC2CB71D119A12000A9CE1A22A]
"1029\xlmain11.chm"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>V(ljMgyrB@ba7[ohcRx]"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\71CE92CC2CB71D119A12000A9CE1A22A]
"1029\vbaxl10.chm"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>G.G!C&(PIA80p?rF,irI"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\73BE92CC2CB71D119A12000A9CE1A22A]
"1051"="vUpAVgD1C$!!!!!MKKSkHyphenationFiles_1051>lZ!_PMa!q@H=~X)~7)-Z"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\83783BFCF0BA8DF45A0318BE73AF9884]
"1029"="vUpAVGkm@$!!!!!MKKSkEXCELNonBootFilesIntl_1029>PS[C9bB^.?3GDJJ%6.Jc"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\88E62FC17ED223E4C978D09B556AAA7B]
"List\1029"="vUpAVFkm@$!!!!!MKKSkACCESSNonBootFilesIntl_1029>Won-Ye!HQ?$,`HSQ6zZYsetlang vUpAVGkm@$!!!!!MKKSkEXCELNonBootFilesIntl_1029>Won-Ye!HQ?$,`HSQ6zZYsetlang vUpAVJlm@$!!!!!MKKSkLISTFilesIntl_1029>Won-Ye!HQ?$,`HSQ6zZYsetlang"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\88E62FC17ED223E4C978D09B556AAA7B]
"Excel\1029"="vUpAVLkm@$!!!!!MKKSkExcelConverter12Intl_1029>i!!*jsgyS@Rp~HGw*=1hsetlang vUpAVIkm@$!!!!!MKKSkExcelConverter12Intl_1029>i!!*jsgyS@Rp~HGw*=1hsetlang vUpAVGkm@$!!!!!MKKSkEXCELFilesIntl_1029>i!!*jsgyS@Rp~HGw*=1hsetlang"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8940DAE453F43FF46A6AA36E3829ABE5]
"1029"="vUpAVLkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>m)[o7Pf'u?NV~WwKsMSr vUpAVKkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>m)[o7Pf'u?NV~WwKsMSr vUpAVGkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>m)[o7Pf'u?NV~WwKsMSr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\BILLSTA7.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>]t2N58kph8f6$GoIQZTD[^7A]\Výpis z účtu.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\BLOODPT8.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>TfurxWk]V=9H_m-.F`t@[^7A]\Sledování krevního tlaku.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\EXPENRP9.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>GPn[Cc@w`@sH+U=G4g)([^7A]\Vyúčtování výdajů.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\LOANAMO1.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>g2&r[X7dPAWZQ@@I]lIi[^7A]\Amortizace půjčky.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\PMONBUD2.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>0sU-CeG$CA.3_bg%Rxt7[^7A]\Osobní rozpočet na měsíc.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\SALEREP4.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>$f'q%!7he8~RvN-K[4Cb[^7A]\Výkaz o prodeji.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\8F622368F04F7B849A7B2021EE668F21]
"1029\TIMECAR6.XLX"="vUpAVGkm@$!!!!!MKKSkExcelHelpFilesIntl_1029>7AlV&s%nJ=OFt^FwNx$y[^7A]\Časový výkaz.xltx"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\D3BE92CC2CB71D119A12000A9CE1A22A]
"1051\Normal"="vUpAVgD1C$!!!!!MKKSkSpellingAndGrammarFilesExp2_1051>26i~zM1u{@SfF,KiDW'K"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\DFFFEB9B0612BA840B928B0F208286E8]
"1029"="vUpAVIkm@$!!!!!MKKSkExcelConverter12Intl_1029>B)%jub5b,=DTpmK?3wIZ vUpAVLkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>B)%jub5b,=DTpmK?3wIZ vUpAVKkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>B)%jub5b,=DTpmK?3wIZ vUpAVGkm@$!!!!!MKKSkWhiteRabbitHiddenIntl_1029>B)%jub5b,=DTpmK?3wIZ"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\F3BE92CC2CB71D119A12000A9CE1A22A]
"1051\Normal"="vUpAVgD1C$!!!!!MKKSkSpellingAndGrammarFilesExp2_1051>2LW%w4zT,9X,3Ie+L*[S"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}]
"url"="fwstats.mtrap.avg.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\avgnsa.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03417262F87C7FE4AAD0D2FBFC7CB9F3]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\scanlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E9A06E17F2CBFC42908A7AD66EF5401]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\corelog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F391EB72F3A0F44798692F96613B5A0]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\tdilog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\41ED20A6906033F43860CECF0824F36F]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\privlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\47267D11CB256E640ADFDCA61B72D247]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\cfgexlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5522F383C5285CC459238472161300DA]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\cfglog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\583CA4CF0AC7F8843A84E5D8130C367A]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\ldrlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D70FD512AFFB5C459F4EB79441AB0CA]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\rslog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6692140C420A7034BB32511EEF6A4046]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avgss.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B73052A1DF4DEC4F82474ABD9C86A1D]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\csllog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84A020F387925634F9769E7BFE004F20]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\wdlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9238717B266ADD643AD39013EA460A97]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\arklog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A1134359B7955984A9B6A1FC0EEB7EBE]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\nslog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4DF15DF1AEF0BC4194959FAC3C8D515]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\chjwlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABD4495076F8C342BE6AC610F4FC2AD]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\amlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AEA16B55A833DBE4784A89E373C82EF0]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\publog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6240439242E4BC4E8F83A199AC2AEE2]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\vaultlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9416FA855A98BF4792271554BFDAABB]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\lnglog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CBBE5F8AE6A8DE247A8A775E67E44B3C]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avguilog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CBD102EF66D93CB4A8C6AA14FD2335B3]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\updlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEA9A6D8B5FDFB34B875367D1065891A]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\schedlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D55441B1479F59740AFBE9FDD2740122]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\srmlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E44FA2B654640724596D61083C5FD4A4]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\wdsvclog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F061708F3225D9D4D906120730B2AC2D]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\idplog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1C570715109D3A4A99BE27ED26855D8]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\avgmail.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2A8FCE0C74359D4093F67EC7D6E1500]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\emclog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F59EFE50136030B4E87919A92806215B]
"00000000000000000000000000000000"="C:\ProgramData\AVG2012\log\lscanlog.cfg"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109030000000000000000F01FEC\Features]
"VSTAIDEFiles"="*'=!-^1,a=%'HvwuM1s`lKe5wH&]&@iPgg*yzeka^FHUlH5uN9JD-'X2le-Ps(AJAjg'5=pm02,i9u5Td?k78go{S9v~.(_vyvb?7hLd@@7WH?biopFjqbsZ4?0!M_EtF9n3t3Yv}eU**z@Br{g1g(Rsy?VXB]2dxS}AW1_mOA!$oMQKOGPv*5!ULp'a99B&BsXmnNlg^k^shb2)g(FNy?VXB]2dgMB+sWA*0?jr)%4E?mxW}?0KnSBBC@uW&p3_R8rRJ54(qwdUx@+wP31En{vb`BzOcNs9F9~+.(+LTJE7ydnm1rV!1A1_C0b~kk=YW@g!R3IjB@l52{kc-~ak={8UQmN?b?x%%F%R9~S_@!iX2C%EJ@-,dmh3~OTp%chs4XT1W@.n.cJ&=gEZ%m[NUKVZU?&~nA,q7iv-R*hIkzh[)@*)d?=di1Y&v,B]z(D@4AAgL2?R3hF,z@(CfHR}{9(tu$Vq'QBd!FH'Qp8GB@Z2YrD[[C?9x)rAZTkpo9u!-Gb}$QWPlH*czRL2*96Y3KkKmxWX_q'UA+WQJAj%VbnaI0G?y68!l89BL@n~CX`crX-O5$&uxpTp_=A89%l7Qjzj46CT9*IvZ8=EXq+,6+([Ae-p$J{+o=QtITuzyO8Zs.C2V_Fe`A~HkA-Ty8qv!42?$gW$r9lZ)wXcl7aRwE?=@sCO3=HmWx%iGDJ*,!!V-bI9%9sresQy6&Xc'BFM1pD(u8=H@`P&+d$2m}[fE+4Ia?QI?y=)RA)^-d%_JNIM]8P1ch1vDV6P}'-*F{zoM@Slv={j_uap)^fAv9p'S?&tq64pQ10,{zJA,Yg!GA[^F.EP^h6RToHvwCweq?[FVtL,~k~,kDG-p
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109610050400000000000F01FEC\Features]
"Gimme_OnDemandData"="vUpAVGkm@$i@M*4G?[XD"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109610050400000000000F01FEC\Features]
"MsoInstalledPackagesScopedIntl_1029"="vUpAVGkm@$-(46&xKL,P"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109F100B1400000000000F01FEC\Features]
"Gimme_OnDemandData"="vUpAVgD1C$i@M*4G?[XD"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109F100B1400000000000F01FEC\Features]
"MsoInstalledPackagesScopedIntl_1051"="vUpAVgD1C$-(46&xKL,P"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\670F66C4BA3D8C94584DAB6A8DF2AC2E\Features]
"SCgraphic"="Njg[mMx`!@RN8K!4$c%nH7TD=~%?E9OyURUa^.aZX=QWOVYsm=d23OXIF'uVD*_*o7Q^n@np^7TmaEg(Y$B7AX~$ZANL`8CWz5.j46RldEIMV?Y$fx%VP?34`.Z=I-OI]94%gqQQzi(GPA)o0GUsj@s+qjQ*f,simzAGI)=uD9fNa~+7B'*s!T%~+e6ji83+niXo-hxPrIl%lemxx9+HEwXJ^j*Vm!hJ9nr+[ANp9nyJ~h[R7BuEIngCd=xX9S?[Z$r1xljQw5}cd9N5Gg6Hx+YGP=B,6TtKr='j+Gk$R_^.'Y7om~@vm=U1xBrQskbFOBb'A8xV@Amf`A@GA@rabVTaIol%o@Y,.BB%5jWASo89Jeerf9hHJ7$a+F_k!kK-qb2%L@E?[tX+Y4c+Ar'kO^ub~9JCsH3yfE(9h{FkDao)[=T5u9G{I^{K7SPbN+dqz=iY^XwQuhRh7V0fi2jX)9opKw8.G&DXnjy()^lu19Rr5)j7qIPF4ga?5_-?RA{hCLRAK_S5ob^_^F)-9=A(~i]JDQ!sT1Mrdv]{o=a_5W7PBZTTwF65s4mSVA'1*jMkGGG`)3t!*UPdB=PnZ8d[1ZW=eEG0EAc$Q9XB@*-5tnv32gO^lzcV`9@-&vN2uPz5a)$0LA.-M=WElL.)^j.7Wv50IdP_-?yK(32f&v[,h-N`r.YU-@SROAdr+F8f[Tg?8'fWd=zx_7Tky(&T,oBk_y54*?cYHQ`.^8$Pzmm~cR7~b@~U=23gjQ,G'-BAhS*1)9}_jGs{()2LvKhlyhA5c@Pr5yDiMx5karo1O7E}d?lmqQLp(&pNj!YP'5FzW?+S&']06wXsR{rXp$)i-@I*mhC~xaFI[dY[[x0&
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\670F66C4BA3D8C94584DAB6A8DF2AC2E\Features]
"i386_XWProgramFiles"=",p?'i`ywI97'KP%.!6F5n=6tCaXqV?])Y39!FQqyT-S?g7jy=AvG_aXm3iT'^$?9krT&,=ybJR-gQs-MdSQDTg7_G9$O]o%?M42I,-m]V{m+`?@pUppLjUGirk&@E'pW}=NFNl1__Ij*yrSAG@$Bq9V2Uoz@LU*`XWProgramFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B380454580315844FB71110100307810\Features]
"Feature"=")'12(7M.^VoP_JL!}Ud'kUiE?,vHzIbY1!Wyr^*dMx!jjmwljb3VSCQsSNfN'(6,SRDG7-PZb4T]bzA,95Cx@i+ULur39q[zR2q0H1d0&2I0QzW0jv(+4jXw)E}%kU~-zcO^'WSKyDmLg^]&]X5jC*04I?I]k^!CIA1@n~ICe4[yId=d,9cax-eg-)m',H=&DaK(i0V(4w]j?w{i8VsUyj0xpklMOB[]aYa5QCA{V0BuFwhLa,CzA&!C9`Zj.7X5FRSv?EQ7{d1o+o=$X.OMzre7PXlq(Y~Y2tkTp8?Yz=xVnOn[!yVXe6I'BL(n[Wnzoz*t=0uOr7d)QCv1J*cTQ*AJ-ePz+IjUha47dX4pG(__fT`S`C[)xD'Z{3@(7^?+-k'Dgtbj0JE8PSK4fIU&WlNc4,tdP4F^V4)e~@3,d]NBF$9RE][PO10mAUWHQ)BZVUHoq@^j6Ph'djV-ZB7rGkfZq05W&aUq]cT)beGzv4GsL9l'~c-_wl*91i45kWZ^p6n=P8A&REcAHUtcQLk[~CH4jgkj1c!w&@ICH6mP)r(cU$zEF$J]o{1u5PXiI&983^d=ASRt0kHlCu^MIAO9V@x4i?aWkZ@QMaF(vTkSRC-?k+c6`K}r!={rZM55{_4?y4Q2c']aq]g0cr`fGxaH9_+7zw1hfvt-Fa2a4.Q8AW}aQu9d)9M1EWNG+qnC$NC[3!v0r[$HF`5rH87^!A7Y^fPrTa5leM?[GF[+nrna'R'V$-doj1za}xl&{}9O9e`}B0glkW2zu$Q(&67b'iA'^s_ZY}c)GK@2saLz0U?K+{@T4laa0vZH`nNdn,ou=Qb2wz_im)?+K-3}g@z{GheiR-?y1ZH?UP_)]jS}ft
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\009]
"Counter"="1 1847 2 System 4 Memory 6 % Processor Time 10 File Read Operations/sec 12 File Write Operations/sec 14 File Control Operations/sec 16 File Read Bytes/sec 18 File Write Bytes/sec 20 File Control Bytes/sec 24 Available Bytes 26 Committed Bytes 28 Page Faults/sec 30 Commit Limit 32 Write Copies/sec 34 Transition Faults/sec 36 Cache Faults/sec 38 Demand Zero Faults/sec 40 Pages/sec 42 Page Reads/sec 44 Processor Queue Length 46 Thread State 48 Pages Output/sec 50 Page Writes/sec 52 Browser 54 Announcements Server/sec 56 Pool Paged Bytes 58 Pool Nonpaged Bytes 60 Pool Paged Allocs 64 Pool Nonpaged Allocs 66 Pool Paged Resident Bytes 68 System Code Total Bytes 70 System Code Resident Bytes 72 System Driver Total Bytes 74 System Driver Resident Bytes 76 System Cache Resident Bytes 78 Announcements Domain/sec 80 Election Packets/sec 82 Mailslot Writes/sec 84 Server List Requests/sec 86 Cache 88 Data Maps/sec 90 Sync Data Maps/s
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\009]
"Help"="3 The System performance object consists of counters that apply to more than one instance of a component processors on the computer. 5 The Memory performance object consists of counters that describe the behavior of physical and virtual memory on the computer. Physical memory is the amount of random access memory on the computer. Virtual memory consists of the space in physical memory and on disk. Many of the memory counters monitor paging, which is the movement of pages of code and data between disk and physical memory. Excessive paging, a symptom of a memory shortage, can cause delays which interfere with all system processes. 7 % Processor Time is the percentage of elapsed time that the processor spends to execute a non-Idle thread. It is calculated by measuring the percentage of time that the processor spends executing the idle thread and then subtracting that value from 100%. (Each processor has an idle thread tha
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\AVG SafeGuard toolbar]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\12.0\Registration\{90120000-0030-0000-0000-0000000FF1CE}]
"Current"="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
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgfws_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgfws_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgui_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\avgui_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Perflib\009]
"Counter"="1 1847 2 System 4 Memory 6 % Processor Time 10 File Read Operations/sec 12 File Write Operations/sec 14 File Control Operations/sec 16 File Read Bytes/sec 18 File Write Bytes/sec 20 File Control Bytes/sec 24 Available Bytes 26 Committed Bytes 28 Page Faults/sec 30 Commit Limit 32 Write Copies/sec 34 Transition Faults/sec 36 Cache Faults/sec 38 Demand Zero Faults/sec 40 Pages/sec 42 Page Reads/sec 44 Processor Queue Length 46 Thread State 48 Pages Output/sec 50 Page Writes/sec 52 Browser 54 Announcements Server/sec 56 Pool Paged Bytes 58 Pool Nonpaged Bytes 60 Pool Paged Allocs 64 Pool Nonpaged Allocs 66 Pool Paged Resident Bytes 68 System Code Total Bytes 70 System Code Resident Bytes 72 System Driver Total Bytes 74 System Driver Resident Bytes 76 System Cache Resident Bytes 78 Announcements Domain/sec 80 Election Packets/sec 82 Mailslot Writes/sec 84 Server List Requests/sec 86 Cache 88 Data Maps/sec 90 Sync
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Perflib\009]
"Help"="3 The System performance object consists of counters that apply to more than one instance of a component processors on the computer. 5 The Memory performance object consists of counters that describe the behavior of physical and virtual memory on the computer. Physical memory is the amount of random access memory on the computer. Virtual memory consists of the space in physical memory and on disk. Many of the memory counters monitor paging, which is the movement of pages of code and data between disk and physical memory. Excessive paging, a symptom of a memory shortage, can cause delays which interfere with all system processes. 7 % Processor Time is the percentage of elapsed time that the processor spends to execute a non-Idle thread. It is calculated by measuring the percentage of time that the processor spends executing the idle thread and then subtracting that value from 100%. (Each processor has an idl
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}]
"url"="fwstats.mtrap.avg.com"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager]
"BootExecute"="autocheck autochk * c:\progra~2\avg\avg2012\avgrsa.exe /sync /restart"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
"EventMessageFile"="C:\Program Files (x86)\AVG\AVG2012\avgameh.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\eventlog\Application\Avg2012Alrt]
"CategoryMessageFile"="C:\Program Files (x86)\AVG\AVG2012\avgameh.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Network]
"FilterClasses"="ms_firewall_upper scheduler encryption compression vpn loadbalance avgfilter failover diagnostic custom"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA\0000]
"Service"="Avgdiska"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGDISKA\0000]
"DeviceDesc"="AVG Disk Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD\0000]
"Service"="Avgfwfd"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWFD\0000]
"DeviceDesc"="AVG network filter service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"Service"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000]
"DeviceDesc"="AVGIDSDriver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000]
"Service"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000]
"DeviceDesc"="AVGIDSEH"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"Service"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000]
"DeviceDesc"="AVGIDSFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA\0000]
"Service"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHA\0000]
"DeviceDesc"="AVGIDSHA"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64\0000]
"Service"="Avgldx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64\0000]
"DeviceDesc"="AVG AVI Loader Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64\0000]
"Service"="Avgmfx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64\0000]
"DeviceDesc"="AVG Mini-Filter Resident Anti-Virus Shield"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64\0000]
"Service"="Avgrkx64"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64\0000]
"DeviceDesc"="AVG Anti-Rootkit Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA\0000]
"Service"="Avgtdia"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA\0000]
"DeviceDesc"="AVG TDI Driver"
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiRSAlert]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanFinished]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanFinishedThreatFound]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiScanStarted]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdEnd]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdEndFail]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiUpdStart]
[HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avguiWSAlert]
[HKEY_USERS\.DEFAULT\AppEvents\Schemes\Apps\avgui]
[HKEY_USERS\.DEFAULT\AppEvents\Schemes\Apps\avgui]
@="AVG"
[HKEY_USERS\.DEFAULT\Software\Avg]
[HKEY_USERS\.DEFAULT\Software\Avg\Avg2014]
[HKEY_USERS\.DEFAULT\Software\Avg\Avg2014\Avgdiag]
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Adobe\Acrobat Reader\10.0\AVGeneral]
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\11a820c3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\29314414_0]
@="{0.0.0.00000000}.{d5d0d6d1-533a-4416-b259-8655744fcb98}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\2f5fd9a3_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume2\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\970f75a2_0]
@="{0.0.0.00000000}.{a7681001-7f5f-46ea-88c1-bcf3627295c6}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9b805c24_0]
@="{0.0.0.00000000}.{05197e36-a580-4a98-b781-b397e57391f8}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2012\avgtray.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\d7ab0320_0]
@="{0.0.0.00000000}.{9fda8337-3c3c-4133-838a-fae6c0a5accb}|\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG2013\avgui.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Microsoft\Windows Photo Viewer\Slideshow\Screensaver]
"EncryptedPIDL"="FAAfQiVIHgOUe8NNsTHpRrRMjdUgAAAAGgDuu/4jAAAQAJ+ukKk7oIBOlLyZEtdQ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[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x86_2014_4116.exe"="AVG Remover Utility"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x64_2014_4116.exe"="AVG Remover Utility"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x86_2014_4116.exe"="AVG Remover Utility"
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Users\petr\Downloads\avg_remover_stf_x64_2014_4116.exe"="AVG Remover Utility"
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiRSAlert]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanFinished]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanFinishedThreatFound]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiScanStarted]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdEnd]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdEndFail]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiUpdStart]
[HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avguiWSAlert]
[HKEY_USERS\S-1-5-18\AppEvents\Schemes\Apps\avgui]
[HKEY_USERS\S-1-5-18\AppEvents\Schemes\Apps\avgui]
@="AVG"
[HKEY_USERS\S-1-5-18\Software\Avg]
[HKEY_USERS\S-1-5-18\Software\Avg\Avg2014]
[HKEY_USERS\S-1-5-18\Software\Avg\Avg2014\Avgdiag]

========== folderfind ==========

Searching for "AVG 2014"
No folders found.

Searching for "AVG"
C:\Users\petr\AppData\Roaming\Mozilla\Firefox\Profiles\ke4ww8pb.default\avg d------ [14:56 31/08/2012]

========== process ==========

AVG 2014 - Unable to open process handle.

AVG - Unable to open process handle.

-= EOF =-

[jaro3]

C:\Users\petr\AppData\Roaming\Mozilla\Firefox\Profiles\ke4ww8pb.default\avg tuto složku smaž.

Start-spustit , a napiš do okénka :
regedit
dej OK

Nahoře--úpravy--najít.
do okénka napiš:
Avg
a klikni na "najít další"
začně sken.

Vlevo ve stromu se objeví složka s názvem AVG, kterou smaž.


dej najít další a pak znovu smaž. pokračuj dál až do doby než systém další nenajde.

[tux]

Chceš mi říct, že třeba tohle:
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Adobe\Acrobat Reader\10.0\AVGeneral]
Mám taky smazat?

[Orcus]

Maž ty registry, které byly vypsány ve skriptu. Je tam cca 10 registrů, které nemaž.

[jaro3]

Chceš mi říct, že třeba tohle:
[HKEY_USERS\S-1-5-21-1562084630-41358279-604254244-1000\Software\Adobe\Acrobat Reader\10.0\AVGeneral]
Mám taky smazat?

ne to přeci není AVG ale AVGeneral