Kontrola logu + rada

[Sunshinekx]

Dobrý den,

nedávno jsme měl problémy s rychlostí svého jinak výkonného plecháče. Projel jsme to několika programy, vyčistil a od té doby je to v pořádku. Přesto bych vás poprosil o kontrolu logu, abych měl přeci jen tu jistotu.

Ještě bych se chtěl zeptat, zda-li kombinace programů - ESET, Kerio Personal FW, SUPERAntiSpyware stačí, jel-li třeba ji ještě něčim obohatit.
Nejsem běžný uživatel počítače, dělam s celkem důležitými věci (databáze, virtualizace, servery, bankovní účty, ...) a v ohledu zabezpečení systému mám jisté nedostatky na OS od Microsoftu.

Děkuji a přikládám log

EDIT: Aktualizace logu, po mensich upravach v PC

Logfile of random's system information tool 1.08 (written by random/random)
Run by Jakub at 2010-07-29 15:16:26
Microsoft Windows 7 Ultimate
System drive C: has 185 GB (54%) free of 342 GB
Total RAM: 3327 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:16:29, on 29.7.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system\w98eject.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\ICQ7.2\ICQ.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Jakub\Documents\Benchmark + diagnostika\Bezpečnost a viry\RSIT.exe
C:\Program Files\trend micro\Jakub.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.garena.com/portal/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: w98Eject.lnk = C:\Windows\system\w98eject.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iTALC Client (icas) - Unknown owner - C:\Program Files\iTALC\ica.exe (file missing)
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 5457 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2008-03-01 1443072]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"SystemKey"= []
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-10-12 4702208]
"Skytel"=C:\Windows\Skytel.exe [2007-10-12 1826816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-12-16 2002160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NCsoft Launcher]
C:\Program Files\NCSoft\Launcher\NCLauncher.exe /Minimized []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-12 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2006-10-26 98632]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
w98Eject.lnk - C:\Windows\system\w98eject.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1"
.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 months======

2010-07-29 15:16:26 ----D---- C:\rsit
2010-07-29 15:16:26 ----D---- C:\Program Files\trend micro
2010-07-29 14:11:13 ----SHD---- C:\Config.Msi
2010-07-29 14:05:32 ----D---- C:\Users\Jakub\AppData\Roaming\Toxic Biohazard
2010-07-28 20:26:26 ----D---- C:\Program Files\CCleaner
2010-07-27 23:17:26 ----D---- C:\Users\Jakub\AppData\Roaming\PC Suite
2010-07-27 23:17:25 ----D---- C:\Users\Jakub\AppData\Roaming\Nokia
2010-07-27 23:17:25 ----D---- C:\ProgramData\PC Suite
2010-07-27 23:12:46 ----D---- C:\Program Files\DIFX
2010-07-27 23:12:45 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-07-27 23:12:42 ----DC---- C:\Windows\system32\DRVSTORE
2010-07-27 23:12:17 ----A---- C:\Windows\system32\nmwcdcls.dll
2010-07-27 23:11:04 ----D---- C:\ProgramData\Installations
2010-07-27 00:59:59 ----A---- C:\Windows\system32\HMIPCore.dll
2010-07-13 22:18:17 ----D---- C:\Program Files\PlayReady
2010-07-11 21:50:10 ----D---- C:\Users\Jakub\AppData\Roaming\Hamachi
2010-07-11 21:49:52 ----A---- C:\Windows\system32\drivers\hamachi.sys
2010-07-11 11:38:55 ----D---- C:\Windows\system32\RTCOM
2010-07-11 11:38:44 ----A---- C:\Windows\system32\SRSWOW.dll
2010-07-11 11:38:44 ----A---- C:\Windows\SkyTel.exe
2010-07-11 11:38:43 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\SRSHP360.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-07-11 11:38:43 ----A---- C:\Windows\system32\RtkAPO.dll
2010-07-11 11:38:43 ----A---- C:\Windows\RtlUpd.exe
2010-07-11 11:38:42 ----A---- C:\Windows\RtHDVCpl.exe
2010-07-11 11:38:41 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-07-11 11:38:40 ----A---- C:\Windows\system32\maxxaudioapo.dll
2010-07-11 11:38:30 ----R---- C:\Windows\RtlExUpd.dll
2010-07-11 11:37:40 ----D---- C:\Program Files\Realtek
2010-07-11 11:35:59 ----A---- C:\Windows\DIFxAPI.dll
2010-07-11 11:35:26 ----A---- C:\Windows\HideWin.exe
2010-07-06 11:06:30 ----A---- C:\Windows\IsUninst.exe
2010-07-06 11:01:28 ----D---- C:\Program Files\Mafia
2010-07-02 10:35:13 ----D---- C:\Program Files\ICQ7.2

======List of files/folders modified in the last 1 months======

2010-07-29 15:16:28 ----D---- C:\Windows\Temp
2010-07-29 15:16:26 ----RD---- C:\Program Files
2010-07-29 15:14:50 ----SHD---- C:\System Volume Information
2010-07-29 15:06:54 ----D---- C:\Users\Jakub\AppData\Roaming\Azureus
2010-07-29 15:06:53 ----D---- C:\Windows
2010-07-29 15:05:35 ----D---- C:\Windows\system32\config
2010-07-29 15:05:31 ----D---- C:\Windows\winsxs
2010-07-29 14:55:30 ----SHD---- C:\Windows\Installer
2010-07-29 14:55:21 ----D---- C:\Windows\System32
2010-07-29 14:50:27 ----D---- C:\Program Files\Common Files\Akamai
2010-07-29 14:45:15 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2010-07-29 14:15:44 ----D---- C:\Windows\system32\catroot2
2010-07-29 14:15:08 ----D---- C:\Windows\system32\DriverStore
2010-07-29 14:15:08 ----D---- C:\Windows\system32\catroot
2010-07-29 14:15:08 ----D---- C:\Windows\inf
2010-07-29 14:11:27 ----D---- C:\Program Files\Common Files
2010-07-29 14:09:54 ----D---- C:\Windows\system32\drivers
2010-07-29 13:58:36 ----HD---- C:\ProgramData
2010-07-29 13:16:54 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2010-07-29 13:16:47 ----D---- C:\Users\Jakub\AppData\Roaming\dvdcss
2010-07-29 13:15:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-07-29 11:45:52 ----D---- C:\Users\Jakub\AppData\Roaming\ICQ
2010-07-29 11:45:23 ----D---- C:\Users\Jakub\AppData\Roaming\skypePM
2010-07-28 20:33:28 ----D---- C:\Windows\Minidump
2010-07-28 20:33:28 ----D---- C:\Windows\debug
2010-07-28 11:46:18 ----D---- C:\Users\Jakub\AppData\Roaming\Adobe
2010-07-27 23:17:36 ----D---- C:\Windows\Prefetch
2010-07-27 01:17:37 ----D---- C:\Users\Jakub\AppData\Roaming\FileZilla
2010-07-15 01:16:06 ----D---- C:\Windows\system32\NDF
2010-07-13 23:19:36 ----RSD---- C:\Windows\assembly
2010-07-13 23:19:35 ----D---- C:\Program Files\Microsoft SDKs
2010-07-13 23:19:17 ----D---- C:\Windows\ehome
2010-07-13 22:18:17 ----SD---- C:\ProgramData\Microsoft
2010-07-12 10:30:40 ----D---- C:\Windows\system32\drivers\etc
2010-07-11 22:13:42 ----D---- C:\Windows\system32\Tasks
2010-07-11 21:49:33 ----D---- C:\Temp
2010-07-11 11:38:39 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-06 11:26:40 ----D---- C:\Program Files\Common Files\Steam
2010-07-02 22:27:09 ----D---- C:\Users\Jakub\AppData\Roaming\Winamp
2010-07-02 01:12:15 ----D---- C:\Program Files\Opera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-01-18 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 easdrv;easdrv; C:\Windows\system32\DRIVERS\easdrv.sys [2008-03-01 29704]
R1 epfwtdi;epfwtdi; C:\Windows\system32\DRIVERS\epfwtdi.sys [2008-03-01 54280]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2009-12-16 9968]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2009-12-16 74480]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 eamon;EAMON; C:\Windows\system32\DRIVERS\eamon.sys [2008-03-01 39944]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2008-03-01 71176]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2008-03-01 30728]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-12 1951000]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-02 139776]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 a59b7ynd;a59b7ynd; C:\Windows\system32\drivers\a59b7ynd.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\Jakub\AppData\Local\Temp\YIXEFA0.tmp []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-07-11 25280]
S3 mod7700;DiBcom based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys [2007-07-13 543232]
S3 MODRC;DiBcom Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys [2007-07-11 13824]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2009-12-16 7408]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 vsbus;Virtual Serial Bus Enumerator; C:\Windows\system32\DRIVERS\vsb.sys [2008-07-24 15264]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\Windows\System32\DRIVERS\vserial.sys [2008-07-24 47744]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S4 RsFx0102;RsFx0102 Driver; C:\Windows\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2007-12-21 468224]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-11 40999448]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-27 215656]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 icas;iTALC Client; C:\Program Files\iTALC\ica.exe -service []
S2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld --defaults-file=C:\Program Files\MySQL\MySQL Server 5.1\my.ini MySQL []
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2008-03-01 19200]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-12-19 655624]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-07-05 395048]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]

-----------------EOF-----------------

[vyosek]

Zdravim, pekny podvecer preji a vitam Vas u nas na foru

Odstrante prosim log z

Kód: Vybrat vše

 spatne se to lusti a boli z toho i oci, dekuji...

Co jsem videl, tak pouzivate ESS coz je balik all in one (antivir, fw, antispyware, antispam atd...) takze je zbytecne mit kerio a SAS, ba naopak tu muze skodit jelikoz dochazi ke stretu rez. stitu - o boji vice "anti" mate clanek zde http://www.viry.cz/forum/viewtopic.php?f=29&t=2780

[Sunshinekx]

Děkuju za přivítání. Já jsme zvyklý právě na ten BBCode zvyklý a přijde mi to v tom přehlednější, ovšem proti gustu žádný dišputát, proto code odstraním.
Jo, o tom boji vím už dlouho dobu. Já mam u ESETa personal FW vypnutý, ale AntiSpyware vypnout nejde, jelikož je součást Antiviru.
Ovšem je tu rpoblém, že já jinému AV nevěřím. A zase na druhou stranu víc věřím Keriu a SAS, než balíčkům co jsou v ESETu.
Můžete doporučit nějakou jinou kombinace, třeba co používáte Vy. Jinak log vypadá v pořádku?

[vyosek]

Prehlednejsi mozna, je to oddelene, ale na oci je co hruza

Me na ntb bezi ESS + cca jednou za mesic udelam sken mbam a SAS, jinak nemam duvod neverit belickum co ESS ma...
Na rodinnem pc mi bezi avast + ZoneAlarm + SAS - asi jedna z nejlepsich free kombinace zabezpeceni...

Pokud chcete balicek all in one a placeny tak doporucuji NIS ci KIS nebo ESS. Myslim ze bych asi vyzvihl NIS...
Jinak prehled zabezpeceni mate od kolegy james008 zde http://www.viry.cz/forum/viewtopic.php?f=29&t=6152

Otevrete si poznamkovy blok

• Start->spustit->notepad
• Vlozte text nize

• Kód: Vybrat vše

  Windows Registry Editor Version 5.00
  
  [HKCU\Software\Microsoft\Internet Explorer\Main]
  "Start Page"="http://www.seznam.cz/"
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "NeroFilterCheck"=-
  "SunJavaUpdateSched"=-
  "AdobeCS4ServiceManager"=-
  "Adobe Reader Speed Launcher"=-
  "Adobe ARM"=-
  "SystemKey"=-
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "AdobeBridge"=-

• Soubor ulozte jako oprava.reg
• Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
• 
• Zavrit notepad a spustit oprava.reg
• Pripadny dotaz na zmenu registru potvrdte
• Okno jen problikne a opravi regsitry - soubor muzete smazat

Jinak log vypada na havet OK, jsou s PC nejake problemy

[Sunshinekx]

Dobře, registry opravené, děkuji.
Nortonu se nebráním a už dlouho nad ním uvažuji. Já taky zatim nemam duvod nevěřit balíčkum od ESS, jen mi přijde lepší mít program, který se zaobíra jen jednou problematikou. Kdybych to měl přirovnat (firewall od ESS a Kerio), tak když mam problémy například s ekzémem, tak víc budu věřit dermatologovi, imunologovi (Kerio) než svému praktickému lékařovi (ESS firewall).

U počítače jsem po tom čištění zatím žádné problémy nepostřehl, snad jen pomále spouštění. Ovšem to bude tim, že já mam bordel v procesech a službách po spuštění, které už asi měsíc čistím (typická lenost ).

A kdybych se měl rozhodnout, je lepší balíček od Nortonu nebo ta free kombinace

[vyosek]

Norton patri mezi spicku ale je placeny a pokud byste se rozhodl jak nekteri zde na foru crackovat antivir, tak Vam na rovinu rikam ze cracknuty antivir je spise vir nez anti...Pokud se Vam nechce cpat co zabezpeceni prasule, tak free kombinace...

ESS ma docela slusne vysledky ve vsech oblastech (AV, FW i AS).

Nejake kravoviny spoustene po startu jsem Vam omezil

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaru
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za 14 dni

[Sunshinekx]

Samozřejmě, antivr je jedna z mála věcí co platím. Takže nikomu neuškodim, když zůstanu u ESS a sem tam udělam kontrolu SAS (v tom případě ani nemusí být zapnutý). Jinak jsou nějaká rizika, když zůstane SAS zapnutý? Jo a ještě když jste to nakousnul s tim crcknutym AV, už mi to pár lidí říkalo že to pak je spíš vir, ovšem nikdo mi zatím neřekl jakto je možný. Přece aktualizace jsou, problémy odesílá.
Jo a děkuju za typ na programy, o tom programu co maže T(E)MP soubory jsme nevěděl, děkuju ale Ccleaner už nějakej ten rok používám ale i přesto děkuji.

[vyosek]

Jo jenze ten AV je necim cracknuty a to je havet, samozrejme je tak udelana aby ji AV nedetekoval a ona si tak muze pachat skody v PC...
SAS nema rezidentni stit (ve free verzi) takze by riziko nemelo byt, ale zas na co ho mit zapnuty kdyz nic nedela - zbytecne bere pamet...
Zustal bych u ESS, pokud chcete tak u i u Keria a obcas udelal sken SASem a pripadne sem zasel na preventivku TFC je dobra vecicka, umi to pekne procistit...

Nemate zac, rad jsem pomohl Zase nekdy