log je pre motji

[Kovas]

Môžem hodnoty :

O4 - Global Startup: Ashampoo Magic Defrag.lnk.disabled
O4 - Global Startup: GammaTray.lnk.disabled
O4 - Global Startup: NCProTray.lnk.disabled

fixnúť v HJT, alebo je aj iný nástroj na fixnutie?

[motji]

Mrknu na to , můžu Vás poprosit o nový log ze Rsitu?

[Kovas]

Tu je log z RSIT

Logfile of random's system information tool 1.08 (written by random/random)
Run by Kováčik at 2010-10-19 22:23:15
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (50%) free of 45 GB
Total RAM: 1023 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:23:43, on 19.10.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\oodtray.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\oodag.exe
D:\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\Programy\totalcmd\TOTALCMD.EXE
D:\Instal\RSIT.exe
C:\Program Files\trend micro\Kováčik.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programy\Abdobereader\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: Reminder-cor40212.lnk.disabled
O4 - Global Startup: Ashampoo Magic Defrag.lnk.disabled
O4 - Global Startup: GammaTray.lnk.disabled
O4 - Global Startup: NCProTray.lnk.disabled
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AshampooDefragService - Unknown owner - D:\Programy\Ashampoo Magic Defrag\bin\aDefragService.exe (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MagicTuneEngine - Samsung Electronics, Inc. - (no file)
O23 - Service: Machine Debug Manager (MDM) - Samsung Electronics, Inc. - (no file)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: XIII Century Drivers Auto Removal (pr2aqn8b) (pr2aqn8b) - Cenega Czech - C:\WINDOWS\system32\pr2aqn8b.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - D:\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 6487 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2009-11-25 202080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-04-17 323904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-03 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-08-04 343112]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2009-11-25 1496408]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"=C:\WINDOWS\system32\oodtray.exe [2009-02-25 2553088]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"Adobe Reader Speed Launcher"=D:\Programy\Abdobereader\Reader\Reader_sl.exe [2010-06-20 35760]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Ashampoo Magic Defrag.lnk.disabled - D:\Programy\Ashampoo Magic Defrag\bin\aDefragCtrl.exe
GammaTray.lnk.disabled - C:\Program Files\MagicTune Premium\GammaTray.exe
NCProTray.lnk.disabled - C:\Program Files\SEC\Natural Color Pro\NCProTray.exe
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe

C:\Documents and Settings\Kováčik\Nabídka Start\Programy\Po spuštění
Reminder-cor40212.lnk.disabled - D:\Programy\Corel\Graphics 9\Register\Remind32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\Stano\Torent\uTorrent\utorrent.exe"="D:\Stano\Torent\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"D:\Game\Return to Castle Wolfenstein\WolfMP.exe"="D:\Game\Return to Castle Wolfenstein\WolfMP.exe:*:Enabled:WolfMP"
"D:\Game\Call of Duty 2\CoD2MP_s.exe"="D:\Game\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"D:\Game\Call of duty\CoDMP.exe"="D:\Game\Call of duty\CoDMP.exe:*:Disabled:CoDMP"
"D:\Game\Age of Empire\Age Of Empire 2\empires2.exe"="D:\Game\Age of Empire\Age Of Empire 2\empires2.exe:*:Disabled:Age of Empires II"
"D:\Game\Mooha Assault\MOHAA.EXE"="D:\Game\Mooha Assault\MOHAA.EXE:*:Disabled:Medal of Honor Allied Assault"
"D:\Game\Medal of honor\MOHAA.exe"="D:\Game\Medal of honor\MOHAA.exe:*:Disabled:Medal of Honor Allied Assault"
"D:\Game\Mooha Assault\moh_spearhead_server.exe"="D:\Game\Mooha Assault\moh_spearhead_server.exe:*:Disabled:Medal of Honor Allied Assault(tm) Spearhead"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MagicTune Premium\MagicTune.exe"="C:\Program Files\MagicTune Premium\MagicTune.exe:*:Disabled:MagicTune"
"D:\Game\XIII CENTURY\engine.exe"="D:\Game\XIII CENTURY\engine.exe:*:Disabled:engine"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Game\SNIPER\Sniper Elite\SniperElite.exe"="D:\Game\SNIPER\Sniper Elite\SniperElite.exe:*:Enabled:SniperElite"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Game\Blitzkrieg\Bin\Game.exe"="D:\Game\Blitzkrieg\Bin\Game.exe:*:Enabled:Game"
"D:\Game\airborne\EMPIRESX.EXE"="D:\Game\airborne\EMPIRESX.EXE:*:Enabled:Age of Empires, the Rise of Rome"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-10-19 16:16:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo Downloader
2010-10-17 10:02:39 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-10-17 10:02:35 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-10-17 10:02:35 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-10-17 00:31:22 ----D---- C:\Program Files\trend micro
2010-10-17 00:31:21 ----D---- C:\rsit
2010-10-14 13:27:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-14 13:27:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-14 13:27:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-14 13:26:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-14 13:26:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-14 13:26:39 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-14 13:26:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-14 13:22:15 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-14 13:22:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-10-11 01:51:01 ----AD---- C:\Kaspersky Rescue Disk 10.0
2010-10-10 15:42:36 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2010-10-10 15:42:35 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2010-10-10 15:42:35 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2010-10-10 15:42:34 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2010-10-10 15:42:33 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2010-10-10 15:42:33 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2010-10-10 15:42:33 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2010-10-10 15:42:17 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-10-10 15:42:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-10-10 15:39:40 ----ASH---- C:\hiberfil.sys
2010-09-30 19:35:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$

======List of files/folders modified in the last 1 months======

2010-10-19 22:21:32 ----D---- C:\Program Files\SeaMonkey
2010-10-19 20:29:27 ----D---- C:\WINDOWS\Temp
2010-10-19 18:10:40 ----D---- C:\WINDOWS\Prefetch
2010-10-19 16:31:55 ----A---- C:\WINDOWS\wincmd.ini
2010-10-19 16:25:07 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-10-19 16:21:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-10-18 22:44:15 ----A---- C:\WINDOWS\VPlayer.INI
2010-10-18 22:44:11 ----A---- C:\WINDOWS\NeroDigital.ini
2010-10-18 15:11:03 ----SHD---- C:\System Volume Information
2010-10-18 15:11:03 ----D---- C:\WINDOWS\system32\Restore
2010-10-17 10:02:39 ----D---- C:\WINDOWS\system32\drivers
2010-10-17 10:02:35 ----RD---- C:\Program Files
2010-10-17 08:58:54 ----D---- C:\WINDOWS
2010-10-17 00:44:49 ----D---- C:\WINDOWS\system32\CatRoot2
2010-10-17 00:21:25 ----D---- C:\WINDOWS\Debug
2010-10-15 09:22:07 ----D---- C:\WINDOWS\system32
2010-10-14 13:27:44 ----HD---- C:\WINDOWS\inf
2010-10-14 13:27:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-14 13:27:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-14 13:27:01 ----D---- C:\WINDOWS\WinSxS
2010-10-14 13:26:09 ----D---- C:\Program Files\Internet Explorer
2010-10-14 13:25:57 ----D---- C:\WINDOWS\ie8updates
2010-10-14 13:22:25 ----A---- C:\WINDOWS\system32\MRT.exe
2010-10-14 11:21:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2010-10-14 11:05:38 ----A---- C:\WINDOWS\win.ini
2010-10-12 10:40:36 ----D---- C:\Program Files\Mozilla Thunderbird
2010-10-10 15:44:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-10 15:42:28 ----SHD---- C:\WINDOWS\Installer
2010-10-10 15:42:28 ----D---- C:\Config.Msi
2010-10-10 15:42:08 ----D---- C:\Program Files\Alwil Software
2010-10-10 15:35:25 ----SHD---- C:\RECYCLER
2010-10-02 17:43:46 ----D---- C:\WINDOWS\Microsoft.NET
2010-10-02 17:43:43 ----RSD---- C:\WINDOWS\assembly
2010-09-28 12:38:35 ----A---- C:\AILog.txt

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 imagedrv;imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [2004-03-02 5504]
R0 imagesrv;imagesrv; C:\WINDOWS\system32\DRIVERS\imagesrv.sys [2004-03-02 125184]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 pe3aqn8b;XIII Century Environment Driver (pe3aqn8b); C:\WINDOWS\system32\drivers\pe3aqn8b.sys [2008-02-11 64632]
R0 ps7aqn8b;XIII Century Synchronization Driver (ps7aqn8b); C:\WINDOWS\system32\drivers\ps7aqn8b.sys [2008-02-11 68736]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-08-25 36528]
R0 Vax347b;Vax347b; C:\WINDOWS\system32\DRIVERS\Vax347b.sys [2005-04-25 159616]
R0 Vax347s;Vax347s; C:\WINDOWS\System32\Drivers\Vax347s.sys [2004-04-30 5248]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-09-07 28880]
R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2009-12-25 82380]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 NCPro;NCPro; C:\WINDOWS\system32\drivers\MTictwl.sys [2008-01-17 13184]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-12-14 20747]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-09-07 100176]
R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-09-07 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-17 701440]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 RT73;RT73 USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2006-03-08 255232]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VIAudio;VIA AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\viaudio.sys [2003-10-20 73856]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2002-06-20 10144]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2002-06-20 39776]
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-06 691696]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\C:\WINDOWS\system32\drivers\AWRTPD.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-08-20 740992]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MagicTune;MagicTune; C:\WINDOWS\system32\drivers\MTiCtwl.sys [2008-01-17 13184]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WmFilter;Logitech WingMan HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2002-06-20 20128]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2002-06-20 5728]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-03 153376]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2009-02-25 1352960]
R2 StarWindService;StarWind iSCSI Service; D:\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
R2 UMWdf;Sada ovladačů pro uživatelský režim systému Windows; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 AshampooDefragService;AshampooDefragService; D:\Programy\Ashampoo Magic Defrag\bin\aDefragService.exe []
S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2003-06-03 282624]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2003-06-05 114688]
S2 pr2aqn8b;XIII Century Drivers Auto Removal (pr2aqn8b); C:\WINDOWS\system32\pr2aqn8b.exe [2008-02-11 411000]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2010-02-08 360192]
S4 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2010-02-08 603904]

-----------------EOF-----------------

[Kovas]

Dobrý deň prajem. Ako pozerám tak po štarte windows mi vyhadzuje až 4 hlášky nie 3, ako som uviedol na začiatku. Toto je tá štvrtá hláška :

4.JPG (25.21 KiB) Zobrazeno 678 x

[motji]

Tyhle 4 řádky fixněte v HJT, pak by již hlášky neměli vyskakovat
O4 - Startup: Reminder-cor40212.lnk.disabled
O4 - Global Startup: Ashampoo Magic Defrag.lnk.disabled
O4 - Global Startup: GammaTray.lnk.disabled
O4 - Global Startup: NCProTray.lnk.disabled




Pak smažte složku, pokud najdete
D:\Programy\Ashampoo Magic Defrag

Tyto programy používáte?
D:\Programy\Corel\Graphics 9
C:\Program Files\MagicTune Premium
C:\Program Files\SEC

[Kovas]

Tie štyri riadky som fixol v HJT. Reštartoval som PC, už sa to neobjavuje.

Tú zložku :
D:\Programy\Ashampoo Magic Defrag
tam, ale vôbec nemám a tento program som už dávnejšie odinštaloval. Žeby tam zostalo niečo v registroch?

Program
D:\Programy\Corel\Graphics 9
používam niekedy dosť často (podľa potreby).

Programy
C:\Program Files\MagicTune Premium
C:\Program Files\SEC
nepoužívam. Tieto sa mi nainštalovali keď som inštaloval asi ovládače k monitoru.

Program
C:\Program Files\MagicTune Premium
ako som skúšal mi vôbec nejde spustiť a vyskočí mi len okno

Magixc.JPG (9.6 KiB) Zobrazeno 675 x

Program
C:\Program Files\SEC
ide sputiť

[motji]

Pokud ten program nepoužíváte, tak to necháme tak. Tuším že už tu někdo psal, že mu taky zlobil.
Pokud již nemáte žádné problémy, je to vše

[Kovas]

Vďaka za pomoc

[motji]

Není zač