Dobrý den pc se mi začalo z nějakých neznámých důvodů restartovat tk zasílám výpis z modré smrti děkuji.
http://leteckaposta.cz/153781905
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Restart pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
Zkuste otestovat RAM pomocí Memtest: http://www.stahuj.centrum.cz/utility_a_ ... i/memtest/ .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
už spouštím kontrolu ale jde nastavit jen 1024 mb z 2048 nevadí to?
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
A systém vám ukazuje paměť korektně?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
ukazuje 2gb ale provedl sem test a bez chybi paměti to asi nebudou v nouzovém režimu se nič neděje žádný restart apod.
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
OK. Zkuste reinstal ovladačů k zákl. desce a gr. kartě.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
Vyzkoušel sem ,ale např při instalaci se mi restartuje pc ,zkrátka nemám šanci něco moc provést...nemůže to být virus?
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
I ten to být může, ale většinou není příčinou BSOD. Může jít také třeba o přehřátí. Dejte log z RSIT: http://viry.cz/forum/viewtopic.php?f=24&t=81939 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
přehřátím to neni v nouzovém řežimu můžu být klidně celý den a nič se neděje jen nabehnu na normal a je tam hned restart
Re: Restart pc
Tady je Log z RSIT
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šakulítko at 2010-12-15 18:13:39
Microsoft Windows 7 Ultimate
System drive C: has 5 GB (6%) free of 88 GB
Total RAM: 2047 MB (70% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:14:09, on 15.12.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Safe mode with network support
Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\Šakulítko\Desktop\RSIT.exe
C:\Program Files\trend micro\Šakulítko.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=wbst&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
O4 - HKLM\..\Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"
O4 - HKLM\..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [AutoKMS] C:\Windows\AutoKMS.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [KAutoUP.exe] C:\Program Files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe
O4 - HKLM\..\Run: [Live Update 5] C:\Program Files\MSI\Live Update 5\LU5.exe /reminder
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://G:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://G:\PROGRA~1\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/Nirvana/ ... cmatic.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\skype\skype4com.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: FLEXnet Licensing Manager for Adobe Products (FLEXnet Licensing Manager) - Unknown owner - C:\Windows\system\regsrv.exe (file missing)
O23 - Service: KDisk Update Service - Unknown owner - C:\Program Files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: NetAccelerator_Service (NetAccelerator) - ebase - C:\Program Files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
--
End of file - 9850 bytes
======Scheduled tasks folder======
C:\Windows\tasks\AWC Update.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3022679412-1551097357-3718422576-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3022679412-1551097357-3718422576-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll [2010-10-26 262144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll [2010-10-26 217088]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Launch LgDeviceAgent"=C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [2010-02-18 357448]
"CmPCIaudio"=RunDll32 CMICNFG3.cpl,CMICtrlWnd []
"Launch LCDMon"=C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2010-02-18 1573448]
"Launch LGDCore"=C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [2010-02-18 3203144]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2010-09-02 1043968]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-10-31 202256]
"facemoods"=C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe [2010-10-26 323584]
"AutoKMS"=C:\Windows\AutoKMS.exe [2010-11-11 615936]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-11-16 500208]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-10 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]
"KAutoUP.exe"=C:\Program Files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe [2010-10-21 1009688]
"Live Update 5"=C:\Program Files\MSI\Live Update 5\LU5.exe [2010-11-12 1220608]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE []
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-10-19 1983816]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-10-28 2424560]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
"Google Update"=C:\Users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-19 136176]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2010-03-16 718208]
C:\Users\Šakulítko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-12-15 18:13:39 ----D---- C:\rsit
2010-12-15 15:24:00 ----D---- C:\Program Files\NeoSmart Technologies
2010-12-15 14:45:05 ----A---- C:\Windows\AutoKMS.tmp
2010-12-15 04:02:37 ----RASH---- C:\BOOTSECT.BAK
2010-12-15 00:42:45 ----A---- C:\Windows\system32\drivers\DrvAgent32.sys
2010-12-15 00:41:08 ----D---- C:\Program Files\Lavalys
2010-12-14 20:19:51 ----A---- C:\Windows\ntbtlog.txt
2010-12-13 21:55:08 ----D---- C:\Program Files\Ontrack
2010-12-13 21:50:51 ----D---- C:\Program Files\DeadDiskDoctor
2010-12-07 23:20:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\PSpad
2010-12-07 23:20:00 ----D---- C:\Program Files\PSPad editor
2010-12-06 22:40:51 ----A---- C:\Windows\system32\Delete.bat
2010-12-06 22:12:28 ----D---- C:\Users\Šakulítko\AppData\Roaming\Cashfiesta
2010-12-05 18:15:34 ----D---- C:\Program Files\kdisk.co.kr
2010-12-05 18:12:43 ----A---- C:\Windows\system32\uninst_keepprivacy.exe
2010-12-03 00:56:12 ----D---- C:\Program Files\QuickTime
2010-12-03 00:56:10 ----D---- C:\ProgramData\Apple Computer
2010-12-03 00:55:41 ----D---- C:\Program Files\Common Files\Apple
2010-12-03 00:55:29 ----D---- C:\ProgramData\Apple
2010-12-03 00:55:29 ----D---- C:\Program Files\Apple Software Update
2010-12-03 00:51:47 ----D---- C:\Windows\system32\Adobe
2010-12-03 00:48:41 ----D---- C:\ProgramData\McAfee
2010-12-03 00:46:34 ----D---- C:\Program Files\Common Files\Java
2010-12-03 00:46:04 ----A---- C:\Windows\system32\javaws.exe
2010-12-03 00:46:04 ----A---- C:\Windows\system32\javaw.exe
2010-12-03 00:46:04 ----A---- C:\Windows\system32\java.exe
2010-11-28 21:56:28 ----D---- C:\Program Files\DVD Shrink
2010-11-24 18:10:10 ----D---- C:\Program Files\Dream Aquarium
2010-11-24 18:07:14 ----D---- C:\Windows\system32\Side 9 Screensaver dir
2010-11-24 18:05:43 ----D---- C:\Program Files\Devil Design
2010-11-21 13:07:23 ----D---- C:\Program Files\Heroes of Might and Magic III Complete
2010-11-21 00:06:18 ----A---- C:\Windows\Cmicnfg3.ini.imi
2010-11-21 00:06:18 ----A---- C:\Windows\Cmicnfg3.ini.cfg
2010-11-18 00:51:49 ----D---- C:\Users\Šakulítko\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-11-18 00:51:49 ----D---- C:\Users\Šakulítko\AppData\Roaming\Adobe Mini Bridge CS5
2010-11-17 00:31:54 ----D---- C:\ProgramData\Electronic Arts
2010-11-17 00:31:54 ----D---- C:\ProgramData\EA Core
2010-11-16 23:32:14 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-11-16 23:26:07 ----D---- C:\Program Files\Adobe Media Player
2010-11-16 23:24:24 ----D---- C:\Program Files\Common Files\Adobe AIR
======List of files/folders modified in the last 1 months======
2010-12-16 01:44:43 ----SHD---- C:\Boot
2010-12-15 18:13:52 ----D---- C:\Windows\Internet Logs
2010-12-15 18:13:41 ----D---- C:\Windows\Temp
2010-12-15 18:13:41 ----D---- C:\Program Files\trend micro
2010-12-15 17:22:14 ----D---- C:\Windows\Minidump
2010-12-15 16:51:42 ----A---- C:\grldr.bak
2010-12-15 16:42:02 ----D---- C:\Users\Šakulítko\AppData\Roaming\uTorrent
2010-12-15 16:40:43 ----D---- C:\Windows\system32\config
2010-12-15 15:40:56 ----SHD---- C:\$Recycle.Bin
2010-12-15 15:24:00 ----RD---- C:\Program Files
2010-12-15 14:45:58 ----D---- C:\Windows\Prefetch
2010-12-15 14:45:32 ----D---- C:\Windows
2010-12-15 14:45:13 ----D---- C:\Windows\system32\drivers
2010-12-15 14:38:57 ----D---- C:\Windows\System32
2010-12-15 14:35:56 ----D---- C:\Windows\system32\catroot
2010-12-15 14:35:56 ----D---- C:\Windows\inf
2010-12-15 14:35:54 ----D---- C:\Windows\system32\DriverStore
2010-12-15 14:35:52 ----SHD---- C:\System Volume Information
2010-12-15 12:59:17 ----D---- C:\Windows\system32\catroot2
2010-12-15 12:59:16 ----D---- C:\Windows\winsxs
2010-12-15 12:55:13 ----D---- C:\Windows\system32\Tasks
2010-12-15 01:03:56 ----D---- C:\Windows\pss
2010-12-15 00:58:14 ----D---- C:\Program Files\MSI
2010-12-15 00:35:40 ----A---- C:\Windows\system32\lpcio.dll
2010-12-14 22:55:06 ----D---- C:\Windows\system32\oobe
2010-12-14 21:29:24 ----D---- C:\Windows\system32\sk-SK
2010-12-14 21:29:24 ----D---- C:\Windows\system32\en-US
2010-12-14 21:29:24 ----D---- C:\Windows\system32\cs-CZ
2010-12-14 17:28:10 ----D---- C:\Windows\system32\wbem
2010-12-14 17:15:24 ----D---- C:\Program Files\Common Files\Adobe
2010-12-14 17:15:20 ----D---- C:\Program Files\CrystalDiskInfo
2010-12-14 17:15:16 ----D---- C:\Program Files\Mozilla Firefox
2010-12-14 17:15:15 ----D---- C:\Program Files\NOS
2010-12-14 17:15:12 ----D---- C:\Program Files\The KMPlayer
2010-12-14 17:15:11 ----HD---- C:\ProgramData
2010-12-14 17:15:08 ----D---- C:\Users\Šakulítko\AppData\Roaming\dvdcss
2010-12-14 17:15:06 ----D---- C:\Windows\AppCompat
2010-12-14 17:15:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\vlc
2010-12-14 17:15:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\Ventrilo
2010-12-14 17:15:04 ----SHD---- C:\Windows\Installer
2010-12-14 17:15:03 ----D---- C:\Windows\Tasks
2010-12-14 17:15:03 ----D---- C:\Windows\system32\CodeIntegrity
2010-12-14 17:15:02 ----D---- C:\Windows\registration
2010-12-13 22:45:07 ----SHD---- C:\Config.Msi
2010-12-13 22:21:48 ----D---- C:\Users\Šakulítko\AppData\Roaming\ICQ
2010-12-13 17:21:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-12-13 16:54:55 ----D---- C:\ProgramData\Adobe
2010-12-13 16:53:39 ----SD---- C:\Users\Šakulítko\AppData\Roaming\Microsoft
2010-12-13 16:53:39 ----D---- C:\Users\Šakulítko\AppData\Roaming\Adobe
2010-12-03 00:55:41 ----D---- C:\Program Files\Common Files
2010-12-03 00:50:24 ----D---- C:\Program Files\Adobe
2010-12-03 00:48:34 ----D---- C:\ProgramData\NOS
2010-12-03 00:45:54 ----A---- C:\Windows\system32\deployJava1.dll
2010-12-03 00:25:43 ----D---- C:\ProgramData\DVD Shrink
2010-12-02 21:05:21 ----RSD---- C:\Windows\assembly
2010-11-25 00:31:48 ----D---- C:\Users\Šakulítko\AppData\Roaming\Bioshock2
2010-11-21 13:06:32 ----D---- C:\Windows\debug
2010-11-21 00:06:18 ----D---- C:\Windows\system
2010-11-20 23:08:05 ----D---- C:\Windows\rescache
2010-11-17 11:46:09 ----D---- C:\Windows\system32\wdi
2010-11-17 01:52:46 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2010-11-17 01:52:32 ----D---- C:\Program Files\Common Files\microsoft shared
2010-11-16 23:26:59 ----RSD---- C:\Windows\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 videX32;videX32; C:\Windows\system32\DRIVERS\videX32.sys [2010-02-11 13976]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\Windows\system32\DRIVERS\xfilt.sys [2010-02-11 23192]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2010-05-15 461400]
R3 FETNDIS;VIA Rhine-Family Fast Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\fetnd6.sys [2009-07-13 44032]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-17 691696]
S1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
S1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
S1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 294912]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
S2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.sys [2003-07-19 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-18 4172832]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 arusb_lh;TP-LINK TL-WN821N 11N Wireless device driver; C:\Windows\system32\DRIVERS\arusb_lh.sys [2008-05-27 432640]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cmuda3;C-Media PCI Audio Interface; C:\Windows\system32\drivers\cmudax3.sys [2009-10-13 1872320]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2010-12-15 23456]
S3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
S3 FLASHSYS;FLASHSYS; \??\C:\Program Files\MSI\Live Update 4\LU4\FLASHSYS.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-08-16 25280]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-05-20 30576]
S3 MSI_DVD_010507;MSI_DVD_010507; \??\C:\Program Files\MSI\Live Update 5\DVDSYS32_100507.sys [2010-05-10 22328]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files\MSI\Live Update 5\msibios32_100507.sys [2010-05-10 25912]
S3 MSI_VGASYS_010507;MSI_VGASYS_010507; \??\C:\Program Files\MSI\Live Update 5\VGASYS32_100507.sys [2010-05-10 16696]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys [2010-10-20 7680]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 29696]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
S3 vpcuxd;Služba zástupné procedury virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2010-09-02 2435592]
S2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe []
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
S2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 FLEXnet Licensing Manager;FLEXnet Licensing Manager for Adobe Products; C:\Windows\system\regsrv.exe []
S2 KDisk Update Service;KDisk Update Service; C:\Program Files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe [2010-10-21 1009688]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2003-04-18 8192]
S2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
S2 NetAccelerator;NetAccelerator_Service; C:\Program Files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe [2010-10-21 147968]
S2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-08-04 75064]
S2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-11-01 407336]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-08 1343400]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šakulítko at 2010-12-15 18:13:39
Microsoft Windows 7 Ultimate
System drive C: has 5 GB (6%) free of 88 GB
Total RAM: 2047 MB (70% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:14:09, on 15.12.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Safe mode with network support
Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\Šakulítko\Desktop\RSIT.exe
C:\Program Files\trend micro\Šakulítko.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=wbst&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
O4 - HKLM\..\Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"
O4 - HKLM\..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [AutoKMS] C:\Windows\AutoKMS.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [KAutoUP.exe] C:\Program Files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe
O4 - HKLM\..\Run: [Live Update 5] C:\Program Files\MSI\Live Update 5\LU5.exe /reminder
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://G:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://G:\PROGRA~1\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/Nirvana/ ... cmatic.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\skype\skype4com.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: FLEXnet Licensing Manager for Adobe Products (FLEXnet Licensing Manager) - Unknown owner - C:\Windows\system\regsrv.exe (file missing)
O23 - Service: KDisk Update Service - Unknown owner - C:\Program Files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: NetAccelerator_Service (NetAccelerator) - ebase - C:\Program Files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
--
End of file - 9850 bytes
======Scheduled tasks folder======
C:\Windows\tasks\AWC Update.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3022679412-1551097357-3718422576-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3022679412-1551097357-3718422576-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll [2010-10-26 262144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll [2010-10-26 217088]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Launch LgDeviceAgent"=C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [2010-02-18 357448]
"CmPCIaudio"=RunDll32 CMICNFG3.cpl,CMICtrlWnd []
"Launch LCDMon"=C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2010-02-18 1573448]
"Launch LGDCore"=C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [2010-02-18 3203144]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2010-09-02 1043968]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-10-31 202256]
"facemoods"=C:\Program Files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe [2010-10-26 323584]
"AutoKMS"=C:\Windows\AutoKMS.exe [2010-11-11 615936]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-11-16 500208]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-10 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]
"KAutoUP.exe"=C:\Program Files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe [2010-10-21 1009688]
"Live Update 5"=C:\Program Files\MSI\Live Update 5\LU5.exe [2010-11-12 1220608]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE []
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-10-19 1983816]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-10-28 2424560]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
"Google Update"=C:\Users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-19 136176]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2010-03-16 718208]
C:\Users\Šakulítko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-12-15 18:13:39 ----D---- C:\rsit
2010-12-15 15:24:00 ----D---- C:\Program Files\NeoSmart Technologies
2010-12-15 14:45:05 ----A---- C:\Windows\AutoKMS.tmp
2010-12-15 04:02:37 ----RASH---- C:\BOOTSECT.BAK
2010-12-15 00:42:45 ----A---- C:\Windows\system32\drivers\DrvAgent32.sys
2010-12-15 00:41:08 ----D---- C:\Program Files\Lavalys
2010-12-14 20:19:51 ----A---- C:\Windows\ntbtlog.txt
2010-12-13 21:55:08 ----D---- C:\Program Files\Ontrack
2010-12-13 21:50:51 ----D---- C:\Program Files\DeadDiskDoctor
2010-12-07 23:20:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\PSpad
2010-12-07 23:20:00 ----D---- C:\Program Files\PSPad editor
2010-12-06 22:40:51 ----A---- C:\Windows\system32\Delete.bat
2010-12-06 22:12:28 ----D---- C:\Users\Šakulítko\AppData\Roaming\Cashfiesta
2010-12-05 18:15:34 ----D---- C:\Program Files\kdisk.co.kr
2010-12-05 18:12:43 ----A---- C:\Windows\system32\uninst_keepprivacy.exe
2010-12-03 00:56:12 ----D---- C:\Program Files\QuickTime
2010-12-03 00:56:10 ----D---- C:\ProgramData\Apple Computer
2010-12-03 00:55:41 ----D---- C:\Program Files\Common Files\Apple
2010-12-03 00:55:29 ----D---- C:\ProgramData\Apple
2010-12-03 00:55:29 ----D---- C:\Program Files\Apple Software Update
2010-12-03 00:51:47 ----D---- C:\Windows\system32\Adobe
2010-12-03 00:48:41 ----D---- C:\ProgramData\McAfee
2010-12-03 00:46:34 ----D---- C:\Program Files\Common Files\Java
2010-12-03 00:46:04 ----A---- C:\Windows\system32\javaws.exe
2010-12-03 00:46:04 ----A---- C:\Windows\system32\javaw.exe
2010-12-03 00:46:04 ----A---- C:\Windows\system32\java.exe
2010-11-28 21:56:28 ----D---- C:\Program Files\DVD Shrink
2010-11-24 18:10:10 ----D---- C:\Program Files\Dream Aquarium
2010-11-24 18:07:14 ----D---- C:\Windows\system32\Side 9 Screensaver dir
2010-11-24 18:05:43 ----D---- C:\Program Files\Devil Design
2010-11-21 13:07:23 ----D---- C:\Program Files\Heroes of Might and Magic III Complete
2010-11-21 00:06:18 ----A---- C:\Windows\Cmicnfg3.ini.imi
2010-11-21 00:06:18 ----A---- C:\Windows\Cmicnfg3.ini.cfg
2010-11-18 00:51:49 ----D---- C:\Users\Šakulítko\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-11-18 00:51:49 ----D---- C:\Users\Šakulítko\AppData\Roaming\Adobe Mini Bridge CS5
2010-11-17 00:31:54 ----D---- C:\ProgramData\Electronic Arts
2010-11-17 00:31:54 ----D---- C:\ProgramData\EA Core
2010-11-16 23:32:14 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-11-16 23:26:07 ----D---- C:\Program Files\Adobe Media Player
2010-11-16 23:24:24 ----D---- C:\Program Files\Common Files\Adobe AIR
======List of files/folders modified in the last 1 months======
2010-12-16 01:44:43 ----SHD---- C:\Boot
2010-12-15 18:13:52 ----D---- C:\Windows\Internet Logs
2010-12-15 18:13:41 ----D---- C:\Windows\Temp
2010-12-15 18:13:41 ----D---- C:\Program Files\trend micro
2010-12-15 17:22:14 ----D---- C:\Windows\Minidump
2010-12-15 16:51:42 ----A---- C:\grldr.bak
2010-12-15 16:42:02 ----D---- C:\Users\Šakulítko\AppData\Roaming\uTorrent
2010-12-15 16:40:43 ----D---- C:\Windows\system32\config
2010-12-15 15:40:56 ----SHD---- C:\$Recycle.Bin
2010-12-15 15:24:00 ----RD---- C:\Program Files
2010-12-15 14:45:58 ----D---- C:\Windows\Prefetch
2010-12-15 14:45:32 ----D---- C:\Windows
2010-12-15 14:45:13 ----D---- C:\Windows\system32\drivers
2010-12-15 14:38:57 ----D---- C:\Windows\System32
2010-12-15 14:35:56 ----D---- C:\Windows\system32\catroot
2010-12-15 14:35:56 ----D---- C:\Windows\inf
2010-12-15 14:35:54 ----D---- C:\Windows\system32\DriverStore
2010-12-15 14:35:52 ----SHD---- C:\System Volume Information
2010-12-15 12:59:17 ----D---- C:\Windows\system32\catroot2
2010-12-15 12:59:16 ----D---- C:\Windows\winsxs
2010-12-15 12:55:13 ----D---- C:\Windows\system32\Tasks
2010-12-15 01:03:56 ----D---- C:\Windows\pss
2010-12-15 00:58:14 ----D---- C:\Program Files\MSI
2010-12-15 00:35:40 ----A---- C:\Windows\system32\lpcio.dll
2010-12-14 22:55:06 ----D---- C:\Windows\system32\oobe
2010-12-14 21:29:24 ----D---- C:\Windows\system32\sk-SK
2010-12-14 21:29:24 ----D---- C:\Windows\system32\en-US
2010-12-14 21:29:24 ----D---- C:\Windows\system32\cs-CZ
2010-12-14 17:28:10 ----D---- C:\Windows\system32\wbem
2010-12-14 17:15:24 ----D---- C:\Program Files\Common Files\Adobe
2010-12-14 17:15:20 ----D---- C:\Program Files\CrystalDiskInfo
2010-12-14 17:15:16 ----D---- C:\Program Files\Mozilla Firefox
2010-12-14 17:15:15 ----D---- C:\Program Files\NOS
2010-12-14 17:15:12 ----D---- C:\Program Files\The KMPlayer
2010-12-14 17:15:11 ----HD---- C:\ProgramData
2010-12-14 17:15:08 ----D---- C:\Users\Šakulítko\AppData\Roaming\dvdcss
2010-12-14 17:15:06 ----D---- C:\Windows\AppCompat
2010-12-14 17:15:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\vlc
2010-12-14 17:15:06 ----D---- C:\Users\Šakulítko\AppData\Roaming\Ventrilo
2010-12-14 17:15:04 ----SHD---- C:\Windows\Installer
2010-12-14 17:15:03 ----D---- C:\Windows\Tasks
2010-12-14 17:15:03 ----D---- C:\Windows\system32\CodeIntegrity
2010-12-14 17:15:02 ----D---- C:\Windows\registration
2010-12-13 22:45:07 ----SHD---- C:\Config.Msi
2010-12-13 22:21:48 ----D---- C:\Users\Šakulítko\AppData\Roaming\ICQ
2010-12-13 17:21:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-12-13 16:54:55 ----D---- C:\ProgramData\Adobe
2010-12-13 16:53:39 ----SD---- C:\Users\Šakulítko\AppData\Roaming\Microsoft
2010-12-13 16:53:39 ----D---- C:\Users\Šakulítko\AppData\Roaming\Adobe
2010-12-03 00:55:41 ----D---- C:\Program Files\Common Files
2010-12-03 00:50:24 ----D---- C:\Program Files\Adobe
2010-12-03 00:48:34 ----D---- C:\ProgramData\NOS
2010-12-03 00:45:54 ----A---- C:\Windows\system32\deployJava1.dll
2010-12-03 00:25:43 ----D---- C:\ProgramData\DVD Shrink
2010-12-02 21:05:21 ----RSD---- C:\Windows\assembly
2010-11-25 00:31:48 ----D---- C:\Users\Šakulítko\AppData\Roaming\Bioshock2
2010-11-21 13:06:32 ----D---- C:\Windows\debug
2010-11-21 00:06:18 ----D---- C:\Windows\system
2010-11-20 23:08:05 ----D---- C:\Windows\rescache
2010-11-17 11:46:09 ----D---- C:\Windows\system32\wdi
2010-11-17 01:52:46 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2010-11-17 01:52:32 ----D---- C:\Program Files\Common Files\microsoft shared
2010-11-16 23:26:59 ----RSD---- C:\Windows\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 videX32;videX32; C:\Windows\system32\DRIVERS\videX32.sys [2010-02-11 13976]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\Windows\system32\DRIVERS\xfilt.sys [2010-02-11 23192]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2010-05-15 461400]
R3 FETNDIS;VIA Rhine-Family Fast Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\fetnd6.sys [2009-07-13 44032]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-17 691696]
S1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
S1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
S1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 294912]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
S2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.sys [2003-07-19 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-18 4172832]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 arusb_lh;TP-LINK TL-WN821N 11N Wireless device driver; C:\Windows\system32\DRIVERS\arusb_lh.sys [2008-05-27 432640]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cmuda3;C-Media PCI Audio Interface; C:\Windows\system32\drivers\cmudax3.sys [2009-10-13 1872320]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2010-12-15 23456]
S3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
S3 FLASHSYS;FLASHSYS; \??\C:\Program Files\MSI\Live Update 4\LU4\FLASHSYS.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-08-16 25280]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-05-20 30576]
S3 MSI_DVD_010507;MSI_DVD_010507; \??\C:\Program Files\MSI\Live Update 5\DVDSYS32_100507.sys [2010-05-10 22328]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files\MSI\Live Update 5\msibios32_100507.sys [2010-05-10 25912]
S3 MSI_VGASYS_010507;MSI_VGASYS_010507; \??\C:\Program Files\MSI\Live Update 5\VGASYS32_100507.sys [2010-05-10 16696]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys [2010-10-20 7680]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 29696]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
S3 vpcuxd;Služba zástupné procedury virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2010-09-02 2435592]
S2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe []
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
S2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 FLEXnet Licensing Manager;FLEXnet Licensing Manager for Adobe Products; C:\Windows\system\regsrv.exe []
S2 KDisk Update Service;KDisk Update Service; C:\Program Files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe [2010-10-21 1009688]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2003-04-18 8192]
S2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
S2 NetAccelerator;NetAccelerator_Service; C:\Program Files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe [2010-10-21 147968]
S2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-08-04 75064]
S2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-11-01 407336]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-08 1343400]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
Ještě porposím o log z ComboFix.
nesouhlasí z ce s tvrzením, že problém nemůže být způsoben přehřátím. V NR má PC daleko menší spotřebu a tedy i produkci tepla.Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
ano to jistě ale pc se nezahřeje během 1 min 
aby se pak hned restartoval jak se dostanu do normalu tk hned restart myslím že by to bylo po nějaké delší době např půl hod
aby se pak hned restartoval jak se dostanu do normalu tk hned restart myslím že by to bylo po nějaké delší době např půl hod Re: Restart pc
ComboFix 10-12-14.07 - Šakulítko 15.12.2010 19:07:54.1.2 - x86 NETWORK
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2047.1368 [GMT 1:00]
Spuštěný z: c:\users\Šakulítko\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: ZoneAlarm Firewall *Disabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\facemoods.com
c:\program files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoods.crx
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoods.png
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsApp.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsEng.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\uninstall.exe
c:\windows\system32\uninst_keepprivacy.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-15 do 2010-12-15 )))))))))))))))))))))))))))))))
.
2010-12-15 18:12 . 2010-12-15 18:12 -------- d-----w- c:\users\Šakulítko\AppData\Local\temp
2010-12-15 18:12 . 2010-12-15 18:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-12-15 17:13 . 2010-12-15 17:14 -------- d-----w- C:\rsit
2010-12-15 14:27 . 2010-12-15 14:27 -------- d-----w- c:\users\Šakulítko\AppData\Local\NeoSmart_Technologies
2010-12-15 14:24 . 2010-12-15 14:24 -------- d-----w- c:\program files\NeoSmart Technologies
2010-12-15 13:45 . 2010-12-15 13:45 0 ----a-w- c:\windows\AutoKMS.tmp
2010-12-14 23:42 . 2010-12-14 23:42 -------- d-----w- c:\users\Šakulítko\AppData\Local\eSupport.com
2010-12-14 23:42 . 2010-12-14 23:42 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-12-14 23:41 . 2010-12-14 23:41 -------- d-----w- c:\program files\Lavalys
2010-12-14 17:03 . 2010-09-09 22:52 6084944 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{55CE16C1-F1FD-4B36-9BD8-AC60350ECF6C}\mpengine.dll
2010-12-13 20:55 . 2010-12-13 21:45 -------- d-----w- c:\program files\Ontrack
2010-12-13 20:50 . 2010-12-14 16:15 -------- d-----w- c:\program files\DeadDiskDoctor
2010-12-07 22:20 . 2010-12-14 16:15 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\PSpad
2010-12-07 22:20 . 2010-12-14 16:15 -------- d-----w- c:\program files\PSPad editor
2010-12-06 21:40 . 2010-12-06 21:40 164 ----a-w- c:\windows\system32\Delete.bat
2010-12-06 21:12 . 2010-12-06 21:40 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\Cashfiesta
2010-12-05 17:15 . 2010-12-05 17:15 -------- d-----w- c:\program files\kdisk.co.kr
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin7.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin6.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Internet Explorer\plugins\npqtplugin7.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Internet Explorer\plugins\npqtplugin6.dll
2010-12-02 23:56 . 2010-12-14 16:15 -------- d-----w- c:\program files\QuickTime
2010-12-02 23:56 . 2010-12-14 16:15 -------- d-----w- c:\programdata\Apple Computer
2010-12-02 23:55 . 2010-12-02 23:55 -------- d-----w- c:\program files\Common Files\Apple
2010-12-02 23:55 . 2010-12-02 23:55 -------- d-----w- c:\users\Šakulítko\AppData\Local\Apple
2010-12-02 23:55 . 2010-12-14 16:15 -------- d-----w- c:\program files\Apple Software Update
2010-12-02 23:55 . 2010-12-14 16:15 -------- d-----w- c:\programdata\Apple
2010-12-02 23:51 . 2010-12-14 16:15 -------- d-----w- c:\windows\system32\Adobe
2010-12-02 23:48 . 2010-12-02 23:48 -------- d-----w- c:\programdata\McAfee
2010-12-02 23:46 . 2010-12-02 23:46 -------- d-----w- c:\program files\Common Files\Java
2010-12-02 23:46 . 2010-12-02 23:45 472808 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2010-11-29 18:16 . 2003-07-19 01:55 10240 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\MIMFPR_N.DLL
2010-11-28 20:56 . 2010-11-28 20:56 -------- d-----w- c:\program files\DVD Shrink
2010-11-24 17:13 . 2010-11-24 17:13 4959706 ----a-w- c:\windows\system32\Ghost Girl.scr
2010-11-24 17:12 . 2010-11-24 17:12 27855746 ----a-w- c:\windows\system32\Tornado.scr
2010-11-24 17:11 . 2010-11-24 17:11 26569831 ----a-w- c:\windows\system32\Matrix.scr
2010-11-24 17:10 . 2010-11-24 17:10 25550694 ----a-w- c:\windows\system32\Green Fire.scr
2010-11-24 17:10 . 2006-10-09 11:00 94208 ----a-w- c:\windows\Dream Aquarium.scr
2010-11-24 17:10 . 2010-11-24 17:10 -------- d-----w- c:\program files\Dream Aquarium
2010-11-24 17:09 . 2010-11-24 17:09 16249841 ----a-w- c:\windows\system32\Cyper Sphere.scr
2010-11-24 17:08 . 2010-11-24 17:08 20918133 ----a-w- c:\windows\system32\Blue UV.scr
2010-11-24 17:08 . 2010-11-24 17:08 4719740 ----a-w- c:\windows\system32\Black Ghost.scr
2010-11-24 17:07 . 2010-11-24 17:07 -------- d-----w- c:\windows\system32\Side 9 Screensaver dir
2010-11-24 17:06 . 2010-11-24 17:07 520192 ----a-w- c:\windows\system32\Side 9 Screensaver.scr
2010-11-24 17:05 . 2010-11-24 17:13 -------- d-----w- c:\program files\Devil Design
2010-11-24 17:05 . 2010-11-24 17:05 13257034 ----a-w- c:\windows\system32\Alien Energy.scr
2010-11-24 17:05 . 2010-12-03 15:40 -------- d-----w- c:\users\Šakulítko\AppData\Local\Axialis
2010-11-21 12:07 . 2010-11-21 12:08 -------- d-----w- c:\program files\Heroes of Might and Magic III Complete
2010-11-17 23:51 . 2010-11-17 23:51 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-11-17 23:51 . 2010-11-17 23:51 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\Adobe Mini Bridge CS5
2010-11-16 23:31 . 2010-11-16 23:31 -------- d-----w- c:\programdata\Electronic Arts
2010-11-16 23:31 . 2010-11-16 23:31 -------- d-----w- c:\programdata\EA Core
2010-11-16 22:32 . 2010-11-17 21:43 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2010-11-16 22:26 . 2010-11-16 22:26 -------- d-----w- c:\program files\Adobe Media Player
2010-11-16 22:24 . 2010-11-16 22:24 -------- d-----w- c:\program files\Common Files\Adobe AIR
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-14 23:35 . 2010-04-04 01:48 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-12-02 23:45 . 2010-04-19 13:31 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-11 23:29 . 2010-11-11 20:46 15823872 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2010-11-11 23:29 . 2010-11-11 20:46 15823872 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2010-11-11 23:29 . 2010-11-11 20:46 107008 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2010-11-11 23:29 . 2010-11-11 20:46 107008 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2010-11-11 23:29 . 2010-11-11 20:46 786492 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2010-11-11 23:29 . 2010-11-11 20:46 786492 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2010-11-11 22:18 . 2010-11-11 22:18 615936 ----a-w- c:\windows\AutoKMS.exe
2010-11-08 18:32 . 2010-04-04 08:13 138592 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-11-08 18:31 . 2010-04-04 08:18 219128 ----a-w- c:\windows\system32\PnkBstrB.xtr
2010-11-08 18:31 . 2010-04-04 08:13 219128 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-10-31 18:50 . 2010-04-27 14:57 499712 ----a-w- c:\windows\system32\msvcp71.dll
2010-10-31 18:50 . 2010-04-27 14:57 348160 ----a-w- c:\windows\system32\msvcr71.dll
2010-10-31 16:48 . 2010-10-31 16:48 1409 ----a-w- c:\windows\QTFont.for
2010-10-23 00:01 . 2010-10-23 00:01 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-10-17 14:33 . 2010-04-04 06:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-10-14 00:36 . 2010-10-14 00:36 15451288 ----a-w- c:\windows\system32\xlive.dll
2010-10-14 00:36 . 2010-10-14 00:36 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2010-09-29 15:43 . 2010-09-29 15:43 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2010-09-29 15:43 . 2010-09-29 15:43 109144 ----a-w- c:\windows\system32\OpenAL32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-10-28 2424560]
"Google Update"="c:\users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-10-19 136176]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LgDeviceAgent"="c:\program files\Logitech\GamePanel Software\LgDevAgt.exe" [2010-02-18 357448]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2010-02-18 1573448]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2010-02-18 3203144]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-09-02 1043968]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-10-31 202256]
"AutoKMS"="c:\windows\AutoKMS.exe" [2010-11-11 615936]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-11-16 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 402432]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"KAutoUP.exe"="c:\program files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe" [2010-10-21 1009688]
"Live Update 5"="c:\program files\MSI\Live Update 5\LU5.exe" [2010-11-12 1220608]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-10-19 1983816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\users\ćakulˇtko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-10-17 691696]
R1 aswSP;aswSP; [x]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 FLEXnet Licensing Manager;FLEXnet Licensing Manager for Adobe Products;c:\windows\system\regsrv.exe [x]
R2 KDisk Update Service;KDisk Update Service;c:\program files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe [2010-10-21 1009688]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2003-04-18 8192]
R2 MLPTDR_N;MLPTDR_N;c:\windows\system32\MLPTDR_N.sys [2003-07-19 18848]
R2 NetAccelerator;NetAccelerator_Service;c:\program files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe [2010-10-21 147968]
R3 arusb_lh;TP-LINK TL-WN821N 11N Wireless device driver;c:\windows\system32\DRIVERS\arusb_lh.sys [2008-05-27 432640]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2010-12-14 23456]
R3 FLASHSYS;FLASHSYS;c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys [2010-05-20 30576]
R3 MSI_DVD_010507;MSI_DVD_010507;c:\program files\MSI\Live Update 5\DVDSYS32_100507.sys [2010-05-10 22328]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\MSI\Live Update 5\msibios32_100507.sys [2010-05-10 25912]
R3 MSI_VGASYS_010507;MSI_VGASYS_010507;c:\program files\MSI\Live Update 5\VGASYS32_100507.sys [2010-05-10 16696]
R3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files\MSI\Live Update 5\NTIOLib.sys [2010-10-20 7680]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 vpcuxd;Služba zástupné procedury virtualizace rozhraní USB;c:\windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-04-08 1343400]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - g:\progra~1\Microsoft Office\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - g:\progra~1\Microsoft Office\Office14\ONBttnIE.dll/105
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{64182481-4F71-486b-A045-B233BD0DA8FC} - c:\program files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
Toolbar-{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
HKCU-Run-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe
HKLM-Run-CmPCIaudio - CMICNFG3.cpl
HKLM-Run-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe
HKLM-Run-KONICA MINOLTA PagePro 1300WStatusDisplay - c:\windows\system32\MSTMON_N.EXE
HKLM-RunOnce-<NO NAME> - (no file)
AddRemove-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.1\uninstall.exe
AddRemove-Heroes of Might and Magic III Complete - c:\program files\3DO\Heroes 3 Complete\Heroes of Might and Magic III Complete.isu
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-3022679412-1551097357-3718422576-1001\Software\SecuROM\License information*]
"datasecu"=hex:e2,ee,e2,fe,a0,8c,05,e6,bc,a9,40,08,4d,4c,e9,55,26,40,34,3d,45,
19,77,3b,20,75,15,f1,25,86,42,04,d3,e3,f4,d6,7f,4e,13,bd,04,7b,d9,59,5a,c8,\
"rkeysecu"=hex:e5,89,76,92,47,f7,aa,bb,c2,ef,cd,6d,94,01,42,56
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-12-15 19:14:11
ComboFix-quarantined-files.txt 2010-12-15 18:14
Před spuštěním: 5 485 993 984
Po spuštění: 5 733 875 712
- - End Of File - - BEBC2F3B0476AAA2B5A622E37F23C88B
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2047.1368 [GMT 1:00]
Spuštěný z: c:\users\Šakulítko\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: ZoneAlarm Firewall *Disabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\facemoods.com
c:\program files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoods.crx
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoods.png
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsApp.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsEng.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe
c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
c:\program files\facemoods.com\facemoods\1.4.17.1\uninstall.exe
c:\windows\system32\uninst_keepprivacy.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-15 do 2010-12-15 )))))))))))))))))))))))))))))))
.
2010-12-15 18:12 . 2010-12-15 18:12 -------- d-----w- c:\users\Šakulítko\AppData\Local\temp
2010-12-15 18:12 . 2010-12-15 18:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-12-15 17:13 . 2010-12-15 17:14 -------- d-----w- C:\rsit
2010-12-15 14:27 . 2010-12-15 14:27 -------- d-----w- c:\users\Šakulítko\AppData\Local\NeoSmart_Technologies
2010-12-15 14:24 . 2010-12-15 14:24 -------- d-----w- c:\program files\NeoSmart Technologies
2010-12-15 13:45 . 2010-12-15 13:45 0 ----a-w- c:\windows\AutoKMS.tmp
2010-12-14 23:42 . 2010-12-14 23:42 -------- d-----w- c:\users\Šakulítko\AppData\Local\eSupport.com
2010-12-14 23:42 . 2010-12-14 23:42 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-12-14 23:41 . 2010-12-14 23:41 -------- d-----w- c:\program files\Lavalys
2010-12-14 17:03 . 2010-09-09 22:52 6084944 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{55CE16C1-F1FD-4B36-9BD8-AC60350ECF6C}\mpengine.dll
2010-12-13 20:55 . 2010-12-13 21:45 -------- d-----w- c:\program files\Ontrack
2010-12-13 20:50 . 2010-12-14 16:15 -------- d-----w- c:\program files\DeadDiskDoctor
2010-12-07 22:20 . 2010-12-14 16:15 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\PSpad
2010-12-07 22:20 . 2010-12-14 16:15 -------- d-----w- c:\program files\PSPad editor
2010-12-06 21:40 . 2010-12-06 21:40 164 ----a-w- c:\windows\system32\Delete.bat
2010-12-06 21:12 . 2010-12-06 21:40 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\Cashfiesta
2010-12-05 17:15 . 2010-12-05 17:15 -------- d-----w- c:\program files\kdisk.co.kr
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin7.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin6.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Internet Explorer\plugins\npqtplugin7.dll
2010-12-02 23:56 . 2010-12-02 23:56 159744 ----a-w- c:\program files\Internet Explorer\plugins\npqtplugin6.dll
2010-12-02 23:56 . 2010-12-14 16:15 -------- d-----w- c:\program files\QuickTime
2010-12-02 23:56 . 2010-12-14 16:15 -------- d-----w- c:\programdata\Apple Computer
2010-12-02 23:55 . 2010-12-02 23:55 -------- d-----w- c:\program files\Common Files\Apple
2010-12-02 23:55 . 2010-12-02 23:55 -------- d-----w- c:\users\Šakulítko\AppData\Local\Apple
2010-12-02 23:55 . 2010-12-14 16:15 -------- d-----w- c:\program files\Apple Software Update
2010-12-02 23:55 . 2010-12-14 16:15 -------- d-----w- c:\programdata\Apple
2010-12-02 23:51 . 2010-12-14 16:15 -------- d-----w- c:\windows\system32\Adobe
2010-12-02 23:48 . 2010-12-02 23:48 -------- d-----w- c:\programdata\McAfee
2010-12-02 23:46 . 2010-12-02 23:46 -------- d-----w- c:\program files\Common Files\Java
2010-12-02 23:46 . 2010-12-02 23:45 472808 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2010-11-29 18:16 . 2003-07-19 01:55 10240 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\MIMFPR_N.DLL
2010-11-28 20:56 . 2010-11-28 20:56 -------- d-----w- c:\program files\DVD Shrink
2010-11-24 17:13 . 2010-11-24 17:13 4959706 ----a-w- c:\windows\system32\Ghost Girl.scr
2010-11-24 17:12 . 2010-11-24 17:12 27855746 ----a-w- c:\windows\system32\Tornado.scr
2010-11-24 17:11 . 2010-11-24 17:11 26569831 ----a-w- c:\windows\system32\Matrix.scr
2010-11-24 17:10 . 2010-11-24 17:10 25550694 ----a-w- c:\windows\system32\Green Fire.scr
2010-11-24 17:10 . 2006-10-09 11:00 94208 ----a-w- c:\windows\Dream Aquarium.scr
2010-11-24 17:10 . 2010-11-24 17:10 -------- d-----w- c:\program files\Dream Aquarium
2010-11-24 17:09 . 2010-11-24 17:09 16249841 ----a-w- c:\windows\system32\Cyper Sphere.scr
2010-11-24 17:08 . 2010-11-24 17:08 20918133 ----a-w- c:\windows\system32\Blue UV.scr
2010-11-24 17:08 . 2010-11-24 17:08 4719740 ----a-w- c:\windows\system32\Black Ghost.scr
2010-11-24 17:07 . 2010-11-24 17:07 -------- d-----w- c:\windows\system32\Side 9 Screensaver dir
2010-11-24 17:06 . 2010-11-24 17:07 520192 ----a-w- c:\windows\system32\Side 9 Screensaver.scr
2010-11-24 17:05 . 2010-11-24 17:13 -------- d-----w- c:\program files\Devil Design
2010-11-24 17:05 . 2010-11-24 17:05 13257034 ----a-w- c:\windows\system32\Alien Energy.scr
2010-11-24 17:05 . 2010-12-03 15:40 -------- d-----w- c:\users\Šakulítko\AppData\Local\Axialis
2010-11-21 12:07 . 2010-11-21 12:08 -------- d-----w- c:\program files\Heroes of Might and Magic III Complete
2010-11-17 23:51 . 2010-11-17 23:51 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2010-11-17 23:51 . 2010-11-17 23:51 -------- d-----w- c:\users\Šakulítko\AppData\Roaming\Adobe Mini Bridge CS5
2010-11-16 23:31 . 2010-11-16 23:31 -------- d-----w- c:\programdata\Electronic Arts
2010-11-16 23:31 . 2010-11-16 23:31 -------- d-----w- c:\programdata\EA Core
2010-11-16 22:32 . 2010-11-17 21:43 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2010-11-16 22:26 . 2010-11-16 22:26 -------- d-----w- c:\program files\Adobe Media Player
2010-11-16 22:24 . 2010-11-16 22:24 -------- d-----w- c:\program files\Common Files\Adobe AIR
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-14 23:35 . 2010-04-04 01:48 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-12-02 23:45 . 2010-04-19 13:31 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-11 23:29 . 2010-11-11 20:46 15823872 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2010-11-11 23:29 . 2010-11-11 20:46 15823872 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2010-11-11 23:29 . 2010-11-11 20:46 107008 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2010-11-11 23:29 . 2010-11-11 20:46 107008 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2010-11-11 23:29 . 2010-11-11 20:46 786492 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2010-11-11 23:29 . 2010-11-11 20:46 786492 ----a-w- c:\users\Šakulítko\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2010-11-11 22:18 . 2010-11-11 22:18 615936 ----a-w- c:\windows\AutoKMS.exe
2010-11-08 18:32 . 2010-04-04 08:13 138592 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-11-08 18:31 . 2010-04-04 08:18 219128 ----a-w- c:\windows\system32\PnkBstrB.xtr
2010-11-08 18:31 . 2010-04-04 08:13 219128 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-10-31 18:50 . 2010-04-27 14:57 499712 ----a-w- c:\windows\system32\msvcp71.dll
2010-10-31 18:50 . 2010-04-27 14:57 348160 ----a-w- c:\windows\system32\msvcr71.dll
2010-10-31 16:48 . 2010-10-31 16:48 1409 ----a-w- c:\windows\QTFont.for
2010-10-23 00:01 . 2010-10-23 00:01 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-10-17 14:33 . 2010-04-04 06:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-10-14 00:36 . 2010-10-14 00:36 15451288 ----a-w- c:\windows\system32\xlive.dll
2010-10-14 00:36 . 2010-10-14 00:36 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2010-09-29 15:43 . 2010-09-29 15:43 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2010-09-29 15:43 . 2010-09-29 15:43 109144 ----a-w- c:\windows\system32\OpenAL32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-10-28 2424560]
"Google Update"="c:\users\Šakulítko\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-10-19 136176]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LgDeviceAgent"="c:\program files\Logitech\GamePanel Software\LgDevAgt.exe" [2010-02-18 357448]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2010-02-18 1573448]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2010-02-18 3203144]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-09-02 1043968]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-10-31 202256]
"AutoKMS"="c:\windows\AutoKMS.exe" [2010-11-11 615936]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-11-16 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 402432]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"KAutoUP.exe"="c:\program files\kdisk.co.kr\kdisk(normal)\KAutoUP.exe" [2010-10-21 1009688]
"Live Update 5"="c:\program files\MSI\Live Update 5\LU5.exe" [2010-11-12 1220608]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-10-19 1983816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\users\ćakulˇtko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-10-17 691696]
R1 aswSP;aswSP; [x]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 FLEXnet Licensing Manager;FLEXnet Licensing Manager for Adobe Products;c:\windows\system\regsrv.exe [x]
R2 KDisk Update Service;KDisk Update Service;c:\program files\kdisk.co.kr\Kdisk(normal)\KAutoUp.exe [2010-10-21 1009688]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2003-04-18 8192]
R2 MLPTDR_N;MLPTDR_N;c:\windows\system32\MLPTDR_N.sys [2003-07-19 18848]
R2 NetAccelerator;NetAccelerator_Service;c:\program files\kdisk.co.kr\kdisk(fast2)\NetAccelerator.exe [2010-10-21 147968]
R3 arusb_lh;TP-LINK TL-WN821N 11N Wireless device driver;c:\windows\system32\DRIVERS\arusb_lh.sys [2008-05-27 432640]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2010-12-14 23456]
R3 FLASHSYS;FLASHSYS;c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys [2010-05-20 30576]
R3 MSI_DVD_010507;MSI_DVD_010507;c:\program files\MSI\Live Update 5\DVDSYS32_100507.sys [2010-05-10 22328]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\MSI\Live Update 5\msibios32_100507.sys [2010-05-10 25912]
R3 MSI_VGASYS_010507;MSI_VGASYS_010507;c:\program files\MSI\Live Update 5\VGASYS32_100507.sys [2010-05-10 16696]
R3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files\MSI\Live Update 5\NTIOLib.sys [2010-10-20 7680]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 vpcuxd;Služba zástupné procedury virtualizace rozhraní USB;c:\windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-04-08 1343400]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - g:\progra~1\Microsoft Office\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - g:\progra~1\Microsoft Office\Office14\ONBttnIE.dll/105
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
BHO-{64182481-4F71-486b-A045-B233BD0DA8FC} - c:\program files\facemoods.com\facemoods\1.4.17.1\bh\facemoods.dll
Toolbar-{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll
HKCU-Run-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe
HKLM-Run-CmPCIaudio - CMICNFG3.cpl
HKLM-Run-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe
HKLM-Run-KONICA MINOLTA PagePro 1300WStatusDisplay - c:\windows\system32\MSTMON_N.EXE
HKLM-RunOnce-<NO NAME> - (no file)
AddRemove-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.1\uninstall.exe
AddRemove-Heroes of Might and Magic III Complete - c:\program files\3DO\Heroes 3 Complete\Heroes of Might and Magic III Complete.isu
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-3022679412-1551097357-3718422576-1001\Software\SecuROM\License information*]
"datasecu"=hex:e2,ee,e2,fe,a0,8c,05,e6,bc,a9,40,08,4d,4c,e9,55,26,40,34,3d,45,
19,77,3b,20,75,15,f1,25,86,42,04,d3,e3,f4,d6,7f,4e,13,bd,04,7b,d9,59,5a,c8,\
"rkeysecu"=hex:e5,89,76,92,47,f7,aa,bb,c2,ef,cd,6d,94,01,42,56
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-12-15 19:14:11
ComboFix-quarantined-files.txt 2010-12-15 18:14
Před spuštěním: 5 485 993 984
Po spuštění: 5 733 875 712
- - End Of File - - BEBC2F3B0476AAA2B5A622E37F23C88B
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Restart pc
Několik položek bylo smazáno, zbytek logu vypadá čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Restart pc
restartoval sem pc a dal pustit normalně ani neuběhlo 30s a už restart ...
Přispějete na provoz fóra?