Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Prosím o kontrolu logu

#1 Příspěvek od xtractorek »

Dobrý den, poprosil bych o zkontrolování logu, mám problém s USB FLASH diskem, jednou při kopírování souborů na flash disk mi oznámil chybu a odpojil se, když vložím USB flashku do PC, tak mi vyskočí toto okno:
Obrázek

Dám tedy formátovat (předtím jsem měl flashku ve formátu NTFS):
Obrázek

a vyskočí mi toto okno:
Obrázek

Ani pokud změním typ na NTFS nebo jinak upravím nastavení, nejde formátování provést. Ještě se nakonec objeví toto:
Obrázek

A pokud bych snad chtěl jednotku otevřít, vyskočí toto okno:
Obrázek

Pokud odškrtnu rychlé formátování a spustím formátování, tak žádné okno s chybou nevyskočí, ovšem po více než 24h je vše na začátku, není vidět žádný posun, déle jsem se neodvážil čekat. USB disk je koupen u alzy, jedná se o tento produkt:

Kód: Vybrat vše

http://www.alza.cz/lacie-iamakey-v2-16gb-d202325.htm
Soudím tedy, že chyba asi bude v samotném USB disku, tudiž ho zanesu na reklamaci, ovšem i přesto chci log zkontrolovat, jestli náhodou není chyba někde jinde, děkuji moc za pomoc :)


Logfile of random's system information tool 1.08 (written by random/random)
Run by Honza at 2011-01-06 12:56:02
Microsoft Windows 7 Home Premium
System drive C: has 4 GB (13%) free of 34 GB
Total RAM: 3003 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:56:17, on 6.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\explorer.exe
C:\Windows\System32\rundll32.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\system32\SnippingTool.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\Desktop\RSIT.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Programy\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programy\Java\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [EvtMgr6] D:\Programy\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [ODDPwr] "C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe"
O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\RunOnce: [B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\Programy\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Programy\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Programy\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 10746 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4291271169-4170505066-3480882234-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4291271169-4170505066-3480882234-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2010-09-28 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Programy\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\Programy\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Programy\Java\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2010-09-28 798771]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files\Launch Manager\LManager.exe [2009-08-27 1194504]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-02 135168]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-02 167424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-02 144384]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-06-18 1537320]
"EvtMgr6"=D:\Programy\Logitech\SetPointP\SetPoint.exe [2010-01-27 1312848]
"ODDPwr"=C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [2009-09-04 186912]
"Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2009-10-02 494112]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll"=D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll,DllRegisterServer []
"B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll"=D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll,DllRegisterServer []
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=D:\Programy\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
""= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-02 217088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-01-29 64592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Programy\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2011-01-06 12:56:02 ----D---- C:\rsit
2011-01-06 12:56:02 ----D---- C:\Program Files\trend micro
2011-01-06 12:37:25 ----RASHD---- C:\Autorun.inf
2011-01-06 12:32:01 ----A---- C:\UsbFix.txt
2011-01-06 12:31:44 ----D---- C:\UsbFix
2011-01-04 16:22:41 ----D---- C:\SPB Weather
2011-01-02 13:59:52 ----D---- C:\Windows\en
2011-01-02 13:59:13 ----D---- C:\Windows\cs
2011-01-02 13:55:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-01-02 13:55:14 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-01-02 13:55:14 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-01-02 13:53:54 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-01-02 13:53:54 ----A---- C:\Windows\system32\UIRibbon.dll
2010-12-26 22:07:45 ----D---- C:\Users\Honza\AppData\Roaming\FastSum
2010-12-26 21:14:05 ----A---- C:\Windows\uninst.exe
2010-12-26 15:25:44 ----A---- C:\Windows\system32\drivers\netio.sys
2010-12-26 15:25:23 ----D---- C:\Program Files\Microsoft Security Client
2010-12-26 12:51:41 ----A---- C:\Windows\system32\uxtuneup.dll
2010-12-26 12:51:41 ----A---- C:\Windows\system32\authuitu.dll
2010-12-23 15:33:10 ----D---- C:\ProgramData\PC Suite
2010-12-22 10:54:32 ----D---- C:\Program Files\Common Files\Nokia
2010-12-22 10:53:27 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-12-22 09:47:06 ----D---- C:\Program Files\PC Connectivity Solution
2010-12-22 09:43:02 ----D---- C:\Program Files\Nokia
2010-12-15 19:21:02 ----A---- C:\Windows\system32\schedsvc.dll
2010-12-15 19:21:02 ----A---- C:\Windows\system32\atmlib.dll
2010-12-15 19:21:02 ----A---- C:\Windows\system32\atmfd.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskschd.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskeng.exe
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskcomp.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\schtasks.exe
2010-12-15 19:20:48 ----A---- C:\Windows\system32\tzres.dll
2010-12-15 19:20:45 ----A---- C:\Windows\system32\webio.dll
2010-12-15 19:20:19 ----A---- C:\Windows\system32\consent.exe
2010-12-15 19:20:18 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 months======

2011-01-06 12:56:18 ----D---- C:\Windows\Prefetch
2011-01-06 12:56:03 ----D---- C:\Windows\Temp
2011-01-06 12:56:02 ----RD---- C:\Program Files
2011-01-06 12:43:23 ----D---- C:\Windows\System32
2011-01-06 12:43:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-01-06 12:43:22 ----D---- C:\Windows\inf
2011-01-06 12:37:10 ----SHD---- C:\$Recycle.Bin
2011-01-06 09:54:43 ----D---- C:\Windows\system32\config
2011-01-06 00:02:37 ----D---- C:\Users\Honza\AppData\Roaming\Skype
2011-01-02 14:00:04 ----SHD---- C:\Windows\Installer
2011-01-02 14:00:04 ----HD---- C:\Config.Msi
2011-01-02 13:59:52 ----D---- C:\Windows
2011-01-02 13:56:07 ----D---- C:\Program Files\Windows Live
2011-01-02 13:55:53 ----D---- C:\Program Files\Common Files\microsoft shared
2011-01-02 13:54:03 ----D---- C:\Windows\winsxs
2011-01-02 13:54:01 ----D---- C:\Windows\system32\catroot
2011-01-02 10:36:24 ----D---- C:\Users\Honza\AppData\Roaming\PC Suite
2010-12-28 21:55:08 ----D---- C:\Program Files\Common Files\InstallShield
2010-12-28 21:54:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-12-28 21:44:45 ----AD---- C:\ProgramData\TEMP
2010-12-27 23:59:55 ----SD---- C:\Users\Honza\AppData\Roaming\Microsoft
2010-12-27 08:28:57 ----D---- C:\Windows\system32\wdi
2010-12-26 15:28:08 ----D---- C:\Windows\system32\drivers
2010-12-26 15:25:43 ----D---- C:\Windows\SoftwareDistribution
2010-12-26 14:17:07 ----D---- C:\Windows\Microsoft.NET
2010-12-26 14:11:03 ----RSD---- C:\Windows\assembly
2010-12-26 13:18:01 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2010-12-26 13:03:31 ----D---- C:\Program Files\Common Files
2010-12-26 01:40:06 ----D---- C:\Windows\system32\drivers\UMDF
2010-12-25 16:10:36 ----D---- C:\Windows\system32\catroot2
2010-12-23 15:33:10 ----HD---- C:\ProgramData
2010-12-23 15:16:02 ----HD---- C:\Program Files\Temp
2010-12-23 15:11:51 ----D---- C:\Windows\system32\RTCOM
2010-12-23 15:11:49 ----D---- C:\Windows\system32\DriverStore
2010-12-22 20:54:19 ----D---- C:\Users\Honza\AppData\Roaming\Nokia Ovi Suite
2010-12-22 20:54:18 ----D---- C:\Users\Honza\AppData\Roaming\Nokia
2010-12-22 10:53:27 ----DC---- C:\Windows\system32\DRVSTORE
2010-12-22 01:11:13 ----D---- C:\Windows\system32\Tasks
2010-12-22 00:49:06 ----D---- C:\ProgramData\Adobe
2010-12-22 00:47:49 ----D---- C:\Users\Honza\AppData\Roaming\Adobe
2010-12-22 00:46:25 ----D---- C:\Program Files\Common Files\Adobe
2010-12-20 13:34:28 ----D---- C:\Windows\system32\NDF
2010-12-19 17:42:10 ----AH---- C:\Windows\system32\v3shrtkgn.dll
2010-12-18 17:44:23 ----D---- C:\Windows\rescache
2010-12-18 16:56:27 ----D---- C:\Program Files\Microsoft Silverlight
2010-12-15 20:42:05 ----D---- C:\Windows\system32\cs-CZ
2010-12-15 20:42:05 ----D---- C:\Program Files\Windows Mail
2010-12-15 19:26:55 ----D---- C:\ProgramData\Microsoft Help
2010-12-15 19:22:08 ----D---- C:\Windows\debug
2010-12-15 19:22:06 ----A---- C:\Windows\system32\MRT.exe
2010-12-14 14:43:44 ----A---- C:\Windows\system32\TURegOpt.exe
2010-12-12 12:43:17 ----D---- C:\ProgramData\Spybot - Search & Destroy

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-03-23 691696]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\D:\Programy\HWiNFO32\HWiNFO32.SYS [2010-09-30 20088]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-12-31 295936]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2009-03-26 21000]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-02 5946368]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-25 122368]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-11-13 58368]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-11-10 35984]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-11-10 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2009-11-10 28560]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
R3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
R3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-06-18 212400]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
R3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
R3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2009-07-14 27648]
R3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
R3 vpnva;Cisco AnyConnect VPN Virtual Miniport Adapter for Windows; C:\Windows\system32\DRIVERS\vpnva.sys [2009-12-17 20152]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-10-02 17480]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys []
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 slicedisk.sys;slicedisk.sys; \??\C:\Windows\system32\slicedisk.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2010-03-25 99728]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2010-03-25 110608]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-17 582944]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 DsiWMIService;Dritek WMI Service; C:\Program Files\Launch Manager\dsiwmis.exe [2009-08-24 107016]
S2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-10-02 690720]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-22 136176]
S2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); d:\Programy\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2010-09-17 42773336]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 ODDPwrSvc;Acer ODD Power Service; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2009-09-04 125472]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2009-04-27 271760]
S2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-09-17 97624]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-12-14 1517376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-01 1045256]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-01-29 292944]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Programy\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-03-25 1343400]
S4 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-08-15 47128]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); d:\Programy\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2010-09-17 370008]
S4 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 vpnagent;Cisco AnyConnect VPN Agent; C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2009-12-17 497856]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#2 Příspěvek od motji »

Hezké odpoledne :)

Zkuste ještě tento program
http://www.slunecnice.cz/sw/hp-usb-disk ... rmat-tool/

Vypadá to skutečně, že fleška je poškozená. Pokud nebude fungovat ani ten program viz výše, reklamujte ji.

Vidím že jste spouštěl USBfix, prosím vložte mi sem log z něj, co jste už udělal :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#3 Příspěvek od xtractorek »

Tak bohužel, program nepomohl a hlásí toto:
Obrázek

Takže zde dávám alespoň log z USBfixu:

############################## | UsbFix 7.014 | [Deletion]

User: Honza (Administrator) # HONZA-PC [Acer Aspire 5810T]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 12:32:01 | 06/01/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Core(TM)2 Solo CPU U3500 @ 1.40GHz
Microsoft Windows 7 Home Premium (6.1.7600 32-Bit) #
Internet Explorer 9.0.7930.16406

Windows Firewall: Enabled
RAM -> 3003 Mb
C:\ (%systemdrive%) -> Fixed drive # 33 Gb (4 Mb free - 13%) [] # NTFS
D:\ -> Fixed drive # 200 Gb (142 Mb free - 71%) [] # NTFS
F:\ -> CD-ROM

################## | Files # Infected Folders |


################## | Registry |

Deleted ! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe

################## | Mountpoints2 |


################## | Listing |

[06/01/2011 - 12:37:10 | SHD ] C:\$Recycle.Bin
[10/06/2009 - 22:42:20 | A | 24] C:\autoexec.bat
[02/01/2011 - 14:00:04 | HD ] C:\Config.Msi
[01/11/2010 - 20:43:44 | RASH | 10] C:\config.sys
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[30/12/2010 - 19:07:38 | ASH | 2361491456] C:\hiberfil.sys
[21/09/2010 - 11:46:29 | D ] C:\inetpub
[22/03/2010 - 21:04:45 | D ] C:\Intel
[02/04/2010 - 14:56:10 | RASH | 0] C:\IO.SYS
[02/04/2010 - 14:56:10 | RASH | 0] C:\MSDOS.SYS
[14/09/2010 - 15:23:42 | RHD ] C:\MSOCache
[22/03/2010 - 20:58:16 | D ] C:\OEM
[30/12/2010 - 19:07:41 | ASH | 3148656640] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[26/12/2010 - 15:26:37 | RD ] C:\Program Files
[23/12/2010 - 15:33:10 | HD ] C:\ProgramData
[22/03/2010 - 20:49:52 | SHD ] C:\Recovery
[04/01/2011 - 16:22:41 | D ] C:\SPB Weather
[16/04/2010 - 08:24:27 | SHD ] C:\System Volume Information
[06/01/2011 - 12:37:10 | D ] C:\UsbFix
[06/01/2011 - 12:32:01 | A | 1873] C:\UsbFix.txt
[21/09/2010 - 11:48:50 | RD ] C:\Users
[02/01/2011 - 13:59:52 | D ] C:\Windows
[04/10/2010 - 08:42:04 | D ] C:\Zařízení Bluetooth
[06/01/2011 - 12:37:10 | SHD ] D:\$RECYCLE.BIN
[28/07/2010 - 13:26:42 | A | 200000000] D:\11-21_July_2010.part1.rar
[28/07/2010 - 13:34:40 | A | 200000000] D:\11-21_July_2010.part2.rar
[28/07/2010 - 13:34:56 | A | 5305418] D:\11-21_July_2010.part3.rar
[07/11/2010 - 19:40:50 | A | 91826088] D:\11_August_2010.rar
[01/07/2010 - 21:07:42 | A | 85262823] D:\11_June_2010.rar
[07/11/2010 - 21:36:01 | A | 73414582] D:\11_October_2010.rar
[07/11/2010 - 20:13:27 | A | 81232041] D:\11_September.rar
[01/07/2010 - 21:03:59 | A | 81480693] D:\13_June_2010.rar
[01/07/2010 - 21:57:16 | A | 92248293] D:\13_May_2010.rar
[07/11/2010 - 19:44:04 | A | 84249354] D:\14_August_2010.rar
[01/07/2010 - 21:00:14 | A | 109386224] D:\15_June_2010.rar
[07/11/2010 - 21:07:14 | A | 125866589] D:\15_September_2010.rar
[01/07/2010 - 21:53:41 | A | 87979394] D:\16_May_2010.rar
[07/11/2010 - 21:39:21 | A | 92232975] D:\16_October_2010.rar
[07/11/2010 - 19:47:11 | A | 84006440] D:\18_August_2010.rar
[01/07/2010 - 20:55:50 | A | 93742010] D:\18_June_2010.rar
[07/11/2010 - 21:12:14 | A | 123393157] D:\18_September_2010.rar
[01/07/2010 - 21:50:00 | A | 117171019] D:\19_May_2010.rar
[07/11/2010 - 19:51:01 | A | 101254699] D:\20_August_2010.rar
[01/07/2010 - 20:52:26 | A | 116349432] D:\20_June_2010.rar
[01/07/2010 - 21:44:51 | A | 108780793] D:\21_May_2010.rar
[07/11/2010 - 21:42:42 | A | 92151312] D:\21_October_2010.rar
[07/11/2010 - 21:15:34 | A | 85419816] D:\22_September_2010.rar
[07/11/2010 - 19:54:01 | A | 82582789] D:\23_August_2010.rar
[28/07/2010 - 14:03:24 | A | 106888031] D:\24_July_2010.rar
[01/07/2010 - 20:47:42 | A | 137331340] D:\24_June_2010.rar
[01/07/2010 - 21:40:22 | A | 139790358] D:\25_May_2010.rar
[07/11/2010 - 21:46:02 | A | 93784520] D:\25_October_2010.rar
[07/11/2010 - 21:18:25 | A | 77015315] D:\25_September_2010.rar
[07/11/2010 - 19:58:41 | A | 124889432] D:\26_August_2010.rar
[01/07/2010 - 20:14:05 | A | 130881188] D:\26_June_2010.rar
[28/07/2010 - 14:08:28 | A | 115845001] D:\27_July_2010.rar
[01/07/2010 - 21:33:46 | A | 99003314] D:\27_May_2010.rar
[07/11/2010 - 21:50:14 | A | 118910817] D:\28_October_2010.rar
[07/11/2010 - 20:01:36 | A | 76548617] D:\29_August_2010.rar
[07/11/2010 - 21:21:56 | A | 90553735] D:\29_September_2010.rar
[07/11/2010 - 19:30:21 | A | 129495619] D:\2_August_2010.rar
[07/11/2010 - 21:25:28 | A | 96745702] D:\2_October_2010.rar
[07/11/2010 - 19:23:39 | A | 114805451] D:\30_July_2010.rar
[01/07/2010 - 20:07:51 | A | 84914016] D:\30_June_2010.rar
[01/07/2010 - 21:28:41 | A | 107313677] D:\30_May_2010.rar
[28/07/2010 - 13:07:03 | A | 107744376] D:\3_July_2010.rar
[07/11/2010 - 20:10:15 | A | 92332515] D:\4_September_2010.rar
[07/11/2010 - 19:33:58 | A | 101501709] D:\5_August_2010.rar
[28/07/2010 - 13:12:47 | A | 111479061] D:\5_July_2010.rar
[07/11/2010 - 21:56:53 | A | 113983257] D:\5_November_2010.rar
[07/11/2010 - 21:30:37 | A | 122838505] D:\6_October_2010.rar
[21/11/2010 - 10:27:17 | A | 2400454656] D:\7600.16385.090713-1255_x86fre_enterprise_en-us_EVAL_Eval_Enterprise-GRMCENEVAL_EN_DVD.iso
[01/07/2010 - 21:18:53 | A | 150988784] D:\7_June_2010.rar
[07/11/2010 - 19:37:11 | A | 86339903] D:\8_August_2010.rar
[28/07/2010 - 13:17:42 | A | 107110459] D:\8_July_2010.rar
[01/07/2010 - 21:12:09 | A | 100185957] D:\9_June_2010.rar
[07/11/2010 - 21:33:23 | A | 76969240] D:\9_October_2010.rar
[13/10/2010 - 14:10:40 | D ] D:\a67997ada8247705906974dca932d2
[23/12/2010 - 09:06:25 | D ] D:\filmy
[05/01/2011 - 12:51:37 | D ] D:\Fotky
[14/12/2010 - 08:32:02 | D ] D:\Hry
[23/12/2010 - 15:19:10 | D ] D:\Instalačky
[16/09/2010 - 15:48:12 | D ] D:\kr
[03/01/2011 - 18:29:36 | D ] D:\Mobil
[23/03/2010 - 00:07:13 | RHD ] D:\MSOCache
[24/12/2010 - 18:27:40 | D ] D:\Music
[04/01/2011 - 00:56:49 | D ] D:\Programy
[23/03/2010 - 00:00:49 | SHD ] D:\System Volume Information


################## | Vaccin |

C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)

################## | E.O.F |
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#4 Příspěvek od motji »

Tu flešku Vám nic nenačte,že?
Asi ji raději reklamujte :)

:arrow: Odinstalujte Daemon tools toolbar
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#5 Příspěvek od xtractorek »

Flashku nic nenačte, takže asi nic jiného nezbývá.
Toolbar odinstalován, ani jsem si nevšiml, že v počítači byl. :D

Jinak vše v pořádku?
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#6 Příspěvek od motji »

:arrow: Ještě spustte Usbfix a dejte Uninstall

Nic špatného nevidím. Jen pročištěte pc CCleanerem :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#7 Příspěvek od xtractorek »

Dobře, moc vám děkuji za pomoc. :)
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#8 Příspěvek od motji »

Není zač :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Odpovědět

Zpět na „Sekce pouze pro Vzorné návštěvníky“