Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Prosím o kontrolu logu

#1 Příspěvek od xtractorek »

Dobrý den, poprosil bych o zkontrolování logu, mám problém s USB FLASH diskem, jednou při kopírování souborů na flash disk mi oznámil chybu a odpojil se, když vložím USB flashku do PC, tak mi vyskočí toto okno:
Obrázek

Dám tedy formátovat (předtím jsem měl flashku ve formátu NTFS):
Obrázek

a vyskočí mi toto okno:
Obrázek

Ani pokud změním typ na NTFS nebo jinak upravím nastavení, nejde formátování provést. Ještě se nakonec objeví toto:
Obrázek

A pokud bych snad chtěl jednotku otevřít, vyskočí toto okno:
Obrázek

Pokud odškrtnu rychlé formátování a spustím formátování, tak žádné okno s chybou nevyskočí, ovšem po více než 24h je vše na začátku, není vidět žádný posun, déle jsem se neodvážil čekat. USB disk je koupen u alzy, jedná se o tento produkt:

Kód: Vybrat vše

http://www.alza.cz/lacie-iamakey-v2-16gb-d202325.htm
Soudím tedy, že chyba asi bude v samotném USB disku, tudiž ho zanesu na reklamaci, ovšem i přesto chci log zkontrolovat, jestli náhodou není chyba někde jinde, děkuji moc za pomoc :)


Logfile of random's system information tool 1.08 (written by random/random)
Run by Honza at 2011-01-06 12:56:02
Microsoft Windows 7 Home Premium
System drive C: has 4 GB (13%) free of 34 GB
Total RAM: 3003 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:56:17, on 6.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\explorer.exe
C:\Windows\System32\rundll32.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\system32\SnippingTool.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Users\Honza\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Honza\Desktop\RSIT.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Programy\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programy\Java\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [EvtMgr6] D:\Programy\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [ODDPwr] "C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe"
O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\RunOnce: [B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\Programy\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Programy\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Programy\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 10746 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4291271169-4170505066-3480882234-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4291271169-4170505066-3480882234-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2010-09-28 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Programy\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\Programy\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Programy\Java\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2010-09-28 798771]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files\Launch Manager\LManager.exe [2009-08-27 1194504]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-02 135168]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-02 167424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-02 144384]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-06-18 1537320]
"EvtMgr6"=D:\Programy\Logitech\SetPointP\SetPoint.exe [2010-01-27 1312848]
"ODDPwr"=C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [2009-09-04 186912]
"Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2009-10-02 494112]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll"=D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll,DllRegisterServer []
"B Register D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll"=D:\Programy\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll,DllRegisterServer []
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=D:\Programy\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
""= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-02 217088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-01-29 64592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Programy\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""D:\Programy\TuneUp Utilities 2011\TUAutoReactivator32.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2011-01-06 12:56:02 ----D---- C:\rsit
2011-01-06 12:56:02 ----D---- C:\Program Files\trend micro
2011-01-06 12:37:25 ----RASHD---- C:\Autorun.inf
2011-01-06 12:32:01 ----A---- C:\UsbFix.txt
2011-01-06 12:31:44 ----D---- C:\UsbFix
2011-01-04 16:22:41 ----D---- C:\SPB Weather
2011-01-02 13:59:52 ----D---- C:\Windows\en
2011-01-02 13:59:13 ----D---- C:\Windows\cs
2011-01-02 13:55:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-01-02 13:55:14 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-01-02 13:55:14 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-01-02 13:53:54 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-01-02 13:53:54 ----A---- C:\Windows\system32\UIRibbon.dll
2010-12-26 22:07:45 ----D---- C:\Users\Honza\AppData\Roaming\FastSum
2010-12-26 21:14:05 ----A---- C:\Windows\uninst.exe
2010-12-26 15:25:44 ----A---- C:\Windows\system32\drivers\netio.sys
2010-12-26 15:25:23 ----D---- C:\Program Files\Microsoft Security Client
2010-12-26 12:51:41 ----A---- C:\Windows\system32\uxtuneup.dll
2010-12-26 12:51:41 ----A---- C:\Windows\system32\authuitu.dll
2010-12-23 15:33:10 ----D---- C:\ProgramData\PC Suite
2010-12-22 10:54:32 ----D---- C:\Program Files\Common Files\Nokia
2010-12-22 10:53:27 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2010-12-22 09:47:06 ----D---- C:\Program Files\PC Connectivity Solution
2010-12-22 09:43:02 ----D---- C:\Program Files\Nokia
2010-12-15 19:21:02 ----A---- C:\Windows\system32\schedsvc.dll
2010-12-15 19:21:02 ----A---- C:\Windows\system32\atmlib.dll
2010-12-15 19:21:02 ----A---- C:\Windows\system32\atmfd.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskschd.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskeng.exe
2010-12-15 19:21:01 ----A---- C:\Windows\system32\taskcomp.dll
2010-12-15 19:21:01 ----A---- C:\Windows\system32\schtasks.exe
2010-12-15 19:20:48 ----A---- C:\Windows\system32\tzres.dll
2010-12-15 19:20:45 ----A---- C:\Windows\system32\webio.dll
2010-12-15 19:20:19 ----A---- C:\Windows\system32\consent.exe
2010-12-15 19:20:18 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 months======

2011-01-06 12:56:18 ----D---- C:\Windows\Prefetch
2011-01-06 12:56:03 ----D---- C:\Windows\Temp
2011-01-06 12:56:02 ----RD---- C:\Program Files
2011-01-06 12:43:23 ----D---- C:\Windows\System32
2011-01-06 12:43:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-01-06 12:43:22 ----D---- C:\Windows\inf
2011-01-06 12:37:10 ----SHD---- C:\$Recycle.Bin
2011-01-06 09:54:43 ----D---- C:\Windows\system32\config
2011-01-06 00:02:37 ----D---- C:\Users\Honza\AppData\Roaming\Skype
2011-01-02 14:00:04 ----SHD---- C:\Windows\Installer
2011-01-02 14:00:04 ----HD---- C:\Config.Msi
2011-01-02 13:59:52 ----D---- C:\Windows
2011-01-02 13:56:07 ----D---- C:\Program Files\Windows Live
2011-01-02 13:55:53 ----D---- C:\Program Files\Common Files\microsoft shared
2011-01-02 13:54:03 ----D---- C:\Windows\winsxs
2011-01-02 13:54:01 ----D---- C:\Windows\system32\catroot
2011-01-02 10:36:24 ----D---- C:\Users\Honza\AppData\Roaming\PC Suite
2010-12-28 21:55:08 ----D---- C:\Program Files\Common Files\InstallShield
2010-12-28 21:54:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-12-28 21:44:45 ----AD---- C:\ProgramData\TEMP
2010-12-27 23:59:55 ----SD---- C:\Users\Honza\AppData\Roaming\Microsoft
2010-12-27 08:28:57 ----D---- C:\Windows\system32\wdi
2010-12-26 15:28:08 ----D---- C:\Windows\system32\drivers
2010-12-26 15:25:43 ----D---- C:\Windows\SoftwareDistribution
2010-12-26 14:17:07 ----D---- C:\Windows\Microsoft.NET
2010-12-26 14:11:03 ----RSD---- C:\Windows\assembly
2010-12-26 13:18:01 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2010-12-26 13:03:31 ----D---- C:\Program Files\Common Files
2010-12-26 01:40:06 ----D---- C:\Windows\system32\drivers\UMDF
2010-12-25 16:10:36 ----D---- C:\Windows\system32\catroot2
2010-12-23 15:33:10 ----HD---- C:\ProgramData
2010-12-23 15:16:02 ----HD---- C:\Program Files\Temp
2010-12-23 15:11:51 ----D---- C:\Windows\system32\RTCOM
2010-12-23 15:11:49 ----D---- C:\Windows\system32\DriverStore
2010-12-22 20:54:19 ----D---- C:\Users\Honza\AppData\Roaming\Nokia Ovi Suite
2010-12-22 20:54:18 ----D---- C:\Users\Honza\AppData\Roaming\Nokia
2010-12-22 10:53:27 ----DC---- C:\Windows\system32\DRVSTORE
2010-12-22 01:11:13 ----D---- C:\Windows\system32\Tasks
2010-12-22 00:49:06 ----D---- C:\ProgramData\Adobe
2010-12-22 00:47:49 ----D---- C:\Users\Honza\AppData\Roaming\Adobe
2010-12-22 00:46:25 ----D---- C:\Program Files\Common Files\Adobe
2010-12-20 13:34:28 ----D---- C:\Windows\system32\NDF
2010-12-19 17:42:10 ----AH---- C:\Windows\system32\v3shrtkgn.dll
2010-12-18 17:44:23 ----D---- C:\Windows\rescache
2010-12-18 16:56:27 ----D---- C:\Program Files\Microsoft Silverlight
2010-12-15 20:42:05 ----D---- C:\Windows\system32\cs-CZ
2010-12-15 20:42:05 ----D---- C:\Program Files\Windows Mail
2010-12-15 19:26:55 ----D---- C:\ProgramData\Microsoft Help
2010-12-15 19:22:08 ----D---- C:\Windows\debug
2010-12-15 19:22:06 ----A---- C:\Windows\system32\MRT.exe
2010-12-14 14:43:44 ----A---- C:\Windows\system32\TURegOpt.exe
2010-12-12 12:43:17 ----D---- C:\ProgramData\Spybot - Search & Destroy

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-03-23 691696]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\D:\Programy\HWiNFO32\HWiNFO32.SYS [2010-09-30 20088]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-12-31 295936]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2009-03-26 21000]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-02 5946368]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-25 122368]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-11-13 58368]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-11-10 35984]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-11-10 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2009-11-10 28560]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
R3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
R3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-06-18 212400]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
R3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
R3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2009-07-14 27648]
R3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
R3 vpnva;Cisco AnyConnect VPN Virtual Miniport Adapter for Windows; C:\Windows\system32\DRIVERS\vpnva.sys [2009-12-17 20152]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-10-02 17480]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys []
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 slicedisk.sys;slicedisk.sys; \??\C:\Windows\system32\slicedisk.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2010-03-25 99728]
S3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2010-03-25 110608]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-17 582944]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 DsiWMIService;Dritek WMI Service; C:\Program Files\Launch Manager\dsiwmis.exe [2009-08-24 107016]
S2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-10-02 690720]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-22 136176]
S2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); d:\Programy\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2010-09-17 42773336]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 ODDPwrSvc;Acer ODD Power Service; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2009-09-04 125472]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2009-04-27 271760]
S2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-09-17 97624]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; D:\Programy\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-12-14 1517376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-01 1045256]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-01-29 292944]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Programy\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-03-25 1343400]
S4 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-08-15 47128]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); d:\Programy\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2010-09-17 370008]
S4 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 vpnagent;Cisco AnyConnect VPN Agent; C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2009-12-17 497856]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#2 Příspěvek od motji »

Hezké odpoledne :)

Zkuste ještě tento program
http://www.slunecnice.cz/sw/hp-usb-disk ... rmat-tool/

Vypadá to skutečně, že fleška je poškozená. Pokud nebude fungovat ani ten program viz výše, reklamujte ji.

Vidím že jste spouštěl USBfix, prosím vložte mi sem log z něj, co jste už udělal :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#3 Příspěvek od xtractorek »

Tak bohužel, program nepomohl a hlásí toto:
Obrázek

Takže zde dávám alespoň log z USBfixu:

############################## | UsbFix 7.014 | [Deletion]

User: Honza (Administrator) # HONZA-PC [Acer Aspire 5810T]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 12:32:01 | 06/01/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Core(TM)2 Solo CPU U3500 @ 1.40GHz
Microsoft Windows 7 Home Premium (6.1.7600 32-Bit) #
Internet Explorer 9.0.7930.16406

Windows Firewall: Enabled
RAM -> 3003 Mb
C:\ (%systemdrive%) -> Fixed drive # 33 Gb (4 Mb free - 13%) [] # NTFS
D:\ -> Fixed drive # 200 Gb (142 Mb free - 71%) [] # NTFS
F:\ -> CD-ROM

################## | Files # Infected Folders |


################## | Registry |

Deleted ! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe

################## | Mountpoints2 |


################## | Listing |

[06/01/2011 - 12:37:10 | SHD ] C:\$Recycle.Bin
[10/06/2009 - 22:42:20 | A | 24] C:\autoexec.bat
[02/01/2011 - 14:00:04 | HD ] C:\Config.Msi
[01/11/2010 - 20:43:44 | RASH | 10] C:\config.sys
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[30/12/2010 - 19:07:38 | ASH | 2361491456] C:\hiberfil.sys
[21/09/2010 - 11:46:29 | D ] C:\inetpub
[22/03/2010 - 21:04:45 | D ] C:\Intel
[02/04/2010 - 14:56:10 | RASH | 0] C:\IO.SYS
[02/04/2010 - 14:56:10 | RASH | 0] C:\MSDOS.SYS
[14/09/2010 - 15:23:42 | RHD ] C:\MSOCache
[22/03/2010 - 20:58:16 | D ] C:\OEM
[30/12/2010 - 19:07:41 | ASH | 3148656640] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[26/12/2010 - 15:26:37 | RD ] C:\Program Files
[23/12/2010 - 15:33:10 | HD ] C:\ProgramData
[22/03/2010 - 20:49:52 | SHD ] C:\Recovery
[04/01/2011 - 16:22:41 | D ] C:\SPB Weather
[16/04/2010 - 08:24:27 | SHD ] C:\System Volume Information
[06/01/2011 - 12:37:10 | D ] C:\UsbFix
[06/01/2011 - 12:32:01 | A | 1873] C:\UsbFix.txt
[21/09/2010 - 11:48:50 | RD ] C:\Users
[02/01/2011 - 13:59:52 | D ] C:\Windows
[04/10/2010 - 08:42:04 | D ] C:\Zařízení Bluetooth
[06/01/2011 - 12:37:10 | SHD ] D:\$RECYCLE.BIN
[28/07/2010 - 13:26:42 | A | 200000000] D:\11-21_July_2010.part1.rar
[28/07/2010 - 13:34:40 | A | 200000000] D:\11-21_July_2010.part2.rar
[28/07/2010 - 13:34:56 | A | 5305418] D:\11-21_July_2010.part3.rar
[07/11/2010 - 19:40:50 | A | 91826088] D:\11_August_2010.rar
[01/07/2010 - 21:07:42 | A | 85262823] D:\11_June_2010.rar
[07/11/2010 - 21:36:01 | A | 73414582] D:\11_October_2010.rar
[07/11/2010 - 20:13:27 | A | 81232041] D:\11_September.rar
[01/07/2010 - 21:03:59 | A | 81480693] D:\13_June_2010.rar
[01/07/2010 - 21:57:16 | A | 92248293] D:\13_May_2010.rar
[07/11/2010 - 19:44:04 | A | 84249354] D:\14_August_2010.rar
[01/07/2010 - 21:00:14 | A | 109386224] D:\15_June_2010.rar
[07/11/2010 - 21:07:14 | A | 125866589] D:\15_September_2010.rar
[01/07/2010 - 21:53:41 | A | 87979394] D:\16_May_2010.rar
[07/11/2010 - 21:39:21 | A | 92232975] D:\16_October_2010.rar
[07/11/2010 - 19:47:11 | A | 84006440] D:\18_August_2010.rar
[01/07/2010 - 20:55:50 | A | 93742010] D:\18_June_2010.rar
[07/11/2010 - 21:12:14 | A | 123393157] D:\18_September_2010.rar
[01/07/2010 - 21:50:00 | A | 117171019] D:\19_May_2010.rar
[07/11/2010 - 19:51:01 | A | 101254699] D:\20_August_2010.rar
[01/07/2010 - 20:52:26 | A | 116349432] D:\20_June_2010.rar
[01/07/2010 - 21:44:51 | A | 108780793] D:\21_May_2010.rar
[07/11/2010 - 21:42:42 | A | 92151312] D:\21_October_2010.rar
[07/11/2010 - 21:15:34 | A | 85419816] D:\22_September_2010.rar
[07/11/2010 - 19:54:01 | A | 82582789] D:\23_August_2010.rar
[28/07/2010 - 14:03:24 | A | 106888031] D:\24_July_2010.rar
[01/07/2010 - 20:47:42 | A | 137331340] D:\24_June_2010.rar
[01/07/2010 - 21:40:22 | A | 139790358] D:\25_May_2010.rar
[07/11/2010 - 21:46:02 | A | 93784520] D:\25_October_2010.rar
[07/11/2010 - 21:18:25 | A | 77015315] D:\25_September_2010.rar
[07/11/2010 - 19:58:41 | A | 124889432] D:\26_August_2010.rar
[01/07/2010 - 20:14:05 | A | 130881188] D:\26_June_2010.rar
[28/07/2010 - 14:08:28 | A | 115845001] D:\27_July_2010.rar
[01/07/2010 - 21:33:46 | A | 99003314] D:\27_May_2010.rar
[07/11/2010 - 21:50:14 | A | 118910817] D:\28_October_2010.rar
[07/11/2010 - 20:01:36 | A | 76548617] D:\29_August_2010.rar
[07/11/2010 - 21:21:56 | A | 90553735] D:\29_September_2010.rar
[07/11/2010 - 19:30:21 | A | 129495619] D:\2_August_2010.rar
[07/11/2010 - 21:25:28 | A | 96745702] D:\2_October_2010.rar
[07/11/2010 - 19:23:39 | A | 114805451] D:\30_July_2010.rar
[01/07/2010 - 20:07:51 | A | 84914016] D:\30_June_2010.rar
[01/07/2010 - 21:28:41 | A | 107313677] D:\30_May_2010.rar
[28/07/2010 - 13:07:03 | A | 107744376] D:\3_July_2010.rar
[07/11/2010 - 20:10:15 | A | 92332515] D:\4_September_2010.rar
[07/11/2010 - 19:33:58 | A | 101501709] D:\5_August_2010.rar
[28/07/2010 - 13:12:47 | A | 111479061] D:\5_July_2010.rar
[07/11/2010 - 21:56:53 | A | 113983257] D:\5_November_2010.rar
[07/11/2010 - 21:30:37 | A | 122838505] D:\6_October_2010.rar
[21/11/2010 - 10:27:17 | A | 2400454656] D:\7600.16385.090713-1255_x86fre_enterprise_en-us_EVAL_Eval_Enterprise-GRMCENEVAL_EN_DVD.iso
[01/07/2010 - 21:18:53 | A | 150988784] D:\7_June_2010.rar
[07/11/2010 - 19:37:11 | A | 86339903] D:\8_August_2010.rar
[28/07/2010 - 13:17:42 | A | 107110459] D:\8_July_2010.rar
[01/07/2010 - 21:12:09 | A | 100185957] D:\9_June_2010.rar
[07/11/2010 - 21:33:23 | A | 76969240] D:\9_October_2010.rar
[13/10/2010 - 14:10:40 | D ] D:\a67997ada8247705906974dca932d2
[23/12/2010 - 09:06:25 | D ] D:\filmy
[05/01/2011 - 12:51:37 | D ] D:\Fotky
[14/12/2010 - 08:32:02 | D ] D:\Hry
[23/12/2010 - 15:19:10 | D ] D:\Instalačky
[16/09/2010 - 15:48:12 | D ] D:\kr
[03/01/2011 - 18:29:36 | D ] D:\Mobil
[23/03/2010 - 00:07:13 | RHD ] D:\MSOCache
[24/12/2010 - 18:27:40 | D ] D:\Music
[04/01/2011 - 00:56:49 | D ] D:\Programy
[23/03/2010 - 00:00:49 | SHD ] D:\System Volume Information


################## | Vaccin |

C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)

################## | E.O.F |
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#4 Příspěvek od motji »

Tu flešku Vám nic nenačte,že?
Asi ji raději reklamujte :)

:arrow: Odinstalujte Daemon tools toolbar
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#5 Příspěvek od xtractorek »

Flashku nic nenačte, takže asi nic jiného nezbývá.
Toolbar odinstalován, ani jsem si nevšiml, že v počítači byl. :D

Jinak vše v pořádku?
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#6 Příspěvek od motji »

:arrow: Ještě spustte Usbfix a dejte Uninstall

Nic špatného nevidím. Jen pročištěte pc CCleanerem :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
xtractorek
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 01 čer 2007 16:39
Bydliště: Praha
Kontaktovat uživatele:
Kontaktovat uživatele xtractorek

Re: Prosím o kontrolu logu

#7 Příspěvek od xtractorek »

Dobře, moc vám děkuji za pomoc. :)
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu

#8 Příspěvek od motji »

Není zač :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Odpovědět

Zpět na „Sekce pouze pro Vzorné návštěvníky“