Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zamrzani Notebooku

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
janveris
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 lis 2010 17:39

Zamrzani Notebooku

#1 Příspěvek od janveris »

Dobry den, mam takový zvláštní problém a už jsem z toho značně flustrovaný :( vždy když zapnu počítač, tak vše funguje jak má, pokud na počítači pracuji třeba 2 hodiny vše je stále v pořádku a počítač běží svižně a bez problémů, ale jakmile se od počítače vzdálím cca na 15 minut ať už jsem na počítači pracoval 2 hodiny či je čerstvě zapnutý, tak zamrzne stylem že ať kliknu na cokoliv na ploše ti v otevřeném programu místo kurzoru se zobrazí načítání a po chvilce program či plocha napíše že program neodpovídá a nejde ho zavřít. ani kliknout na nabídku start nejde, a ani ctrl+alt+del nefunguje a počítač je nutné natvrdo vypnout... přikládám log a děkuji za jakékoli rady...




Logfile of random's system information tool 1.08 (written by random/random)
Run by honza at 2010-11-25 17:43:15
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 73 GB (50%) free of 148 GB
Total RAM: 3068 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:43:17, on 25.11.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18975)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\JAJC\jajc.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Users\honza\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Opera\opera.exe
D:\PROGRAMY\RSIT.exe
D:\PROGRAMY\hj\honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_8930
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_8930
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_8930
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ProductReg] "C:\Program Files\Acer\WR_PopUp\ProductReg.exe"
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [OODefragTray] C:\Windows\system32\oodtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKCU\..\Run: [JAJC] "C:\Program Files\JAJC\jajc.exe" --no-drive-scan
O4 - HKCU\..\Run: [Sony Ericsson PC Companion] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} (O2C-Player - area constructor view (ELECO Software GmbH)) - http://www.o2c.de/download/o2cplayerac.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Funkčnost aplikací AeLookupSvcAgereModemAudio (AeLookupSvcAgereModemAudio) - Unknown owner - C:\Windows\TEMP\xivrpufwof.exe (file missing)
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: DriveHealth - Helexis Software Development - C:\Program Files\Helexis\Drive Health\dhcore.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Windows\system32\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011\RpcAgentSrv.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe

--
End of file - 15173 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]
ShowBarObj Class - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29 312880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29 142896]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-12-09 958200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-07-20 182808]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-04-04 1037608]
"eDataSecurity Loader"=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-07-29 526896]
"BkupTray"=C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [2008-04-25 28672]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-03-08 40048]
"ProductReg"=C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-09-23 6144]
"ZPdtWzdVitaKey MC3000"=C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe [2009-04-09 3719680]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-06-30 200704]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2008-06-16 809480]
"eAudio"=C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [2008-09-11 544768]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2008-08-01 405504]
"ArcadeDeluxeAgent"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2008-07-24 147456]
"CLMLServer"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [2008-07-24 167936]
"PlayMovie"=C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2008-07-18 167936]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]
"OODefragTray"=C:\Windows\system32\oodtray.exe [2008-09-04 2524416]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-02-06 2021400]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-07 6139904]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2003-06-25 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-10-23 233472]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"JAJC"=C:\Program Files\JAJC\jajc.exe [2008-07-31 1797120]
"AdobeBridge"= []
"Sony Ericsson PC Companion"=C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2010-11-04 423632]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AWinNotifyVitaKey MC3000]
C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2009-04-09 3162624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\Acer\Acer Bio Protection\PwdFilter

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\honza\AppData\Local\Opera\Opera\temporary_downloads\P1876832.JPG-www.facebook.exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-11-25 17:40:50 ----D---- C:\rsit
2010-11-17 15:05:48 ----A---- C:\ProgramData\xmlBD57.tmp
2010-11-17 15:05:48 ----A---- C:\ProgramData\xmlBD08.tmp
2010-11-17 15:05:44 ----A---- C:\ProgramData\xmlACE1.tmp
2010-11-17 14:53:31 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-11-17 14:53:31 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-11-17 14:53:30 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-11-17 14:53:29 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-11-17 14:53:29 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-11-17 14:53:29 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-11-17 14:53:29 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-11-17 14:52:26 ----D---- C:\Windows\system32\directx
2010-11-17 14:52:18 ----D---- C:\Program Files\SiSoftware
2010-11-17 04:11:59 ----D---- C:\Program Files\Helexis
2010-11-15 15:15:46 ----ASH---- C:\hiberfil.sys
2010-11-13 02:41:01 ----D---- C:\ProgramData\SpinTop Games
2010-11-04 12:41:12 ----D---- C:\Program Files\Wise Registry Cleaner
2010-11-03 01:42:30 ----D---- C:\Users\honza\AppData\Roaming\Media Player Classic
2010-11-03 01:39:26 ----A---- C:\Windows\system32\unrar.dll
2010-11-03 01:39:26 ----A---- C:\Windows\avisplitter.ini
2010-11-03 01:39:24 ----A---- C:\Windows\system32\yv12vfw.dll
2010-11-03 01:39:24 ----A---- C:\Windows\system32\xvidvfw.dll
2010-11-03 01:39:24 ----A---- C:\Windows\system32\xvidcore.dll
2010-11-03 01:39:24 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2010-11-03 01:39:24 ----A---- C:\Windows\system32\ff_vfw.dll
2010-11-01 16:14:08 ----D---- C:\Windows\cs
2010-11-01 16:10:48 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-11-01 16:10:10 ----D---- C:\Program Files\Windows Live
2010-11-01 16:08:33 ----D---- C:\Program Files\Common Files\Windows Live
2010-11-01 16:08:07 ----A---- C:\Windows\system32\webservices.dll
2010-11-01 16:07:50 ----D---- C:\Windows\system32\WindowsPowerShell
2010-11-01 16:06:33 ----A---- C:\Windows\system32\winrsmgr.dll
2010-11-01 16:06:24 ----A---- C:\Windows\system32\wsmprovhost.exe
2010-11-01 16:06:24 ----A---- C:\Windows\system32\winrshost.exe
2010-11-01 16:06:24 ----A---- C:\Windows\system32\winrs.exe
2010-11-01 16:06:21 ----A---- C:\Windows\system32\wsmplpxy.dll
2010-11-01 16:06:21 ----A---- C:\Windows\system32\winrssrv.dll
2010-11-01 16:06:19 ----A---- C:\Windows\system32\WsmRes.dll
2010-11-01 16:06:19 ----A---- C:\Windows\system32\wevtfwd.dll
2010-11-01 16:06:19 ----A---- C:\Windows\system32\wecutil.exe
2010-11-01 16:06:19 ----A---- C:\Windows\system32\wecsvc.dll
2010-11-01 16:06:19 ----A---- C:\Windows\system32\wecapi.dll
2010-11-01 16:06:19 ----A---- C:\Windows\system32\pwrshplugin.dll
2010-11-01 16:06:16 ----A---- C:\Windows\system32\winrm.vbs
2010-11-01 16:06:15 ----A---- C:\Windows\system32\WsmWmiPl.dll
2010-11-01 16:06:15 ----A---- C:\Windows\system32\WsmSvc.dll
2010-11-01 16:06:15 ----A---- C:\Windows\system32\WsmAuto.dll
2010-11-01 16:06:15 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2010-11-01 16:06:15 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2010-11-01 16:06:15 ----A---- C:\Windows\system32\winrscmd.dll
2010-11-01 16:01:52 ----D---- C:\9c9e4f27e41f035fb366dd13a6
2010-10-31 16:10:33 ----D---- C:\ProgramData\NVIDIA Corporation
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvwgf2um.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvoglv32.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvgenco322030.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvdispco322050.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvd3dum.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\nvcuvenc.dll
2010-10-31 16:04:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2010-10-31 16:04:23 ----A---- C:\Windows\system32\OpenCL.dll
2010-10-31 16:04:23 ----A---- C:\Windows\system32\nvcuvid.dll
2010-10-31 16:04:23 ----A---- C:\Windows\system32\nvcuda.dll
2010-10-31 16:04:23 ----A---- C:\Windows\system32\nvcompiler.dll
2010-10-31 16:04:23 ----A---- C:\Windows\system32\nvapi.dll
2010-10-31 16:01:18 ----D---- C:\Program Files\NVIDIA Corporation
2010-10-31 15:58:29 ----D---- C:\Program Files\TNod User & Password Finder
2010-10-27 09:24:22 ----A---- C:\Windows\system32\gameux.dll
2010-10-27 09:24:20 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-10-27 09:24:20 ----A---- C:\Windows\system32\Apphlpdm.dll

======List of files/folders modified in the last 1 months======

2010-11-25 17:43:17 ----D---- C:\Windows\Temp
2010-11-25 17:43:06 ----D---- C:\Windows\Prefetch
2010-11-25 16:48:00 ----D---- C:\Windows\System32
2010-11-25 16:47:59 ----D---- C:\Windows\inf
2010-11-25 16:47:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-24 17:30:12 ----D---- C:\Windows\winsxs
2010-11-24 17:30:12 ----D---- C:\Program Files\Internet Explorer
2010-11-24 17:30:10 ----D---- C:\Windows\system32\catroot2
2010-11-24 17:30:07 ----SHD---- C:\System Volume Information
2010-11-24 17:27:41 ----D---- C:\Windows\system32\catroot
2010-11-19 18:07:54 ----D---- C:\Users\honza\AppData\Roaming\uTorrent
2010-11-18 18:30:26 ----D---- C:\Windows\L2Schemas
2010-11-18 18:30:25 ----D---- C:\Windows\system32\drivers
2010-11-18 18:29:08 ----D---- C:\Windows
2010-11-17 19:00:08 ----RSD---- C:\Windows\assembly
2010-11-17 19:00:08 ----D---- C:\Windows\Microsoft.NET
2010-11-17 18:35:44 ----D---- C:\Windows\system32\LogFiles
2010-11-17 18:11:07 ----RD---- C:\Program Files
2010-11-17 15:33:05 ----HD---- C:\ProgramData
2010-11-16 13:30:04 ----SHD---- C:\Windows\Installer
2010-11-16 13:30:04 ----SHD---- C:\Config.Msi
2010-11-15 17:16:48 ----D---- C:\Program Files\Zynga
2010-11-15 17:16:29 ----D---- C:\Windows\system32\drivers\etc
2010-11-15 15:07:59 ----A---- C:\Windows\ntbtlog.txt
2010-11-14 19:32:15 ----AD---- C:\ProgramData\Temp
2010-11-13 16:12:12 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-13 01:25:18 ----SHD---- C:\Boot
2010-11-13 01:25:18 ----D---- C:\Windows\system32\config
2010-11-11 03:02:32 ----D---- C:\Program Files\Full Tilt Poker
2010-11-10 08:56:28 ----D---- C:\ProgramData\Microsoft Help
2010-11-10 08:55:27 ----D---- C:\Program Files\Windows Mail
2010-11-10 08:51:56 ----A---- C:\Windows\system32\mrt.exe
2010-11-04 12:40:45 ----D---- C:\Program Files\Wise Registry Cleaner 3
2010-11-03 01:39:35 ----D---- C:\Program Files\K-Lite Codec Pack
2010-11-01 18:33:02 ----D---- C:\ProgramData\Google
2010-11-01 18:33:02 ----D---- C:\Program Files\Google
2010-11-01 18:33:01 ----D---- C:\Windows\Tasks
2010-11-01 17:47:20 ----D---- C:\Windows\rescache
2010-11-01 16:10:26 ----SD---- C:\ProgramData\Microsoft
2010-11-01 16:10:21 ----RSD---- C:\Windows\Fonts
2010-11-01 16:09:53 ----D---- C:\Program Files\Common Files\microsoft shared
2010-11-01 16:08:33 ----D---- C:\Program Files\Common Files
2010-11-01 16:08:14 ----D---- C:\Windows\system32\cs-CZ
2010-11-01 16:07:51 ----D---- C:\Windows\PolicyDefinitions
2010-11-01 16:02:26 ----D---- C:\Windows\system32\en-US
2010-11-01 16:02:24 ----D---- C:\Program Files\Microsoft.NET
2010-11-01 15:46:04 ----D---- C:\Windows\system32\Tasks
2010-10-31 16:38:08 ----D---- C:\ProgramData\NVIDIA
2010-10-31 16:31:38 ----D---- C:\Windows\Help
2010-10-31 16:05:15 ----D---- C:\Program Files\AGEIA Technologies
2010-10-29 18:28:51 ----D---- C:\Program Files\Sony Ericsson
2010-10-28 02:00:40 ----D---- C:\Windows\AppPatch
2010-10-27 11:47:08 ----D---- C:\Windows\Speech

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AlfaFF;AlfaFF File System mini-filter; C:\Windows\system32\Drivers\AlfaFF.sys [2009-04-09 43184]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-20 324120]
R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-07-29 18992]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-04-09 715248]
R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-30 13824]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [1999-09-10 25244]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2006-11-02 20112]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; \??\C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-07-18 61424]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-02-06 113448]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-02-06 130952]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-02-06 38240]
R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-08-19 15392]
R2 NTIPPKernel;NTIPPKernel; \??\C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 122368]
R2 PSDNServ;PSDNServ; C:\Windows\system32\drivers\PSDNServ.sys [2008-07-29 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\drivers\psdvdisk.sys [2008-07-29 60464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 AVerAF15;AVerMedia BDA Digital Tuner; C:\Windows\System32\Drivers\AVerAF15.sys [2008-03-14 280192]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2006-11-02 21264]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-02-06 33096]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-07 2134424]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2007-12-18 54784]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2009-08-05 48640]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-04-29 20952]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-27 3658752]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-06-25 44064]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-10-16 10084360]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-04-09 47360]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2010-10-07 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-04-04 196784]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
R3 vfs101x;vfs101x; C:\Windows\system32\drivers\vfs101x.sys [2008-05-26 40752]
S3 angalvji;angalvji; C:\Windows\system32\drivers\angalvji.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BthPort;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2007-03-29 79664]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2007-02-27 81200]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2007-02-27 16432]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2010-10-07 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2010-10-07 25512]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-05-07 85136]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011\WNt500x86\Sandra.sys [2009-08-07 23112]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-04-11 15872]
S3 winusb;Sony Ericsson USB Device sa0101 Driver; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
R2 CLHNService;CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504]
R2 DriveHealth;DriveHealth; C:\Program Files\Helexis\Drive Health\dhcore.exe [2009-10-23 561152]
R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-07-29 500784]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-08-19 24576]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-04-30 815104]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
R2 IGBASVC;iGroupTec Service; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [2009-04-09 3520512]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
R2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe [2007-12-06 110592]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 45056]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 131072]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2010-10-16 600680]
R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe [2008-09-04 1295616]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-10-20 66872]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-04-30 466944]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2007-01-09 272024]
R2 vfsFPService;Validity Fingerprint Service; C:\Windows\system32\vfsFPService.exe [2008-05-26 599344]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 AeLookupSvcAgereModemAudio;Funkčnost aplikací AeLookupSvcAgereModemAudio; C:\Windows\TEMP\xivrpufwof.exe service []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-02-06 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-05-17 655624]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011\RpcAgentSrv.exe [2009-08-17 93848]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-10-26 155344]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrzani Notebooku

#2 Příspěvek od Rudy »

Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
janveris
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 lis 2010 17:39

Re: Zamrzani Notebooku

#3 Příspěvek od janveris »

prikladam log z combofixu....


ComboFix 10-11-24.04 - honza 26.11.2010 0:13.3.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3068.1869 [GMT 1:00]
Spuštěný z: c:\users\honza\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý

.

((((((((((((((((((((((((( Soubory vytvořené od 2010-10-25 do 2010-11-25 )))))))))))))))))))))))))))))))
.

2010-11-25 23:22 . 2010-11-25 23:22 -------- d-----w- c:\users\honza\AppData\Local\temp
2010-11-25 23:22 . 2010-11-25 23:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-11-25 16:40 . 2010-11-25 16:41 -------- d-----w- C:\rsit
2010-11-24 16:30 . 2010-10-19 04:27 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2010-11-24 16:28 . 2010-11-10 04:33 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7FDF57C4-6E86-4C80-A8F1-260EC48DC12F}\mpengine.dll
2010-11-17 14:05 . 2010-11-17 14:05 2263 ----a-w- c:\programdata\xmlBD57.tmp
2010-11-17 14:05 . 2010-11-17 14:05 13593 ----a-w- c:\programdata\xmlBD08.tmp
2010-11-17 14:05 . 2010-11-17 14:05 5222 ----a-w- c:\programdata\xmlACE1.tmp
2010-11-17 13:52 . 2010-11-17 13:52 -------- d-----w- c:\program files\SiSoftware
2010-11-17 03:11 . 2010-11-17 03:11 -------- d-----w- c:\program files\Helexis
2010-11-13 01:41 . 2010-11-13 01:41 -------- d-----w- c:\programdata\SpinTop Games
2010-11-10 06:26 . 2010-10-07 11:37 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2010-11-04 11:41 . 2010-11-04 11:47 -------- d-----w- c:\program files\Wise Registry Cleaner
2010-11-03 00:42 . 2010-11-03 00:42 -------- d-----w- c:\users\honza\AppData\Roaming\Media Player Classic
2010-11-03 00:39 . 2010-03-15 09:31 165376 ----a-w- c:\windows\system32\unrar.dll
2010-11-03 00:39 . 2010-10-18 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-11-03 00:39 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-11-03 00:39 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-11-03 00:39 . 2010-01-17 15:18 151552 ----a-w- c:\windows\system32\ac3acm.acm
2010-11-03 00:39 . 2006-10-18 18:05 232448 ----a-w- c:\windows\system32\mp3fhg.acm
2010-11-03 00:39 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-11-01 15:14 . 2010-11-01 15:14 -------- d-----w- c:\windows\cs
2010-11-01 15:10 . 2010-11-01 15:10 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-11-01 15:10 . 2010-11-01 15:14 -------- d-----w- c:\program files\Windows Live
2010-11-01 15:08 . 2010-11-05 13:52 -------- d-----w- c:\users\honza\AppData\Local\Windows Live
2010-11-01 15:08 . 2010-11-01 15:08 -------- d-----w- c:\program files\Common Files\Windows Live
2010-11-01 15:08 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll
2010-11-01 15:01 . 2010-11-01 15:04 -------- d-----w- C:\9c9e4f27e41f035fb366dd13a6
2010-10-31 15:10 . 2010-10-31 15:10 -------- d-----w- c:\programdata\NVIDIA Corporation
2010-10-31 15:04 . 2010-10-16 18:55 888424 ----a-w- c:\windows\system32\nvdispco322050.dll
2010-10-31 15:04 . 2010-10-16 18:55 813672 ----a-w- c:\windows\system32\nvgenco322030.dll
2010-10-31 15:04 . 2010-10-16 18:55 5473896 ----a-w- c:\windows\system32\nvwgf2um.dll
2010-10-31 15:04 . 2010-10-16 18:55 2666600 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-10-31 15:04 . 2010-10-16 18:55 14899816 ----a-w- c:\windows\system32\nvoglv32.dll
2010-10-31 15:04 . 2010-10-16 18:55 10084360 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2010-10-31 15:04 . 2010-10-16 18:55 10023528 ----a-w- c:\windows\system32\nvd3dum.dll
2010-10-31 15:04 . 2010-10-16 18:55 57960 ----a-w- c:\windows\system32\OpenCL.dll
2010-10-31 15:04 . 2010-10-16 18:55 4837480 ----a-w- c:\windows\system32\nvcuda.dll
2010-10-31 15:04 . 2010-10-16 18:55 2912360 ----a-w- c:\windows\system32\nvcuvid.dll
2010-10-31 15:04 . 2010-10-16 18:55 1719912 ----a-w- c:\windows\system32\nvapi.dll
2010-10-31 15:04 . 2010-10-16 18:55 13019752 ----a-w- c:\windows\system32\nvcompiler.dll
2010-10-31 15:01 . 2010-10-31 15:32 -------- d-----w- c:\program files\NVIDIA Corporation
2010-10-31 14:58 . 2010-10-31 14:58 -------- d-----w- c:\program files\TNod User & Password Finder
2010-10-27 08:24 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-10-27 08:24 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-10-27 08:24 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 09:41 . 2009-10-03 06:46 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-16 18:55 . 2010-10-31 15:04 10920 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
2010-10-16 11:42 . 2010-10-16 11:42 66664 ----a-w- c:\windows\system32\nvshext.dll
2010-10-16 11:42 . 2010-10-16 11:42 600680 ----a-w- c:\windows\system32\nvvsvc.exe
2010-10-16 11:42 . 2010-10-16 11:42 279144 ----a-w- c:\windows\system32\nvhotkey.dll
2010-10-16 11:42 . 2010-10-16 11:42 1881704 ----a-w- c:\windows\system32\nvsvcr.dll
2010-10-16 11:42 . 2010-10-16 11:42 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-10-16 11:42 . 2010-10-16 11:42 3420776 ----a-w- c:\windows\system32\nvcpl.dll
2010-10-16 11:42 . 2010-10-16 11:42 2079336 ----a-w- c:\windows\system32\nvsvc.dll
2010-10-14 00:36 . 2010-10-14 00:36 15451288 ----a-w- c:\windows\system32\xlive.dll
2010-10-14 00:36 . 2010-10-14 00:36 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2010-10-12 14:34 . 2010-10-12 14:34 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-10-07 15:06 . 2010-10-07 15:06 27632 ----a-w- c:\windows\system32\drivers\seehcri.sys
2010-10-07 15:06 . 2010-10-07 15:06 25512 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2010-10-07 15:06 . 2010-10-07 15:06 13224 ----a-w- c:\windows\system32\drivers\ggflt.sys
2010-09-22 23:32 . 2010-09-22 23:32 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-09-13 13:56 . 2010-10-13 04:26 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-08 06:01 . 2010-10-13 04:25 916480 ----a-w- c:\windows\system32\wininet.dll
2010-09-08 05:57 . 2010-10-13 04:25 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-09-08 05:57 . 2010-10-13 04:25 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-08 05:56 . 2010-10-13 04:25 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-09-08 05:56 . 2010-10-13 04:25 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-09-08 05:04 . 2010-10-13 04:25 385024 ----a-w- c:\windows\system32\html.iec
2010-09-08 04:26 . 2010-10-13 04:25 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-09-08 04:25 . 2010-10-13 04:25 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-09-06 16:20 . 2010-10-13 04:26 125952 ----a-w- c:\windows\system32\srvsvc.dll
2010-09-06 16:19 . 2010-10-13 04:26 17920 ----a-w- c:\windows\system32\netevent.dll
2010-09-06 13:45 . 2010-10-13 04:26 304128 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-06 13:45 . 2010-10-13 04:26 145408 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-06 13:45 . 2010-10-13 04:26 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-31 15:46 . 2010-10-13 04:25 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 15:46 . 2010-10-13 04:25 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-31 15:44 . 2010-10-13 04:25 531968 ----a-w- c:\windows\system32\comctl32.dll
2010-08-31 13:27 . 2010-10-13 04:25 2038272 ----a-w- c:\windows\system32\win32k.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-07-29 15:52 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JAJC"="c:\program files\JAJC\jajc.exe" [2008-07-31 1797120]
"Sony Ericsson PC Companion"="c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" [2010-11-04 423632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-04 1037608]
"eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-07-29 526896]
"BkupTray"="c:\program files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" [2008-04-25 28672]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"ProductReg"="c:\program files\Acer\WR_PopUp\ProductReg.exe" [2008-09-23 6144]
"ZPdtWzdVitaKey MC3000"="c:\program files\Acer\Acer Bio Protection\PdtWzd.exe" [2009-04-08 3719680]
"PLFSetI"="c:\windows\PLFSetI.exe" [2008-06-30 200704]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-06-16 809480]
"eAudio"="c:\program files\Acer\Empowering Technology\eAudio\eAudio.exe" [2008-09-11 544768]
"ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-08-01 405504]
"ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-07-24 147456]
"CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-07-24 167936]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-07-18 167936]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 57344]
"OODefragTray"="c:\windows\system32\oodtray.exe" [2008-09-04 2524416]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-02-06 2021400]
"RtHDVCpl"="RtHDVCpl.exe" [2008-05-07 6139904]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2003-06-25 49152]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-10-23 233472]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-4-24 723760]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2009-4-9 813584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AWinNotifyVitaKey MC3000]
2009-04-08 23:41 3162624 ----a-w- c:\program files\Acer\Acer Bio Protection\WinNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2543619508-2718707040-2919650921-1000]
"EnableNotificationsRef"=dword:00000001

R2 AeLookupSvcAgereModemAudio;Funkčnost aplikací AeLookupSvcAgereModemAudio;c:\windows\TEMP\xivrpufwof.exe service [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 IGBASVC;iGroupTec Service;c:\program files\Acer\Acer Bio Protection\BASVC.exe [2009-04-08 3520512]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 131072]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2010-10-07 13224]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-05-07 85136]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Lite 2011\RpcAgentSrv.exe [2009-08-17 93848]
R3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-10-26 155344]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\Drivers\AlfaFF.sys [2009-04-08 43184]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2009-04-09 715248]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-07-18 61424]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504]
S2 DriveHealth;DriveHealth;c:\program files\Helexis\Drive Health\dhcore.exe [2009-10-23 561152]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 727720]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-02-06 38240]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-08-19 24576]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 45056]
S2 NTIPPKernel;NTIPPKernel;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 122368]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-05-26 599344]
S3 AVerAF15;AVerMedia BDA Digital Tuner;c:\windows\system32\Drivers\AVerAF15.sys [2008-03-14 280192]
S3 itecir;ITECIR Infrared Receiver;c:\windows\system32\DRIVERS\itecir.sys [2007-12-18 54784]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-27 3658752]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-06-25 44064]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [2010-10-07 27632]
S3 vfs101x;vfs101x;c:\windows\system32\drivers\vfs101x.sys [2008-05-26 40752]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.facebook.com/
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0409&m=aspire_8930
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} - hxxp://www.o2c.de/download/o2cplayerac.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-26 00:22
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(4604)
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\windows\system32\btmmhook.dll
c:\windows\System32\SysHook.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Celkový čas: 2010-11-26 00:25:19
ComboFix-quarantined-files.txt 2010-11-25 23:25
ComboFix2.txt 2010-11-25 22:38
ComboFix3.txt 2010-11-25 19:14

Před spuštěním: Volných bajtů: 79 425 986 560
Po spuštění: Volných bajtů: 79 386 402 816

- - End Of File - - C5A0C8AD5CD2872DFB70CF8FBB0FAE7A
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrzani Notebooku

#4 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj
Collect::
c:\programdata\xmlBD57.tmp
c:\programdata\xmlBD08.tmp
c:\programdata\xmlACE1.tmp
Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
janveris
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 lis 2010 17:39

Re: Zamrzani Notebooku

#5 Příspěvek od janveris »

tak jsem udelal jak jste mi rekl.... combofix mi pak vyjel novy log ktery zde prikladam a ted necham pocitac chvilku stat a uvidime jestli to pomohlo ;-) zatim dik a pak dam vedet jak jsem dopad...


ComboFix 10-11-24.04 - honza 26.11.2010 10:33:39.4.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3068.1850 [GMT 1:00]
Spuštěný z: C:\Users\honza\Desktop\ComboFix.exe
Použité ovládací přepínače :: C:\Users\honza\Desktop\CFScript.txt
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý


file zipped: c:\programdata\xmlACE1.tmp
file zipped: c:\programdata\xmlBD08.tmp
file zipped: c:\programdata\xmlBD57.tmp
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\xmlACE1.tmp
c:\programdata\xmlBD08.tmp
c:\programdata\xmlBD57.tmp

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-10-26 do 2010-11-26 )))))))))))))))))))))))))))))))
.

2010-11-26 09:41:16 . 2010-11-26 09:41:25 -------- d-----w- C:\Users\honza\AppData\Local\temp
2010-11-26 09:41:16 . 2010-11-26 09:41:16 -------- d-----w- C:\Users\Default\AppData\Local\temp
2010-11-26 09:13:34 . 2010-11-10 04:33:37 6273872 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5010147A-648E-4B49-B6C5-0F10A1A0ABF0}\mpengine.dll
2010-11-25 16:40:50 . 2010-11-25 16:41:11 -------- d-----w- C:\rsit
2010-11-24 16:30:00 . 2010-10-19 04:27:49 7680 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2010-11-17 13:52:18 . 2010-11-17 13:52:18 -------- d-----w- C:\Program Files\SiSoftware
2010-11-17 03:11:59 . 2010-11-17 03:11:59 -------- d-----w- C:\Program Files\Helexis
2010-11-13 01:41:01 . 2010-11-13 01:41:01 -------- d-----w- C:\ProgramData\SpinTop Games
2010-11-10 06:26:57 . 2010-10-07 11:37:35 2409784 ----a-w- C:\Program Files\Windows Mail\OESpamFilter.dat
2010-11-04 11:41:12 . 2010-11-04 11:47:57 -------- d-----w- C:\Program Files\Wise Registry Cleaner
2010-11-03 00:42:30 . 2010-11-03 00:42:30 -------- d-----w- C:\Users\honza\AppData\Roaming\Media Player Classic
2010-11-03 00:39:26 . 2010-03-15 09:31:50 165376 ----a-w- C:\Windows\system32\unrar.dll
2010-11-03 00:39:24 . 2010-10-18 08:00:00 108032 ----a-w- C:\Windows\system32\ff_vfw.dll
2010-11-03 00:39:24 . 2010-06-08 16:10:50 790528 ----a-w- C:\Windows\system32\xvidcore.dll
2010-11-03 00:39:24 . 2010-06-08 16:10:50 134144 ----a-w- C:\Windows\system32\xvidvfw.dll
2010-11-03 00:39:24 . 2010-01-17 15:18:08 151552 ----a-w- C:\Windows\system32\ac3acm.acm
2010-11-03 00:39:24 . 2006-10-18 18:05:16 232448 ----a-w- C:\Windows\system32\mp3fhg.acm
2010-11-03 00:39:24 . 2004-01-25 16:18:44 217088 ----a-w- C:\Windows\system32\yv12vfw.dll
2010-11-01 15:14:08 . 2010-11-01 15:14:08 -------- d-----w- C:\Windows\cs
2010-11-01 15:10:48 . 2010-11-01 15:10:48 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition
2010-11-01 15:10:10 . 2010-11-01 15:14:36 -------- d-----w- C:\Program Files\Windows Live
2010-11-01 15:08:34 . 2010-11-05 13:52:03 -------- d-----w- C:\Users\honza\AppData\Local\Windows Live
2010-11-01 15:08:33 . 2010-11-01 15:08:33 -------- d-----w- C:\Program Files\Common Files\Windows Live
2010-11-01 15:08:07 . 2009-08-04 08:02:24 754688 ----a-w- C:\Windows\system32\webservices.dll
2010-11-01 15:01:52 . 2010-11-01 15:04:46 -------- d-----w- C:\9c9e4f27e41f035fb366dd13a6
2010-10-31 15:10:33 . 2010-10-31 15:10:33 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2010-10-31 15:04:24 . 2010-10-16 18:55:00 888424 ----a-w- C:\Windows\system32\nvdispco322050.dll
2010-10-31 15:04:24 . 2010-10-16 18:55:00 813672 ----a-w- C:\Windows\system32\nvgenco322030.dll
2010-10-31 15:04:24 . 2010-10-16 18:55:00 5473896 ----a-w- C:\Windows\system32\nvwgf2um.dll
2010-10-31 15:04:24 . 2010-10-16 18:55:00 2666600 ----a-w- C:\Windows\system32\nvcuvenc.dll
2010-10-31 15:04:24 . 2010-10-16 18:55:00 14899816 ----a-w- C:\Windows\system32\nvoglv32.dll
2010-10-31 15:04:24 . 2010-10-16 18:55:00 10084360 ----a-w- C:\Windows\system32\drivers\nvlddmkm.sys
2010-10-31 15:04:24 . 2010-10-16 18:55:00 10023528 ----a-w- C:\Windows\system32\nvd3dum.dll
2010-10-31 15:04:23 . 2010-10-16 18:55:00 57960 ----a-w- C:\Windows\system32\OpenCL.dll
2010-10-31 15:04:23 . 2010-10-16 18:55:00 4837480 ----a-w- C:\Windows\system32\nvcuda.dll
2010-10-31 15:04:23 . 2010-10-16 18:55:00 2912360 ----a-w- C:\Windows\system32\nvcuvid.dll
2010-10-31 15:04:23 . 2010-10-16 18:55:00 1719912 ----a-w- C:\Windows\system32\nvapi.dll
2010-10-31 15:04:23 . 2010-10-16 18:55:00 13019752 ----a-w- C:\Windows\system32\nvcompiler.dll
2010-10-31 15:01:18 . 2010-10-31 15:32:30 -------- d-----w- C:\Program Files\NVIDIA Corporation
2010-10-31 14:58:29 . 2010-10-31 14:58:29 -------- d-----w- C:\Program Files\TNod User & Password Finder

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 09:41:44 . 2009-10-03 06:46:22 222080 ------w- C:\Windows\system32\MpSigStub.exe
2010-10-16 18:55:00 . 2010-10-31 15:04:23 10920 ----a-w- C:\Windows\system32\drivers\nvBridge.kmd
2010-10-16 11:42:46 . 2010-10-16 11:42:46 66664 ----a-w- C:\Windows\system32\nvshext.dll
2010-10-16 11:42:46 . 2010-10-16 11:42:46 600680 ----a-w- C:\Windows\system32\nvvsvc.exe
2010-10-16 11:42:46 . 2010-10-16 11:42:46 279144 ----a-w- C:\Windows\system32\nvhotkey.dll
2010-10-16 11:42:46 . 2010-10-16 11:42:46 1881704 ----a-w- C:\Windows\system32\nvsvcr.dll
2010-10-16 11:42:46 . 2010-10-16 11:42:46 110696 ----a-w- C:\Windows\system32\nvmctray.dll
2010-10-16 11:42:42 . 2010-10-16 11:42:42 3420776 ----a-w- C:\Windows\system32\nvcpl.dll
2010-10-16 11:42:38 . 2010-10-16 11:42:38 2079336 ----a-w- C:\Windows\system32\nvsvc.dll
2010-10-14 00:36:52 . 2010-10-14 00:36:52 15451288 ----a-w- C:\Windows\system32\xlive.dll
2010-10-14 00:36:50 . 2010-10-14 00:36:50 13642904 ----a-w- C:\Windows\system32\xlivefnt.dll
2010-10-12 14:34:11 . 2010-10-12 14:34:23 423656 ----a-w- C:\Windows\system32\deployJava1.dll
2010-10-07 15:06:45 . 2010-10-07 15:06:45 27632 ----a-w- C:\Windows\system32\drivers\seehcri.sys
2010-10-07 15:06:29 . 2010-10-07 15:06:29 25512 ----a-w- C:\Windows\system32\drivers\ggsemc.sys
2010-10-07 15:06:29 . 2010-10-07 15:06:29 13224 ----a-w- C:\Windows\system32\drivers\ggflt.sys
2010-09-22 23:32:56 . 2010-09-22 23:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR
2010-09-13 13:56:41 . 2010-10-13 04:26:31 8147456 ----a-w- C:\Windows\system32\wmploc.DLL
2010-09-08 06:01:28 . 2010-10-13 04:25:47 916480 ----a-w- C:\Windows\system32\wininet.dll
2010-09-08 05:57:18 . 2010-10-13 04:25:48 43520 ----a-w- C:\Windows\system32\licmgr10.dll
2010-09-08 05:57:05 . 2010-10-13 04:25:47 1469440 ----a-w- C:\Windows\system32\inetcpl.cpl
2010-09-08 05:56:53 . 2010-10-13 04:25:46 109056 ----a-w- C:\Windows\system32\iesysprep.dll
2010-09-08 05:56:53 . 2010-10-13 04:25:45 71680 ----a-w- C:\Windows\system32\iesetup.dll
2010-09-08 05:04:36 . 2010-10-13 04:25:48 385024 ----a-w- C:\Windows\system32\html.iec
2010-09-08 04:26:46 . 2010-10-13 04:25:46 133632 ----a-w- C:\Windows\system32\ieUnatt.exe
2010-09-08 04:25:15 . 2010-10-13 04:25:45 1638912 ----a-w- C:\Windows\system32\mshtml.tlb
2010-09-06 16:20:29 . 2010-10-13 04:26:14 125952 ----a-w- C:\Windows\system32\srvsvc.dll
2010-09-06 16:19:06 . 2010-10-13 04:26:13 17920 ----a-w- C:\Windows\system32\netevent.dll
2010-09-06 13:45:38 . 2010-10-13 04:26:13 304128 ----a-w- C:\Windows\system32\drivers\srv.sys
2010-09-06 13:45:22 . 2010-10-13 04:26:13 145408 ----a-w- C:\Windows\system32\drivers\srv2.sys
2010-09-06 13:45:19 . 2010-10-13 04:26:13 102400 ----a-w- C:\Windows\system32\drivers\srvnet.sys
2010-08-31 15:46:37 . 2010-10-13 04:25:39 954752 ----a-w- C:\Windows\system32\mfc40.dll
2010-08-31 15:46:37 . 2010-10-13 04:25:38 954288 ----a-w- C:\Windows\system32\mfc40u.dll
2010-08-31 15:44:31 . 2010-10-13 04:25:24 531968 ----a-w- C:\Windows\system32\comctl32.dll
2010-08-31 13:27:38 . 2010-10-13 04:25:28 2038272 ----a-w- C:\Windows\system32\win32k.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-07-29 15:52:34 121392 ----a-w- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JAJC"="C:\Program Files\JAJC\jajc.exe" [2008-07-31 16:22:42 1797120]
"Sony Ericsson PC Companion"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" [2010-11-04 16:30:40 423632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 15:45:06 182808]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-04 09:26:54 1037608]
"eDataSecurity Loader"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-07-29 15:52:50 526896]
"BkupTray"="C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" [2008-04-25 19:36:20 28672]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 02:38:54 40048]
"ProductReg"="C:\Program Files\Acer\WR_PopUp\ProductReg.exe" [2008-09-23 03:53:32 6144]
"ZPdtWzdVitaKey MC3000"="C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" [2009-04-08 23:41:25 3719680]
"PLFSetI"="C:\Windows\PLFSetI.exe" [2008-06-30 15:56:32 200704]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2008-06-16 09:58:38 809480]
"eAudio"="C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe" [2008-09-11 20:46:38 544768]
"ePower_DMC"="C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-08-01 07:51:42 405504]
"ArcadeDeluxeAgent"="C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-07-24 13:54:10 147456]
"CLMLServer"="C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-07-24 13:54:18 167936]
"PlayMovie"="C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-07-18 14:04:36 167936]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 10:44:34 31072]
"CloneCDTray"="C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 19:21:04 57344]
"OODefragTray"="C:\Windows\system32\oodtray.exe" [2008-09-04 04:01:42 2524416]
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 09:44:46 248552]
"AdobeCS4ServiceManager"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 05:58:34 611712]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2009-01-05 14:18:48 413696]
"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe" [2009-02-06 12:23:12 2021400]
"RtHDVCpl"="RtHDVCpl.exe" [2008-05-07 14:19:26 6139904]
"Windows Mobile Device Center"="C:\Windows\WindowsMobile\wmdc.exe" [2007-05-31 07:21:28 648072]
"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2003-06-25 10:24:48 49152]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2003-10-23 18:51:18 233472]
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 01:44:40 500208]
"SwitchBoard"="C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 11:37:14 517096]
"AdobeCS5ServiceManager"="C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 02:57:06 406992]
"Malwarebytes' Anti-Malware"="C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 13:39:32 437584]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 16:55:10 55824]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-4-24 723760]
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2009-4-9 813584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AWinNotifyVitaKey MC3000]
2009-04-08 23:41:44 3162624 ----a-w- C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2543619508-2718707040-2919650921-1000]
"EnableNotificationsRef"=dword:00000001

R2 AeLookupSvcAgereModemAudio;Funkčnost aplikací AeLookupSvcAgereModemAudio;C:\Windows\TEMP\xivrpufwof.exe service [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 12:16:28 130384]
R2 IGBASVC;iGroupTec Service;C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [2009-04-08 23:41:33 3520512]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 19:36:02 131072]
R3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\system32\DRIVERS\ggflt.sys [2010-10-07 15:06:29 13224]
R3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys [2008-05-07 10:47:36 85136]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011\RpcAgentSrv.exe [2009-08-17 22:19:24 93848]
R3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-10-26 15:05:24 155344]
R3 SwitchBoard;SwitchBoard;C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 11:37:14 517096]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 12:16:28 753504]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 15:33:04 51040]
S0 AlfaFF;AlfaFF File System mini-filter;C:\Windows\system32\Drivers\AlfaFF.sys [2009-04-08 23:41:29 43184]
S0 sptd;sptd;C:\Windows\System32\Drivers\sptd.sys [2009-04-09 00:40:51 715248]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys [2009-02-06 12:23:18 106208]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-07-18 14:05:10 61424]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 11:11:14 16384]
S2 CLHNService;CLHNService;C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 16:35:02 81504]
S2 DriveHealth;DriveHealth;C:\Program Files\Helexis\Drive Health\dhcore.exe [2009-10-23 07:26:30 561152]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-02-06 12:23:36 727720]
S2 epfwwfp;epfwwfp;C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-02-06 12:24:26 38240]
S2 ETService;Empowering Technology Service;C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-08-19 12:27:22 24576]
S2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 12:30:02 222456]
S2 MBAMService;MBAMService;C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 13:39:34 304464]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 19:36:20 45056]
S2 NTIPPKernel;NTIPPKernel;C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 16:35:08 122368]
S2 vfsFPService;Validity Fingerprint Service;C:\Windows\system32\vfsFPService.exe [2008-05-26 03:43:58 599344]
S3 AVerAF15;AVerMedia BDA Digital Tuner;C:\Windows\system32\Drivers\AVerAF15.sys [2008-03-14 06:51:50 280192]
S3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys [2007-12-18 15:12:12 54784]
S3 MBAMProtector;MBAMProtector;C:\Windows\system32\drivers\mbam.sys [2010-04-29 13:39:26 20952]
S3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit;C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-27 22:29:26 3658752]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda32v.sys [2008-06-25 17:35:06 44064]
S3 seehcri;Sony Ericsson seehcri Device Driver;C:\Windows\system32\DRIVERS\seehcri.sys [2010-10-07 15:06:45 27632]
S3 vfs101x;vfs101x;C:\Windows\system32\drivers\vfs101x.sys [2008-05-26 03:44:14 40752]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.facebook.com/
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=2&o=vp32&d=0409&m=aspire_8930
IE: E&xportovat do aplikace Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: WikiKomentáře Google... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} - hxxp://www.o2c.de/download/o2cplayerac.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-26 10:41:25
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2010-11-26 10:44:05
ComboFix-quarantined-files.txt 2010-11-26 09:44:02
ComboFix2.txt 2010-11-25 23:25:19
ComboFix3.txt 2010-11-25 22:38:29
ComboFix4.txt 2010-11-25 19:14:36

Před spuštěním: Volných bajtů: 75 827 617 792
Po spuštění: Volných bajtů: 75 789 209 600

- - End Of File - - F980E291B486E365164BEE23867FD4DA
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrzani Notebooku

#6 Příspěvek od Rudy »

Smazáno, log již vypadá čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
janveris
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 lis 2010 17:39

Re: Zamrzani Notebooku

#7 Příspěvek od janveris »

tak me to porad zlobi... zacinam si myslet ze to neni virem ale ze je to neco jineho, akorat nevim co :-(
pocitac jsem projel uz snad vsim moznym (malwarebytes, ad aware atd...) aktualizace mam vsechny... ovladace by meli byt ok. spis me napadlo jestli to nemuze byt hardwaroveho razu... treba HDD ale kdyz jsem zkousel diagnosticke nastroje zadne chyby to nehlasi... uz jsem z toho zoufalej... proste kdyz na pocitac zpravidla pul hodky nesahnu tak zmrzne... uvitam jakykoli napad.... dekuji
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrzani Notebooku

#8 Příspěvek od Rudy »

Podle popisu si myslím, že problém bude v systému. Buď jde o chybu win, nebo máte v PC něco, co je sice legitimní, ale s něčím juiným způsobuje sw. kolizi. Začal bych opravou systému z instal. média.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“