Externí HDD - TZV. Stracené DATA + Nastavenie

[nEo]

Dobry den
Moj problem je takmer istý ako ste tu možno už mali....
Na externom HDD som mal veci ktore su aj na obrazku viditelne ... No moj sikovny brat ho niekde mal nieco snim spravil a ked ho doniesol domou tak boli tam iba niektore veci ale miesto bolo zapratane ... ja som sa nejako pokusal to vratit s5 no po viacerych klikaniach som nahodne vratil s5 iba dve priecinky oznacene ciernym nEo a Music ... Pracoval som vo Windows 7, dneska som si odkril aj ostatne priecinky pomocou : Skryt chranene subory operacneho systemu... Zobrazily sa mi vsetky ktore su tam ... Na ostatne priecinky nemam skill Od rana to skusam ako vcera vecer no nejde to ... Tak pisem sem...

Ja by som potreboval nejaky navod popripadne radu, ktorou by som to napravil. Samozrejme bez programou pri ktorych nakonci by som musel kopirovat cely obsah HDD ...

Predom za odpvoede dakujem.....

[vyosek]

Zdravim

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=81939

Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)

• Stahne a ulozte na plochu UsbFix http://www.viry.cz/forum/viewtopic.php?f=24&t=102308
• Spustte a kliknete na Deletion
• Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt

[nEo]

Tak tu to mate =) doufam ze sem to udelal spravne

http://travian.g6.cz/img/UsbFix.txt
http://travian.g6.cz/img/UsbFix_Upload_ ... 72C29C.zip

[vyosek]

Logy mi dejte primo sem jako prispevek

[nEo]

############################## | UsbFix V 7.096 | [Deletion]

User: Administrator (Administrator) # 3DNEOGRA-72C29C
Updated 15/08/2012 by El Desaparecido
Started at 18:34:16 | 04/11/2012

Website: http://eldesaparecido.com
Forum: http://forum.eldesaparecido.com
Suspicious file ? : http://eldesaparecido.com/upload.php
Contact: contact@eldesaparecido.com

PC: Gigabyte Technology Co., Ltd. (945GZM-S2) (X86-based PC) # Desktop Computer
CPU: Intel(R) Pentium(R) D CPU 3.00GHz (3014)
RAM -> [Total : 1023 | Free : 184]
BIOS: Award Modular BIOS v6.00PG
BOOT: Normal boot

OS: Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 7.0.5730.13

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ -> Fixed drive # 221 Gb (140 Mb free - 63%) [] # NTFS
H:\ (%systemdrive%) -> Fixed drive # 12 Gb (4 Mb free - 35%) [] # NTFS
I:\ -> CD-ROM
K:\ -> Fixed drive # 298 Gb (38 Mb free - 13%) [nEo vs. c@rtm3n] # NTFS

################## | Active Processes |

H:\WINDOWS\System32\smss.exe (740)
H:\WINDOWS\system32\winlogon.exe (820)
H:\WINDOWS\system32\services.exe (864)
H:\WINDOWS\system32\lsass.exe (876)
H:\WINDOWS\system32\Ati2evxx.exe (1040)
H:\WINDOWS\system32\svchost.exe (1064)
H:\WINDOWS\System32\svchost.exe (1492)
H:\WINDOWS\system32\Ati2evxx.exe (1652)
H:\Program Files\AVAST Software\Avast\AvastSvc.exe (1924)
H:\WINDOWS\system32\spoolsv.exe (256)
H:\WINDOWS\Explorer.EXE (472)
H:\Program Files\LClock\LClock.exe (1624)
H:\Program Files\Common Files\Java\Java Update\jusched.exe (1680)
H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (1712)
H:\Program Files\AVAST Software\Avast\avastUI.exe (1728)
H:\WINDOWS\RTHDCPL.EXE (1772)
H:\WINDOWS\system32\ctfmon.exe (1812)
H:\Program Files\Windows Sidebar\sidebar.exe (1956)
H:\Program Files\Steam\Steam.exe (1984)
H:\Program Files\Skype\Phone\Skype.exe (1996)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.123\GoogleCrashHandler.exe (192)
H:\Program Files\LogMeIn Hamachi\hamachi-2.exe (1428)
H:\Program Files\Java\jre6\bin\jqs.exe (1452)
H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (3412)
H:\Program Files\Windows Sidebar\sidebar.exe (2408)
H:\Program Files\Windows Sidebar\sidebar.exe (2420)
H:\WINDOWS\system32\wscntfy.exe (3068)
h:\program files\steam\steamapps\puuchyng_87@hotmail.com\counter-strike\hl.exe (732)
H:\Program Files\Steam\GameOverlayUI.exe (3092)
H:\Program Files\Common Files\Java\Java Update\jucheck.exe (3388)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3872)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1188)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1276)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (2544)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3132)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1420)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1784)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3428)
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (596)
H:\UsbFix\Go.exe (1376)

################## | Stopped processes |

Stopped! H:\WINDOWS\system32\Ati2evxx.exe (1040)
Stopped! H:\WINDOWS\system32\Ati2evxx.exe (1652)
Stopped! H:\Program Files\AVAST Software\Avast\AvastSvc.exe (1924)
Stopped! H:\WINDOWS\system32\spoolsv.exe (256)
Stopped! H:\WINDOWS\Explorer.EXE (472)
Stopped! H:\Program Files\LClock\LClock.exe (1624)
Stopped! H:\Program Files\Common Files\Java\Java Update\jusched.exe (1680)
Stopped! H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (1712)
Stopped! H:\Program Files\AVAST Software\Avast\avastUI.exe (1728)
Stopped! H:\WINDOWS\RTHDCPL.EXE (1772)
Stopped! H:\WINDOWS\system32\ctfmon.exe (1812)
Stopped! H:\Program Files\Windows Sidebar\sidebar.exe (1956)
Stopped! H:\Program Files\Steam\Steam.exe (1984)
Stopped! H:\Program Files\Skype\Phone\Skype.exe (1996)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.123\GoogleCrashHandler.exe (192)
Stopped! H:\Program Files\LogMeIn Hamachi\hamachi-2.exe (1428)
Stopped! H:\Program Files\Java\jre6\bin\jqs.exe (1452)
Stopped! H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (3412)
Stopped! H:\Program Files\Windows Sidebar\sidebar.exe (2408)
Stopped! H:\Program Files\Windows Sidebar\sidebar.exe (2420)
Stopped! H:\WINDOWS\system32\wscntfy.exe (3068)
Stopped! h:\program files\steam\steamapps\puuchyng_87@hotmail.com\counter-strike\hl.exe (732)
Stopped! H:\Program Files\Steam\GameOverlayUI.exe (3092)
Stopped! H:\Program Files\Common Files\Java\Java Update\jucheck.exe (3388)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3872)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1188)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1276)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (2544)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3132)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1420)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (1784)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (3428)
Stopped! H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (596)

################## | Files # Infected Folders |

Deleted ! H:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\hamachi-update-2.1.0.215.exe
Deleted ! C:\$RECYCLE.BIN\S-1-5-21-4010351331-4231002985-1406487318-1000
Deleted ! C:\Recycler\S-1-5-21-1202660629-117609710-1417001333-500
Deleted ! C:\Recycler\S-1-5-21-1708537768-842925246-1177238915-500
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-4010351331-4231002985-1406487318-1000
Deleted ! H:\Recycler\S-1-5-21-1202660629-117609710-1417001333-500
Deleted ! K:\$RECYCLE.BIN\S-1-5-21-2377881101-255804552-1266927936-1000
Deleted ! K:\$RECYCLE.BIN\S-1-5-21-2816921977-2417718257-125397607-1003
Deleted ! K:\$RECYCLE.BIN\S-1-5-21-3353799255-2566692370-4073618140-1001
Deleted ! K:\$RECYCLE.BIN\S-1-5-21-4010351331-4231002985-1406487318-1000
Deleted ! K:\Recycler\S-1-5-21-1202660629-117609710-1417001333-500
Deleted ! K:\Recycler\S-1-5-21-1708537768-842925246-1177238915-500
Deleted ! K:\Recycler\S-1-5-21-1993962763-287218729-839522115-500
Deleted ! K:\Recycler\S-1-5-21-583907252-1123561945-839522115-500
Deleted ! K:\Recycler\S-1-5-21-602162358-706699826-725345543-500
Deleted ! K:\RECYCLER\e5188982.exe

(!) Temporary files deleted.

################## | Registry |


################## | Mountpoints2 |


################## | Listing |

[18/08/2012 - 16:53:09 | SHD ] C:\$Recycle.Bin
[25/09/2012 - 21:20:40 | D ] C:\AMD
[05/06/2012 - 19:16:58 | D ] C:\ATI
[10/06/2009 - 22:42:20 | N | 24] C:\autoexec.bat
[18/08/2012 - 17:36:09 | SHD ] C:\Boot
[05/06/2012 - 15:58:36 | N | 211] C:\Boot.BAK
[28/09/2012 - 20:06:53 | N | 345] C:\boot.ini
[18/08/2012 - 17:36:09 | N | 355] C:\Boot.ini.saved
[14/07/2009 - 02:38:58 | RASH | 383562] C:\bootmgr
[18/08/2012 - 17:36:11 | N | 8192] C:\BOOTSECT.BAK
[10/06/2009 - 22:42:20 | N | 10] C:\config.sys
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[08/10/2012 - 16:18:43 | D ] C:\DOWNLOAD
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 07:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 07:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.3082.txt
[19/08/2012 - 14:26:08 | D ] C:\Games
[30/09/2012 - 09:39:44 | | 283289] C:\GFPCQ
[07/11/2007 - 07:00:40 | N | 1110] C:\globdata.ini
[04/11/2012 - 12:06:59 | ASH | 804954112] C:\hiberfil.sys
[07/11/2007 - 07:03:18 | N | 562688] C:\install.exe
[07/11/2007 - 07:00:40 | N | 843] C:\install.ini
[07/11/2007 - 07:03:18 | N | 76304] C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | N | 91152] C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | N | 97296] C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | N | 95248] C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | N | 81424] C:\install.res.1041.dll
[07/11/2007 - 07:03:18 | N | 79888] C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | N | 75792] C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.3082.dll
[05/06/2012 - 16:20:29 | N | 0] C:\IO.SYS
[05/06/2012 - 16:20:29 | N | 0] C:\MSDOS.SYS
[28/09/2012 - 20:06:52 | D ] C:\NST
[28/09/2012 - 20:06:53 | N | 47772] C:\NTDETECT.COM
[28/09/2012 - 20:06:53 | N | 297072] C:\ntldr
[04/11/2012 - 12:07:01 | N | 1073741824] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[04/11/2012 - 13:23:54 | D ] C:\Program Files
[25/09/2012 - 21:23:48 | HD ] C:\ProgramData
[18/08/2012 - 16:52:31 | SHD ] C:\Recovery
[04/11/2012 - 18:36:56 | SHD ] C:\RECYCLER
[14/09/2012 - 19:33:32 | D ] C:\Riot Games
[04/11/2012 - 13:53:28 | SHD ] C:\System Volume Information
[18/08/2012 - 16:52:51 | D ] C:\Users
[07/11/2007 - 07:00:40 | N | 5686] C:\vcredist.bmp
[07/11/2007 - 07:09:22 | N | 1442522] C:\VC_RED.cab
[07/11/2007 - 07:12:28 | N | 232960] C:\VC_RED.MSI
[30/09/2012 - 09:39:44 | | 20] C:\win7.ld
[02/11/2012 - 12:34:14 | D ] C:\Windows
[28/09/2012 - 20:10:37 | SHD ] H:\$RECYCLE.BIN
[28/09/2012 - 19:51:40 | D ] H:\Documents and Settings
[04/11/2012 - 13:53:24 | ASH | 1610612736] H:\pagefile.sys
[31/10/2012 - 20:19:47 | D ] H:\Program Files
[04/11/2012 - 18:36:56 | SHD ] H:\RECYCLER
[28/09/2012 - 19:51:31 | SHD ] H:\System Volume Information
[04/11/2012 - 18:36:56 | D ] H:\UsbFix
[04/11/2012 - 18:39:33 | A | 8080] H:\UsbFix.txt
[31/10/2012 - 19:31:14 | D ] H:\WINDOWS
[04/11/2012 - 18:36:53 | SHD ] K:\$RECYCLE.BIN
[16/02/2012 - 21:46:31 | D ] K:\c@rtm3n
[20/03/2012 - 22:55:16 | D ] K:\Filmy
[18/06/2012 - 19:18:01 | D ] K:\Games
[04/11/2012 - 13:50:31 | N | 202] K:\HARDDISK.txt
[03/01/2012 - 18:50:55 | D ] K:\Mini Game
[04/11/2012 - 01:56:10 | D ] K:\Music
[19/07/2012 - 21:09:08 | N | 3124658176] K:\MXvsATVReflex.Repack.iso
[04/11/2012 - 01:32:57 | D ] K:\nEo
[15/02/2012 - 21:01:21 | N | 9763004] K:\Never Say Never (Justin Bieber ft. Jaden Smith) Cover - Jason Chen ft. Megan Lee.mp3
[13/08/2012 - 13:02:20 | D ] K:\NTB HP
[24/05/2012 - 14:22:26 | D ] K:\Obrazky
[24/05/2012 - 14:22:10 | D ] K:\Programy
[04/11/2012 - 18:36:56 | SHD ] K:\RECYCLER
[24/05/2012 - 13:57:11 | D ] K:\Serialy
[06/06/2012 - 17:15:06 | SHD ] K:\System Volume Information
[04/01/2012 - 10:55:15 | D ] K:\Videa
[15/08/2011 - 17:29:21 | N | 2609020] K:\WDM_R238.exe
[04/01/2012 - 11:47:39 | D ] K:\Windows XP Slovak Language Pack
[01/08/2011 - 23:39:58 | N | 598010162] K:\Windows-XP_Professional_SP3_32.bit.-CZ+Key.rar
[16/09/2012 - 19:18:16 | D ] K:\WRC_FIA_World_Rally_Championship_2011-FLT
[24/05/2012 - 16:00:16 | D ] K:\Zaloha

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
K:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | Upload |

Please send the file: H:\UsbFix_Upload_Me_3DNEOGRA-72C29C.zip
http://eldesaparecido.com/upload.php
Thank you for your contribution.

################## | E.O.F |

[vyosek]

Log ze RSIT bych taky rad videl

Pouzivate legalni operracni system?

[nEo]

No windows na pc mam Nelegalni ... no na ntb mam legálnu w7.... Jakej LOG ? ten v zipe ??...


Pokial ano tak stači kliknuť na odkaz nižšie a hneď sa Vám to stiahne
http://travian.g6.cz/img/UsbFix_Upload_ ... 72C29C.zip

[vyosek]

Ne, ja chci log z RSIT jak jsem psal v mem prvnim prispevku...

Pravidla fora jste si cetl, co tu delame s nelagalnimi systemy?

[nEo]

Tak jako mne je jedno, když Vám to pomuže udelam to stejny na nooteboku ... Ale nemyslim ze je tam nejaky rozdil kdyz to stejny se bude delat na legalnim nebo nelegalnim windowsu ...

(Ted jsem na Xpecku.... )

Tu je ten log ....

Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2012-11-04 19:37:49
Microsoft Windows XP Professional Service Pack 3
System drive H: has 4 GB (35%) free of 12 GB
Total RAM: 1023 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:39:10, on 4. 11. 2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20815)
Boot mode: Normal

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\System32\svchost.exe
H:\Program Files\AVAST Software\Avast\AvastSvc.exe
H:\Program Files\AVAST Software\Avast\avastUI.exe
H:\WINDOWS\system32\wscntfy.exe
H:\WINDOWS\system32\spoolsv.exe
H:\WINDOWS\Explorer.exe
H:\WINDOWS\system32\ctfmon.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Program Files\Steam\steam.exe
h:\program files\steam\steamapps\puuchyng_87@hotmail.com\counter-strike\hl.exe
H:\Program Files\Steam\GameOverlayUI.exe
C:\Program Files\WinSCP\WinSCP.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Administrator\My Documents\Downloads\RSIT (1).exe
H:\Program Files\trend micro\Administrator.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://play.google.com/store/apps/detai ... rity&hl=cs
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - H:\Program Files\Styler\TB\StylerTB.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [LClock] H:\Program Files\LClock\LClock.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "H:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "H:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "H:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "H:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "H:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "H:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: Styler.lnk = ?
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - H:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - H:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - H:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - H:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - H:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - H:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - H:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6658 bytes

======Scheduled tasks folder======

H:\WINDOWS\tasks\avast! Emergency Update.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-117609710-1417001333-500Core.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-117609710-1417001333-500UA.job
H:\WINDOWS\tasks\User_Feed_Synchronization-{A1214031-A108-4D02-9412-31277618DCD3}.job

=========Mozilla firefox=========

ProfilePath - H:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\aact1wde.default

prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}:6.0.06, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0"

"jqs@sun.com"=H:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=H:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=H:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_35]
"Description"=
"Path"=H:\WINDOWS\system32\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=H:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=h:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=H:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=H:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.3]
"Description"=VLC Multimedia Plugin
"Path"=H:\Program Files\VideoLAN\VLC\npvlc.dll

H:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}

H:\Program Files\Mozilla Firefox\components\
aboutRobots.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
jsconsole-clhandler.js
nsAddonRepository.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsHandlerService.js
nsHelperAppDlg.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesTransactionsService.js
nsPostUpdateWin.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

H:\Program Files\Mozilla Firefox\plugins\
npnul32.dll

H:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
answers.xml
creativecommons.xml
eBay.xml
google.xml
wikipedia.xml
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - H:\Program Files\Java\jre6\bin\ssv.dll [2012-09-28 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-08-21 1227224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - H:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-09-28 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-09-28 79856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - H:\Program Files\Styler\TB\StylerTB.dll [2006-05-02 102400]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-08-21 1227224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LClock"=H:\Program Files\LClock\LClock.exe [2004-09-19 65536]
"UnlockerAssistant"=H:\Program Files\Unlocker\UnlockerAssistant.exe [2006-09-07 15872]
"SunJavaUpdateSched"=H:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"StartCCC"=H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-03 61440]
"avast"=H:\Program Files\AVAST Software\Avast\avastUI.exe [2012-08-21 4282728]
"RTHDCPL"=H:\WINDOWS\RTHDCPL.EXE [2007-03-08 16125952]
"SkyTel"=H:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=H:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"LogMeIn Hamachi Ui"=H:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-08-29 1996200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Sidebar"=H:\Program Files\Windows Sidebar\sidebar.exe [2008-03-22 1271808]
"Google Update"=H:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-09-28 116648]
"Steam"=H:\Program Files\Steam\Steam.exe [2012-09-28 1353080]
"Skype"=H:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]

H:\Documents and Settings\Administrator\Start Menu\Programs\Startup
Styler.lnk - H:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
H:\WINDOWS\system32\Ati2evxx.dll [2009-02-04 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
H:\WINDOWS\system32\WgaLogon.dll [2012-09-28 0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - H:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\Steam\Steam.exe"="H:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"H:\Program Files\BitTorrent\BitTorrent.exe"="H:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
"H:\Program Files\Steam\steamapps\flyniiik\counter-strike\hl.exe"="H:\Program Files\Steam\steamapps\flyniiik\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"H:\Program Files\Steam\steamapps\mark9v35@hotmail.com\counter-strike\hl.exe"="H:\Program Files\Steam\steamapps\mark9v35@hotmail.com\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"H:\Program Files\Steam\steamapps\118neo118\counter-strike\hl.exe"="H:\Program Files\Steam\steamapps\118neo118\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"H:\Program Files\Steam\steamapps\17morpheus71\counter-strike\hl.exe"="H:\Program Files\Steam\steamapps\17morpheus71\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"H:\Program Files\TeamViewer\Version7\TeamViewer.exe"="H:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"H:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="H:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"H:\Program Files\Steam\steamapps\puuchyng_87@hotmail.com\counter-strike\hl.exe"="H:\Program Files\Steam\steamapps\puuchyng_87@hotmail.com\counter-strike\hl.exe:*:Enabled:Counter-Strike"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=H:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=H:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-11-04 19:37:53 ----D---- H:\Program Files\trend micro
2012-11-04 19:37:49 ----D---- H:\rsit
2012-11-04 18:39:33 ----RASHD---- H:\Autorun.inf
2012-11-04 18:33:50 ----A---- H:\UsbFix.txt
2012-11-04 18:33:46 ----D---- H:\UsbFix
2012-10-31 20:20:03 ----D---- H:\Documents and Settings\Administrator\Application Data\Google
2012-10-31 20:17:41 ----D---- H:\Program Files\Google
2012-10-31 19:31:14 ----D---- H:\WINDOWS\Sun
2012-10-08 16:12:39 ----D---- H:\Program Files\BitTorrent
2012-10-08 16:11:08 ----D---- H:\Documents and Settings\Administrator\Application Data\BitTorrent
2012-10-08 16:03:23 ----D---- H:\Documents and Settings\Administrator\Application Data\TeamViewer
2012-10-08 16:03:17 ----D---- H:\Program Files\TeamViewer

======List of files/folders modified in the last 1 month======

2012-11-04 19:37:53 ----D---- H:\Program Files
2012-11-04 19:01:57 ----D---- H:\Program Files\Steam
2012-11-04 18:52:49 ----D---- H:\WINDOWS\Temp
2012-11-04 18:36:56 ----SHD---- H:\RECYCLER
2012-11-04 18:36:53 ----SHD---- H:\$RECYCLE.BIN
2012-11-04 18:25:02 ----D---- H:\Documents and Settings\Administrator\Application Data\Skype
2012-11-04 13:56:59 ----D---- H:\WINDOWS\system32\CatRoot2
2012-11-04 13:55:05 ----D---- H:\WINDOWS\system32\config
2012-11-03 23:46:10 ----A---- H:\WINDOWS\SchedLgU.Txt
2012-11-02 16:31:47 ----HD---- H:\WINDOWS\inf
2012-10-31 20:22:18 ----SHD---- H:\WINDOWS\Installer
2012-10-31 20:17:47 ----SD---- H:\WINDOWS\Tasks
2012-10-31 19:31:14 ----D---- H:\WINDOWS
2012-10-29 18:45:21 ----D---- H:\Documents and Settings\Administrator\Application Data\vlc
2012-10-28 21:00:21 ----D---- H:\WINDOWS\system32
2012-10-28 21:00:21 ----A---- H:\WINDOWS\system32\PerfStringBackup.INI
2012-10-20 09:50:52 ----D---- H:\WINDOWS\system32\Restore
2012-10-09 13:13:52 ----D---- H:\WINDOWS\Prefetch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; H:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 AswRdr;aswRdr; H:\WINDOWS\system32\drivers\AswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; H:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; H:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; H:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 intelppm;Intel Processor Driver; H:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R2 aswFsBlk;aswFsBlk; H:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;aswMon2; H:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R3 ati2mtag;ati2mtag; H:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-04 3488768]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; H:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-10-31 93184]
R3 hamachi;Hamachi Network Interface; H:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; H:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); H:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-08 4485120]
R3 mouhid;Mouse HID Driver; H:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-06-19 12160]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2007-11-21 104320]
R3 usbstor;USB Mass Storage Driver; H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; H:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\H:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 PciCon;PciCon; \??\I:\PciCon.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; H:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; H:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; H:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-08-21 44808]
S2 Ati HotKey Poller;Ati HotKey Poller; H:\WINDOWS\system32\Ati2evxx.exe [2009-02-04 602112]
S2 ATI Smart;ATI Smart; H:\WINDOWS\system32\ati2sgag.exe [2009-02-03 593920]
S2 gupdate;Služba Google Update (gupdate); H:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-31 116648]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; H:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 1385896]
S2 JavaQuickStarterService;Java Quick Starter; H:\Program Files\Java\jre6\bin\jqs.exe [2012-09-28 153584]
S2 SkypeUpdate;Skype Updater; H:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; h:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 gupdatem;Služba Google Update (gupdatem); H:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-31 116648]
S3 idsvc;Windows CardSpace; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 Steam Client Service;Steam Client Service; H:\Program Files\Common Files\Steam\SteamService.exe [2012-09-28 529744]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; H:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

[vyosek]

Ted na disku je to defakto jedno, ale nemuselo by - crack muze omezit funkce systemu, utility nemusi fungovat korektne.

Jen upozornuji, ze pokud budete chtit nekdy resit tyto XP, tak bude pomoc na zaklade platnych pravidel fora odmitnuta

Jak se chova disk, USBFix nam jej dle meho dobre procistil

[nEo]

Chápem mam niečo už z počítačmi poriešene no takýto problem ma dost dostal, tak preto som sa chcel poradit s Vami.... Nabuduce jedine cez ten ntb w7 to poriesim ... Takže neviem či je to tym programom alebo čim, no v XP mi ten HDD ukazuje už normalne všetky subory ako ma....

Pravdepodobne problem vyrieseny ... Takze vrela vdaka Vam =)

[vyosek]

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

A pokud nejsou problemy ci dotazy, je to z me strany vse