rada widgetbutton.dll
Napsal: 14 pro 2009 20:17
Mohu poprosit o kontrolu.
Pokaždé když jakýkoliv scan,AVG,MBAM atp. dojede k C: \ Acer \ Empowering Technology \ eDataSecurity \ Widget Button.dll
tak se pc hryzne a restartuje se,pak se spusti scandisk tam se též sekne.
Logfile náhodných je nástrojem informační systém 1.06 (napsal náhodná / random)
Run by Libor v 2009-12-14 18:07:00
Systém Microsoft Windows XP Professional Service Pack 3
Systém disku C: má 34 GB (63%) bez 54 GB
Celková velikost RAM: 1014 MB (37% free)
Logfile Trend Micro HijackThis v2.0.2
Skenování uložen v 18:07:11 dne 14.12.2009
Platforma: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot Mode: Normal
Běžící procesy:
C: \ WINDOWS \ system32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ AVG \ AVG9 \ avgchsvx.exe
C: \ Program Files \ AVG \ AVG9 \ avgrsx.exe
C: \ Program Files \ AVG \ AVG9 \ avgcsrvx.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe
C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe
C: \ WINDOWS \ SOUNDMAN.EXE
C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe
C: \ WINDOWS \ system32 \ NeroCheck.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe
C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe
C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe
C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe
C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe
C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe
C: \ Program Files \ TO2SSM \ McciTrayApp.exe
C: \ Program Files \ iTunes \ qttask.exe
C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL
C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Acer \ Empowering Technology \ Acer.Empowering.Framework.Launcher.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe
C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
C: \ Program Files \ Common Files \ Motive \ McciCMService.exe
C: \ WINDOWS \ system32 \ igfxext.exe
C: \ DOCUME ~ 1 \ Libor \ LOCALS ~ 1 \ Temp \ RtkBtMnt.exe
C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe
C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe
C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ wbem \ unsecapp.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Documents and Settings \ Libor \ Plocha \ RSIT.exe
C: \ Program Files \ Trend Micro \ Libor.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.seznam.cz/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. místní
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.4.4525.1752 \ swg.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O3 - Toolbar: Acer eDataSecurity Management - (5CBE3B7C-1E47-477e-A7DD-396DB0476E29) - C: \ WINDOWS \ system32 \ eDStoolbar.dll
O3 - Toolbar: Google Toolbar - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O4 - HKLM \ .. \ Run: [preload] C: \ Windows \ RUNXMLPL.exe
O4 - HKLM \ .. \ Run: [IAAnotif] "C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe"
O4 - HKLM \ .. \ Run: [ATICCC] "C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM \ .. \ Run: [AzMixerSel] C: \ Program Files \ Realtek \ InstallShield \ AzMixerSel.exe
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [MSPY2002] C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / ctfmon.exe
O4 - HKLM \ .. \ Run: [SoundMAX] "C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [nwiz] "C: \ Program Files \ CyberLink \ PowerDVD \ Language \ Language.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [Acer ePresentation HPD] C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe
O4 - HKLM \ .. \ Run: [ePower_DMC] C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe
O4 - HKLM \ .. \ Run: [Boot] C: \ Acer \ Empowering Technology \ ePower \ Boot.exe
O4 - HKLM \ .. \ Run: [eDataSecurity Loader] C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe 0
O4 - HKLM \ .. \ Run: [eRecoveryService] C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe
O4 - HKLM \ .. \ Run: [LManager] C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKLM \ .. \ Run: [CanonSolutionMenu] C: \ Program Files \ Canon \ SolutionMenu \ CNSLMAIN.exe / přihlášení
O4 - HKLM \ .. \ Run: [CanonMyPrinter] C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe / přihlášení
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [TO2SSM_McciTrayApp] C: \ Program Files \ TO2SSM \ McciTrayApp.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [NvCplDaemon] "C: \ Program Files \ iTunes \ qttask.exe"
O4 - HKLM \ .. \ Run: [AVG9_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe
O4 - HKLM \ .. \ Run: [KernelFaultCheck]% systemroot% \ system32 \ CTFMON.EXE 0-k
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL"
O4 - HKCU \ .. \ Run: [TomTomHOME.exe] "C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe"
O4 - HKCU \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk =?
O4 - Global Startup: Adobe Gamma Loader.lnk = C: \ Program Files \ Common Files \ Adobe \ Kalibrace \ Adobe Gamma Loader.exe
O8 - Extra context menu item: E & xportovat do aplikace Microsoft Excel -- res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: E & xportovat do aplikace Microsoft Office Excel -- res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki ... -- res: / / C: \ Program Files \ Google \ Google Toolbar \ Složka \ GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Zdroje informací - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @ Xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://www.update.microsoft.com/microso ... 0741094437
O16 - DPF: (7530BFB8-7293-4D34-9923-61A11451AFC5) -- http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: LinkScanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG9 \ avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C: \ WINDOWS \ SYSTEM32 \ avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, sro - C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect služby (CLTNetCnService) - Unknown owner - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe (file missing)
O23 - Service: eLock Service (eLockService) - - C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: Intel (R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: McciCMService - Motive Communications, Inc - C: \ Program Files \ Common Files \ Motive \ McciCMService.exe
O23 - Service: Cyberlink RichVideo Service (CRVS) (RichVideo) - Unknown owner - C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
Ø24 - Desktop Komponent 0: (no name) -- http://www.f1sports.cz/res/dwe-gallery/ ... _67785.jpg
--
End of file - 10759 bytes
====== ====== Složku Naplánované úlohy
C: \ WINDOWS \ Tasks \ AppleSoftwareUpdate.job
====== ====== Registry skládka
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (02478D38-C3F9-4EFB-9B51-7695ECA05670)]
Yahoo! Toolbar Helper - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll [2006-09-06 439872]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3)]
Adobe PDF Reader Link Helper - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0)]
AVG Safe Search - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll [2009-12-14 1484056]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (AA58ED58-01DD-4d91-8333-CF10577473F7)]
Google Toolbar Helper - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll [2009-12-08 263280]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (AF69DE43-7D58-4638-B6FA-CE66B5AD205D)]
Google Toolbar Notifier BHO - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.4.4525.1752 \ swg.dll [2009-12-03 764912]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
(EF99BD32-C1FB-11D2-892F-0090271D4F88) - Yahoo! Toolbar - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll [2006-09-06 439872]
(5CBE3B7C-1E47-477e-A7DD-396DB0476E29) - Acer eDataSecurity Management - C: \ WINDOWS \ system32 \ eDStoolbar.dll [2007-05-28 106496]
(2318C2B1-4965-11d4-9B18-009027A5CD4F) - Google Toolbar - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll [2009-12-08 263280]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"preload" = C: \ Windows \ RUNXMLPL.exe [2007-04-21 20480]
"IAAnotif" = C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe [2007-03-21 174872]
"ATICCC" = C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe "[2005-12-16 761945]
"SoundMan" = C: \ WINDOWS \ SOUNDMAN.EXE [2007-05-28 16132608]
"AzMixerSel" = C: \ Program Files \ Realtek \ InstallShield \ AzMixerSel.exe [2005-06-11 53248]
"IMJPMIG8.1" = C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE [2004-08-18 208952]
"MSPY2002" = C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe [2004-08-18 59392]
"PHIME2002ASync" = C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE [2004-08-18 455168]
"PHIME2002A" = C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE [2004-08-18 455168]
"NeroFilterCheck" = C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe [2007-01-08 68640]
"Nwiz" = C: \ Program Files \ CyberLink \ PowerDVD \ Language \ Language.exe [2007-01-08 52256]
"NeroFilterCheck" = C: \ WINDOWS \ system32 \ igfxtray.exe [2007-06-13 142104]
"CTFMON.EXE" = C: \ WINDOWS \ system32 \ NeroCheck.exe [2007-06-13 162584]
"Persistence" = C: \ WINDOWS \ system32 \ igfxpers.exe [2007-06-13 138008]
"Acer ePresentation HPD" = C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe [2007-03-02 208896]
"ePower_DMC" = C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe [2007-07-04 475136]
"Boot" = C: \ Acer \ Empowering Technology \ ePower \ Boot.exe [2006-03-15 579584]
"eDataSecurity Loader" = C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe [2007-05-28 342528]
"eRecoveryService" = C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe [2007-07-11 421888]
"LManager" = C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe [2007-10-17 858632]
"NeroFilterCheck" = C: \ WINDOWS \ system32 \ ctfmon.exe [2001-07-09 155648]
"CanonSolutionMenu" = C: \ Program Files \ Canon \ SolutionMenu \ CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter" = C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe [2007-04-03 1603152]
"Adobe Reader Speed Launcher" = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe [2008-01-11 39792]
"TO2SSM_McciTrayApp" = C: \ Program Files \ TO2SSM \ McciTrayApp.exe [2008-08-15 1473536]
"StartCCC" = C: \ Program Files \ QuickTime \ qttask.exe [2009-05-26 413696]
"NvCplDaemon" = C: \ Program Files \ iTunes \ qttask.exe [2009-07-13 292128]
"AVG9_TRAY" = C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe [2009-12-14 2033432]
"KernelFaultCheck" = C: \ WINDOWS \ system32 \ CTFMON.EXE 0-k []
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"swg" = C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL [2008-04-20 68856]
"TomTomHOME.exe" = C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe [2008-05-06 202088]
"CTFMON.EXE" = C: \ WINDOWS \ system32 \ ctfmon.exe [2008-04-14 15360]
C: \ Documents and Settings \ All Users \ Nabídka Start \ Programy \ Po Spuštění
Acer Empowering Technology.lnk - C: \ Acer \ Empowering Technology \ Acer.Empowering.Framework.Launcher.exe
Adobe Gamma Loader.lnk - C: \ Program Files \ Common Files \ Adobe \ Kalibrace \ Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ avgrsstarter]
C: \ WINDOWS \ system32 \ avgrsstx.dll [2009-12-13 12464]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ igfxcui]
C: \ WINDOWS \ system32 \ igfxdev.dll [2007-06-05 204800]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ WgaLogon]
C: \ WINDOWS \ system32 \ WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoDriveTypeAutoRun" = 323
"NoDriveAutoRun" = 67108863
"NoDrives" = 0
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"HonorAutoRunSetting" =
"NoDriveAutoRun" =
"NoDriveTypeAutoRun" =
"NoDrives" =
[HKEY_LOCAL_MACHINE \ system \ currentcontrolset \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ authorizedapplications \ list]
"% windir% \ system32 \ Sessmgr.exe" = "% windir% \ system32 \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Program Files \ CyberLink \ PowerDVD \ PowerDVD.exe" = "C: \ Program Files \ CyberLink \ PowerDVD \ PowerDVD.exe: *: Enabled: CyberLink PowerDVD"
"C: \ Program Files \ GameSpy Arcade \ Aphex.exe" = "C: \ Program Files \ GameSpy Arcade \ Aphex.exe: *: Enabled: GameSpy Arcade"
"C: \ Program Files \ Ahead \ Nero ShowTime \ ShowTime.exe" = "C: \ Program Files \ Ahead \ Nero ShowTime \ ShowTime.exe: *: Enabled: Nero ShowTime"
"% windir% \ network diagnostic \ xpnetdiag.exe" = "% windir% \ network diagnostic \ xpnetdiag.exe: *: Enabled: @ Xpsp3res.dll, -20000"
"C: \ Program Files \ Bonjour \ mDNSResponder.exe" = "C: \ Program Files \ Bonjour \ mDNSResponder.exe: *: Enabled: Bonjour"
"C: \ Program Files \ iTunes \ iTunes.exe" = "C: \ Program Files \ iTunes \ iTunes.exe: *: Enabled: iTunes"
"C: \ Program Files \ Hard Truck Tycoon \ HTT.exe" = "C: \ Program Files \ Hard Truck Tycoon \ HTT.exe: *: Enabled: HTT"
"C: \ Program Files \ AVG \ AVG9 \ avgupd.exe" = "C: \ Program Files \ AVG \ AVG9 \ avgupd.exe: *: Enabled: avgupd.exe"
"C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe" = "C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe: *: Enabled: avgnsx.exe"
[HKEY_LOCAL_MACHINE \ system \ currentcontrolset \ services \ sharedaccess \ Parameters \ firewallpolicy \ domainprofile \ authorizedapplications \ list]
"% windir% \ system32 \ Sessmgr.exe" = "% windir% \ system32 \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"% windir% \ network diagnostic \ xpnetdiag.exe" = "% windir% \ network diagnostic \ xpnetdiag.exe: *: Enabled: @ Xpsp3res.dll, -20000"
====== Seznam souborů / složek vytvořených během posledních 1 měsíc ======
2009-12-14 18:06:14 ---- D ---- C: \ WINDOWS \ LastGood
2009-12-14 17:34:37 ---- SHD ---- C: \ Config.Msi
2009-12-13 22:58:25 ---- A ---- C: \ WINDOWS \ system32 \ mucltui.dll.mui
2009-12-13 22:58:25 ---- A ---- C: \ WINDOWS \ system32 \ mucltui.dll
2009-12-13 22:10:19 ---- HD ---- C: \ $ AVG
2009-12-13 22:10:08 ---- A ---- C: \ WINDOWS \ system32 \ avgrsstx.dll
2009-12-13 22:09:31 ---- D ---- C: \ Documents and Settings \ All Users \ Data aplikací \ avg9
2009-12-13 19:11:32 ---- SHD ---- C: \ RECYCLER
2009-12-13 18:50:49 ---- A ---- C: \ avenger.txt
2009-12-13 18:27:51 ---- A ---- C: \ ComboFix.txt
2009-12-13 18:04:17 ---- D ---- C: \ WINDOWS \ temp
2009-12-13 15:34:56 ---- D ---- C: \ Program Files \ TrendMicro
2009-12-13 13:56:25 ---- D ---- C: \ Program Files \ CCleaner
2009-12-13 12:45:04 ---- A ---- C: \ Boot.bak
2009-12-13 12:44:59 ---- RASHD ---- C: \ cmdcons
2009-12-13 09:53:54 ---- D ---- C: \ WINDOWS \ ERDNT
2009-12-12 18:11:41 ---- D ---- C: \ Program Files \ Trend Micro
2009-12-12 18:11:39 ---- D ---- C: \ rsit
2009-12-12 16:51:24 ---- D ---- C: \ WINDOWS \ Minidump
2009-12-12 16:46:14 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB974318 $
2009-12-12 16:45:15 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB973904 $
2009-12-12 16:45:02 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB974392 $
2009-12-12 16:44:39 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB971737 $
2009-12-10 20:53:06 ---- SHD ---- C: \ WINDOWS \ CSC
2009-12-10 18:40:50 ---- D ---- C: \ Program Files \ ESET
2009-11-26 17:44:57 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB976098-v2 $
2009-11-26 17:44:49 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB973687 $
2009-11-16 16:52:46 ---- D ---- C: \ Program Files \ San Andreas Radio
====== Seznam souborů / složek změněny v posledních 1 měsíc ======
2009-12-14 18:06:43 ---- HD ---- C: \ WINDOWS \ inf
2009-12-14 18:06:14 ---- D ---- C: \ WINDOWS
2009-12-14 18:06:13 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot2
2009-12-14 18:02:18 ---- A ---- C: \ WINDOWS \ ModemLog_HDAUDIO Soft Data Fax Modem s SmartCP.txt
2009-12-14 17:38:21 ---- SHD ---- C: \ WINDOWS \ Installer
2009-12-14 17:38:21 ---- RSD ---- C: \ WINDOWS \ montáž
2009-12-14 17:37:51 ---- A ---- C: \ WINDOWS \ win.ini
2009-12-14 17:36:43 ---- RSD ---- C: \ WINDOWS \ Fonts
2009-12-14 17:36:12 ---- D ---- C: \ Program Files \ Common Files \ Microsoft Shared
2009-12-14 17:34:44 ---- D ---- C: \ WINDOWS \ system32
2009-12-13 22:59:00 ---- A ---- C: \ WINDOWS \ SchedLgU.Txt
2009-12-13 22:51:40 ---- SD ---- C: \ WINDOWS \ Downloaded Program Files
2009-12-13 22:10:02 ---- D ---- C: \ WINDOWS \ system32 \ drivers
2009-12-13 22:09:32 ---- D ---- C: \ Program Files \ AVG
2009-12-13 22:09:25 ---- D ---- C: \ WINDOWS \ WinSxS
2009-12-13 18:10:26 ---- A ---- C: \ WINDOWS \ system.ini
2009-12-13 17:53:38 ---- D ---- C: \ WINDOWS \ AppPatch
2009-12-13 17:52:43 ---- D ---- C: \ Program Files \ Common Files
2009-12-13 16:01:13 ---- A ---- C: \ WINDOWS \ system32 \ PerfStringBackup.INI
2009-12-13 15:56:00 ---- RSHD ---- C: \ WINDOWS \ system32 \ dllcache
2009-12-13 15:35:02 ---- SD ---- C: \ Documents and Settings \ Libor \ Data aplikací \ Microsoft
2009-12-13 15:34:56 ---- D ---- C: \ Program Files
2009-12-13 15:09:34 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot
2009-12-13 14:05:22 ---- D ---- C: \ WINDOWS \ Debug
2009-12-13 13:04:51 ---- D ---- C: \ WINDOWS \ system32 \ config
2009-12-13 12:45:04 ---- RASH ---- C: \ boot.ini
2009-12-12 16:51:20 ---- D ---- C: \ Program Files \ Internet Explorer
2009-12-12 16:45:28 ---- HD ---- C: \ WINDOWS \ $ hf_mig $
2009-12-10 07:35:49 ---- D ---- C: \ WINDOWS \ Prefetch
2009-12-01 21:06:20 ---- A ---- C: \ WINDOWS \ system32 \ Mrt.exe
====== List of drivers (R = Running, S = Stopped, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = Disabled )======
R1 AvgLdx86; AVG Free AVI Loader Driver x86; C: \ WINDOWS \ system32 \ Drivers \ avgldx86.sys [2009-12-13 333192]
R1 AvgMfx86; AVG Free On-Access Scanner Driver minifiltr x86 C: \ WINDOWS \ system32 \ Drivers \ avgmfx86.sys [2009-12-13 28424]
R1 AvgTdiX; AVG Free sítě Redirector C: \ WINDOWS \ system32 \ Drivers \ avgtdix.sys [2009-12-13 360584]
R1 intelppm; Radič procesoru Intel C: \ WINDOWS \ system32 \ DRIVERS \ Intelppm.sys [2008-04-14 40192]
R1 WmiAcpi; Microsoft Windows Management Interface pro ACPI, C: \ WINDOWS \ system32 \ DRIVERS \ wmiacpi.sys [2008-04-13 8832]
R2 int15, int15; \? \ C: \ WINDOWS \ system32 \ drivers \ int15.sys []
R2 irda, Protokol IrDA, C: \ WINDOWS \ system32 \ DRIVERS \ irda.sys [2008-04-13 88192]
R2 mdmxsdk; mdmxsdk C: \ WINDOWS \ system32 \ DRIVERS \ mdmxsdk.sys [2006-06-19 12672]
R2 tvicport; tvicport; \? \ C: \ WINDOWS \ system32 \ drivers \ tvicport.sys []
R2 zntport; zntport; \? \ C: \ WINDOWS \ system32 \ drivers \ zntport.sys []
R3 Arp1394; Protokol 1394 ARP Client; C: \ WINDOWS \ system32 \ DRIVERS \ Arp1394.sys [2008-04-13 60800]
R3 b57w2k, Broadcom NetXtreme Gigabit Ethernet, C: \ WINDOWS \ system32 \ DRIVERS \ b57xp32.sys [2007-02-16 160256]
R3 bcm43xx; Ovladač síťového adaptéru Broadcom 802.11 C: \ WINDOWS \ system32 \ DRIVERS \ bcmwl5.sys [2006-10-12 604928]
R3 CmBatt; Microsoft ACPI metody řízení baterie Driver C: \ WINDOWS \ system32 \ DRIVERS \ CmBatt.sys [2008-04-13 13952]
R3 DKbFltr; Dritek klávesnice Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ DKbFltr.sys [2006-01-20 17408]
R3 GEARAspiWDM; GEAR ASPI Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ GEARAspiWDM.sys [2009-03-19 23400]
R3 HDAudBus; Microsoft UAA Bus Driver for High Definition Audio, C: \ WINDOWS \ system32 \ DRIVERS \ HDAudBus.sys [2008-04-13 144384]
R3 HidUsb; Ovladač třídy standardu HID; C: \ WINDOWS \ system32 \ DRIVERS \ hidusb.sys [2008-04-13 10368]
R3 HSF_DPV; HSF_DPV C: \ WINDOWS \ system32 \ DRIVERS \ HSF_DPV.sys [2006-12-22 988800]
R3 HSFHWAZL; HSFHWAZL C: \ WINDOWS \ system32 \ DRIVERS \ HSFHWAZL.sys [2006-12-22 209664]
R3 ialm; ialm C: \ WINDOWS \ system32 \ DRIVERS \ igxpmp32.sys [2007-06-05 5761728]
R3 IntcAzAudAddService; Servis pro Realtek HD Audio (WDM) C: \ WINDOWS \ system32 \ drivers \ RtkHDAud.sys [2007-05-30 4424192]
R3 mouhid; Ovladač myši standardu HID; C: \ WINDOWS \ system32 \ DRIVERS \ mouhid.sys [2001-10-24 12160]
R3 NIC1394; 1394 Čistá Driver C: \ WINDOWS \ system32 \ DRIVERS \ nic1394.sys [2008-04-13 61824]
R3 NSCIRDA; NSC Infrared Device Driver C: \ WINDOWS \ system32 \ DRIVERS \ nscirda.sys [2008-04-13 28672]
R3 NTIDrvr; Horní třída Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ NTIDrvr.sys [2007-08-14 6144]
R3 psdfilter; psdfilter; \? \ C: \ WINDOWS \ system32 \ Drivers \ psdfilter.sys []
R3 psdvdisk; psdvdisk; \? \ C: \ WINDOWS \ system32 \ Drivers \ psdvdisk.sys []
R3 Rasirda; WAN Miniport (IrDA), C: \ WINDOWS \ system32 \ DRIVERS \ rasirda.sys [2001-08-17 19584]
R3 sdbus; sdbus C: \ WINDOWS \ system32 \ DRIVERS \ sdbus.sys [2008-04-13 79232]
R3 Lib, Synaptics Touchpad Driver C: \ WINDOWS \ system32 \ DRIVERS \ SynTP.sys [2005-12-16 191936]
R3 tifm21; tifm21 C: \ WINDOWS \ system32 \ drivers \ tifm21.sys [2007-05-02 290816]
R3 usbehci; Ovladač miniportu rozšířeného řadiče hostitele Microsoft USB 2.0; C: \ WINDOWS \ system32 \ DRIVERS \ Usbehci.sys [2008-04-13 30208]
R3 usbhub; Rozbočovač umožnující USB2; C: \ WINDOWS \ system32 \ DRIVERS \ usbhub.sys [2008-04-13 59520]
R3 usbuhci; Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft, C: \ WINDOWS \ system32 \ DRIVERS \ usbuhci.sys [2008-04-13 20608]
R3 winachsf; winachsf C: \ WINDOWS \ system32 \ DRIVERS \ HSF_CNXT.sys [2006-12-22 730112]
S1 ASPI32; ASPI32 C: \ WINDOWS \ system32 \ drivers \ ASPI32.sys []
S3 catchme; catchme; \? \ C: \ ComboFix \ catchme.sys []
S3 CCDECODE; Dekodér Uzavřené Caption C: \ WINDOWS \ system32 \ DRIVERS \ CCDECODE.sys [2008-04-13 17024]
S3 FETNDIS; VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C: \ WINDOWS \ system32 \ DRIVERS \ fetnd5.sys [2001-08-17 27165]
S3 int15.sys; int15.sys; \? \ C: \ Acer \ Empowering Technology \ eRecovery \ int15.sys []
S3 MREMP50; MREMP50 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMP50.SYS []
S3 MREMP50a64; MREMP50a64 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMP50a64.SYS []
S3 MREMPR5; MREMPR5 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMPR5.SYS []
S3 MRENDIS5; MRENDIS5 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRENDIS5.SYS []
S3 MRESP50; MRESP50 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRESP50.SYS []
S3 MRESP50a64; MRESP50a64 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRESP50a64.SYS []
S3 MSIRCOMM; Microsoft IR komunikace Driver C: \ WINDOWS \ system32 \ DRIVERS \ MSIRCOMM.sys [2008-04-13 22016]
S3 MSTEE; Microsoft Streaming Tee / Sink-na-Sink Converter; C: \ WINDOWS \ system32 \ drivers \ MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC; NABTS / FEC VBI Codec; C: \ WINDOWS \ system32 \ DRIVERS \ NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP, Microsoft TV / Video Connection; C: \ WINDOWS \ system32 \ DRIVERS \ NdisIP.sys [2008-04-13 10880]
S3 SLIP; BDA Slip De-rámař C: \ WINDOWS \ system32 \ DRIVERS \ SLIP.sys [2008-04-13 11136]
S3 streamip, BDA IPSink C: \ WINDOWS \ system32 \ DRIVERS \ StreamIP.sys [2008-04-13 15232]
S3 usbccgp; Obecný nadřazený ovladač Microsoft USB; C: \ WINDOWS \ system32 \ DRIVERS \ usbccgp.sys [2008-04-13 32128]
S3 usbprint, Třída USB Printer; C: \ WINDOWS \ system32 \ DRIVERS \ usbprint.sys [2008-04-13 25856]
S3 usbscan; Ovladač skeneru USB; C: \ WINDOWS \ system32 \ DRIVERS \ usbscan.sys [2008-04-13 15104]
S3 UsbStor; Ovladač velkokapacitního paměťového zařízení USB; C: \ WINDOWS \ system32 \ DRIVERS \ USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo; Zobrazovací zařízení USB (WDM) C: \ WINDOWS \ system32 \ Drivers \ usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC; Dálnopisný kodek světového standardu C: \ WINDOWS \ system32 \ DRIVERS \ WSTCODEC.SYS [2008-04-13 19200]
====== Seznam služeb (R = Running, S = Stopped, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = Disabled )======
R2 Apple Mobile Device; Apple Mobile Device; C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe [2009-07-09 144712]
R2 avg9wd; AVG Free WatchDog; C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe [2009-12-13 285392]
R2 Bonjour Service; Bonjour Service C: \ Program Files \ Bonjour \ mDNSResponder.exe [2008-12-12 238888]
R2 eLockService, eLock Service C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe [2007-03-01 24576]
R2 IAANTMON, Intel (R) Matrix Storage Event Monitor C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe [2007-03-21 355096]
R2 Irmon; Sledování infračerveného prenosu C: \ WINDOWS \ system32 \ svchost.exe [2008-04-14 14336]
R2 LightScribeService; LightScribeService Direct Disc Labeling Service C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe [2007-01-17 61440]
R2 McciCMService; McciCMService C: \ Program Files \ Common Files \ Motive \ McciCMService.exe [2007-10-15 303104]
R2 MSSQL $ MSSMLBIZ, SQL Server (MSSMLBIZ), C: \ Program Files \ Microsoft SQL Server \ MSSQL.1 \ MSSQL \ Binn \ sqlservr.exe [2006-04-14 28933976]
R2 RichVideo; Cyberlink RichVideo Service (CRVS), C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe [2007-01-08 171040]
R3 iPod Service, iPod Service C: \ Program Files \ iPod \ bin \ iPodService.exe [2009-07-13 542496]
S2 CLTNetCnService; Symantec Lic NetConnect služby, C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe / h ccCommon []
S2 Fax, Fax, C: \ WINDOWS \ system32 \ fxssvc.exe [2008-04-14 268288]
S3 aspnet_state, ASP.NET státní službě, C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;. NET Runtime Optimization Service v2.0.50727_X86 C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0; Windows Presentation Foundation Font Cache 3.0.0.0; C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ WPF \ PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc; Google Software Updater, C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe [2009-05-01 182768]
S3 IDriverT; InstallDriver Table Manager; C: \ Program Files \ Common Files \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT.exe [2005-11-14 69632]
S3 idsvc; Windows CardSpace C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ Windows Communication Foundation \ infocard.exe [2008-07-29 881664]
S3 ose; Office Source Engine; C: \ Program Files \ Common Files \ Microsoft Shared \ Source Engine \ Ose.exe [2006-10-26 145184]
S3 SQLWriter, SQL Server VSS Writer C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlwriter.exe [2006-04-14 87840]
S4 MSSQLServerADHelper, SQL Server Active Directory Helper, C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqladhlp90.exe [2005-10-14 45272]
S4 NetTcpPortSharing; Net.Tcp Port sdílení služeb, C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ Windows Communication Foundation \ SMSvcHost.exe [2008-07-29 132096]
S4 SQLBrowser, SQL Server Browser, C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlbrowser.exe [2006-04-14 240416]
----------------- EOF -----------------
Pokaždé když jakýkoliv scan,AVG,MBAM atp. dojede k C: \ Acer \ Empowering Technology \ eDataSecurity \ Widget Button.dll
tak se pc hryzne a restartuje se,pak se spusti scandisk tam se též sekne.
Logfile náhodných je nástrojem informační systém 1.06 (napsal náhodná / random)
Run by Libor v 2009-12-14 18:07:00
Systém Microsoft Windows XP Professional Service Pack 3
Systém disku C: má 34 GB (63%) bez 54 GB
Celková velikost RAM: 1014 MB (37% free)
Logfile Trend Micro HijackThis v2.0.2
Skenování uložen v 18:07:11 dne 14.12.2009
Platforma: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot Mode: Normal
Běžící procesy:
C: \ WINDOWS \ system32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ AVG \ AVG9 \ avgchsvx.exe
C: \ Program Files \ AVG \ AVG9 \ avgrsx.exe
C: \ Program Files \ AVG \ AVG9 \ avgcsrvx.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe
C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe
C: \ WINDOWS \ SOUNDMAN.EXE
C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe
C: \ WINDOWS \ system32 \ NeroCheck.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe
C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe
C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe
C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe
C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe
C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe
C: \ Program Files \ TO2SSM \ McciTrayApp.exe
C: \ Program Files \ iTunes \ qttask.exe
C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL
C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Acer \ Empowering Technology \ Acer.Empowering.Framework.Launcher.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe
C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
C: \ Program Files \ Common Files \ Motive \ McciCMService.exe
C: \ WINDOWS \ system32 \ igfxext.exe
C: \ DOCUME ~ 1 \ Libor \ LOCALS ~ 1 \ Temp \ RtkBtMnt.exe
C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe
C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe
C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ wbem \ unsecapp.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Documents and Settings \ Libor \ Plocha \ RSIT.exe
C: \ Program Files \ Trend Micro \ Libor.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.seznam.cz/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. místní
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.4.4525.1752 \ swg.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
O3 - Toolbar: Acer eDataSecurity Management - (5CBE3B7C-1E47-477e-A7DD-396DB0476E29) - C: \ WINDOWS \ system32 \ eDStoolbar.dll
O3 - Toolbar: Google Toolbar - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O4 - HKLM \ .. \ Run: [preload] C: \ Windows \ RUNXMLPL.exe
O4 - HKLM \ .. \ Run: [IAAnotif] "C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe"
O4 - HKLM \ .. \ Run: [ATICCC] "C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM \ .. \ Run: [AzMixerSel] C: \ Program Files \ Realtek \ InstallShield \ AzMixerSel.exe
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [MSPY2002] C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / ctfmon.exe
O4 - HKLM \ .. \ Run: [SoundMAX] "C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe"
O4 - HKLM \ .. \ Run: [nwiz] "C: \ Program Files \ CyberLink \ PowerDVD \ Language \ Language.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [Acer ePresentation HPD] C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe
O4 - HKLM \ .. \ Run: [ePower_DMC] C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe
O4 - HKLM \ .. \ Run: [Boot] C: \ Acer \ Empowering Technology \ ePower \ Boot.exe
O4 - HKLM \ .. \ Run: [eDataSecurity Loader] C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe 0
O4 - HKLM \ .. \ Run: [eRecoveryService] C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe
O4 - HKLM \ .. \ Run: [LManager] C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKLM \ .. \ Run: [CanonSolutionMenu] C: \ Program Files \ Canon \ SolutionMenu \ CNSLMAIN.exe / přihlášení
O4 - HKLM \ .. \ Run: [CanonMyPrinter] C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe / přihlášení
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [TO2SSM_McciTrayApp] C: \ Program Files \ TO2SSM \ McciTrayApp.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [NvCplDaemon] "C: \ Program Files \ iTunes \ qttask.exe"
O4 - HKLM \ .. \ Run: [AVG9_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe
O4 - HKLM \ .. \ Run: [KernelFaultCheck]% systemroot% \ system32 \ CTFMON.EXE 0-k
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL"
O4 - HKCU \ .. \ Run: [TomTomHOME.exe] "C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe"
O4 - HKCU \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk =?
O4 - Global Startup: Adobe Gamma Loader.lnk = C: \ Program Files \ Common Files \ Adobe \ Kalibrace \ Adobe Gamma Loader.exe
O8 - Extra context menu item: E & xportovat do aplikace Microsoft Excel -- res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: E & xportovat do aplikace Microsoft Office Excel -- res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki ... -- res: / / C: \ Program Files \ Google \ Google Toolbar \ Složka \ GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Zdroje informací - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @ Xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ network diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://www.update.microsoft.com/microso ... 0741094437
O16 - DPF: (7530BFB8-7293-4D34-9923-61A11451AFC5) -- http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: LinkScanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG9 \ avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C: \ WINDOWS \ SYSTEM32 \ avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, sro - C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect služby (CLTNetCnService) - Unknown owner - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe (file missing)
O23 - Service: eLock Service (eLockService) - - C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: Intel (R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: McciCMService - Motive Communications, Inc - C: \ Program Files \ Common Files \ Motive \ McciCMService.exe
O23 - Service: Cyberlink RichVideo Service (CRVS) (RichVideo) - Unknown owner - C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
Ø24 - Desktop Komponent 0: (no name) -- http://www.f1sports.cz/res/dwe-gallery/ ... _67785.jpg
--
End of file - 10759 bytes
====== ====== Složku Naplánované úlohy
C: \ WINDOWS \ Tasks \ AppleSoftwareUpdate.job
====== ====== Registry skládka
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (02478D38-C3F9-4EFB-9B51-7695ECA05670)]
Yahoo! Toolbar Helper - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll [2006-09-06 439872]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3)]
Adobe PDF Reader Link Helper - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0)]
AVG Safe Search - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll [2009-12-14 1484056]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (AA58ED58-01DD-4d91-8333-CF10577473F7)]
Google Toolbar Helper - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll [2009-12-08 263280]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ Browser Helper Objects \ (AF69DE43-7D58-4638-B6FA-CE66B5AD205D)]
Google Toolbar Notifier BHO - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.4.4525.1752 \ swg.dll [2009-12-03 764912]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Internet Explorer \ Toolbar]
(EF99BD32-C1FB-11D2-892F-0090271D4F88) - Yahoo! Toolbar - C: \ Program Files \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll [2006-09-06 439872]
(5CBE3B7C-1E47-477e-A7DD-396DB0476E29) - Acer eDataSecurity Management - C: \ WINDOWS \ system32 \ eDStoolbar.dll [2007-05-28 106496]
(2318C2B1-4965-11d4-9B18-009027A5CD4F) - Google Toolbar - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll [2009-12-08 263280]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"preload" = C: \ Windows \ RUNXMLPL.exe [2007-04-21 20480]
"IAAnotif" = C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaanotif.exe [2007-03-21 174872]
"ATICCC" = C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe "[2005-12-16 761945]
"SoundMan" = C: \ WINDOWS \ SOUNDMAN.EXE [2007-05-28 16132608]
"AzMixerSel" = C: \ Program Files \ Realtek \ InstallShield \ AzMixerSel.exe [2005-06-11 53248]
"IMJPMIG8.1" = C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE [2004-08-18 208952]
"MSPY2002" = C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe [2004-08-18 59392]
"PHIME2002ASync" = C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE [2004-08-18 455168]
"PHIME2002A" = C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE [2004-08-18 455168]
"NeroFilterCheck" = C: \ Program Files \ CyberLink \ PowerDVD \ PDVDServ.exe [2007-01-08 68640]
"Nwiz" = C: \ Program Files \ CyberLink \ PowerDVD \ Language \ Language.exe [2007-01-08 52256]
"NeroFilterCheck" = C: \ WINDOWS \ system32 \ igfxtray.exe [2007-06-13 142104]
"CTFMON.EXE" = C: \ WINDOWS \ system32 \ NeroCheck.exe [2007-06-13 162584]
"Persistence" = C: \ WINDOWS \ system32 \ igfxpers.exe [2007-06-13 138008]
"Acer ePresentation HPD" = C: \ Acer \ Empowering Technology \ ePresentation \ ePresentation.exe [2007-03-02 208896]
"ePower_DMC" = C: \ Acer \ Empowering Technology \ ePower \ ePower_DMC.exe [2007-07-04 475136]
"Boot" = C: \ Acer \ Empowering Technology \ ePower \ Boot.exe [2006-03-15 579584]
"eDataSecurity Loader" = C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe [2007-05-28 342528]
"eRecoveryService" = C: \ Acer \ Empowering Technology \ eRecovery \ eRAgent.exe [2007-07-11 421888]
"LManager" = C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe [2007-10-17 858632]
"NeroFilterCheck" = C: \ WINDOWS \ system32 \ ctfmon.exe [2001-07-09 155648]
"CanonSolutionMenu" = C: \ Program Files \ Canon \ SolutionMenu \ CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter" = C: \ Program Files \ Canon \ MyPrinter \ BJMyPrt.exe [2007-04-03 1603152]
"Adobe Reader Speed Launcher" = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe [2008-01-11 39792]
"TO2SSM_McciTrayApp" = C: \ Program Files \ TO2SSM \ McciTrayApp.exe [2008-08-15 1473536]
"StartCCC" = C: \ Program Files \ QuickTime \ qttask.exe [2009-05-26 413696]
"NvCplDaemon" = C: \ Program Files \ iTunes \ qttask.exe [2009-07-13 292128]
"AVG9_TRAY" = C: \ PROGRA ~ 1 \ AVG \ AVG9 \ avgtray.exe [2009-12-14 2033432]
"KernelFaultCheck" = C: \ WINDOWS \ system32 \ CTFMON.EXE 0-k []
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Run]
"swg" = C: \ Program Files \ Google \ GoogleToolbarNotifier \ LOCAL [2008-04-20 68856]
"TomTomHOME.exe" = C: \ Program Files \ TomTom HOME 2 \ HOMERunner.exe [2008-05-06 202088]
"CTFMON.EXE" = C: \ WINDOWS \ system32 \ ctfmon.exe [2008-04-14 15360]
C: \ Documents and Settings \ All Users \ Nabídka Start \ Programy \ Po Spuštění
Acer Empowering Technology.lnk - C: \ Acer \ Empowering Technology \ Acer.Empowering.Framework.Launcher.exe
Adobe Gamma Loader.lnk - C: \ Program Files \ Common Files \ Adobe \ Kalibrace \ Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ avgrsstarter]
C: \ WINDOWS \ system32 \ avgrsstx.dll [2009-12-13 12464]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ igfxcui]
C: \ WINDOWS \ system32 \ igfxdev.dll [2007-06-05 204800]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ WgaLogon]
C: \ WINDOWS \ system32 \ WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"NoDriveTypeAutoRun" = 323
"NoDriveAutoRun" = 67108863
"NoDrives" = 0
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ Explorer]
"HonorAutoRunSetting" =
"NoDriveAutoRun" =
"NoDriveTypeAutoRun" =
"NoDrives" =
[HKEY_LOCAL_MACHINE \ system \ currentcontrolset \ services \ sharedaccess \ Parameters \ firewallpolicy \ standardprofile \ authorizedapplications \ list]
"% windir% \ system32 \ Sessmgr.exe" = "% windir% \ system32 \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Program Files \ CyberLink \ PowerDVD \ PowerDVD.exe" = "C: \ Program Files \ CyberLink \ PowerDVD \ PowerDVD.exe: *: Enabled: CyberLink PowerDVD"
"C: \ Program Files \ GameSpy Arcade \ Aphex.exe" = "C: \ Program Files \ GameSpy Arcade \ Aphex.exe: *: Enabled: GameSpy Arcade"
"C: \ Program Files \ Ahead \ Nero ShowTime \ ShowTime.exe" = "C: \ Program Files \ Ahead \ Nero ShowTime \ ShowTime.exe: *: Enabled: Nero ShowTime"
"% windir% \ network diagnostic \ xpnetdiag.exe" = "% windir% \ network diagnostic \ xpnetdiag.exe: *: Enabled: @ Xpsp3res.dll, -20000"
"C: \ Program Files \ Bonjour \ mDNSResponder.exe" = "C: \ Program Files \ Bonjour \ mDNSResponder.exe: *: Enabled: Bonjour"
"C: \ Program Files \ iTunes \ iTunes.exe" = "C: \ Program Files \ iTunes \ iTunes.exe: *: Enabled: iTunes"
"C: \ Program Files \ Hard Truck Tycoon \ HTT.exe" = "C: \ Program Files \ Hard Truck Tycoon \ HTT.exe: *: Enabled: HTT"
"C: \ Program Files \ AVG \ AVG9 \ avgupd.exe" = "C: \ Program Files \ AVG \ AVG9 \ avgupd.exe: *: Enabled: avgupd.exe"
"C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe" = "C: \ Program Files \ AVG \ AVG9 \ avgnsx.exe: *: Enabled: avgnsx.exe"
[HKEY_LOCAL_MACHINE \ system \ currentcontrolset \ services \ sharedaccess \ Parameters \ firewallpolicy \ domainprofile \ authorizedapplications \ list]
"% windir% \ system32 \ Sessmgr.exe" = "% windir% \ system32 \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"% windir% \ network diagnostic \ xpnetdiag.exe" = "% windir% \ network diagnostic \ xpnetdiag.exe: *: Enabled: @ Xpsp3res.dll, -20000"
====== Seznam souborů / složek vytvořených během posledních 1 měsíc ======
2009-12-14 18:06:14 ---- D ---- C: \ WINDOWS \ LastGood
2009-12-14 17:34:37 ---- SHD ---- C: \ Config.Msi
2009-12-13 22:58:25 ---- A ---- C: \ WINDOWS \ system32 \ mucltui.dll.mui
2009-12-13 22:58:25 ---- A ---- C: \ WINDOWS \ system32 \ mucltui.dll
2009-12-13 22:10:19 ---- HD ---- C: \ $ AVG
2009-12-13 22:10:08 ---- A ---- C: \ WINDOWS \ system32 \ avgrsstx.dll
2009-12-13 22:09:31 ---- D ---- C: \ Documents and Settings \ All Users \ Data aplikací \ avg9
2009-12-13 19:11:32 ---- SHD ---- C: \ RECYCLER
2009-12-13 18:50:49 ---- A ---- C: \ avenger.txt
2009-12-13 18:27:51 ---- A ---- C: \ ComboFix.txt
2009-12-13 18:04:17 ---- D ---- C: \ WINDOWS \ temp
2009-12-13 15:34:56 ---- D ---- C: \ Program Files \ TrendMicro
2009-12-13 13:56:25 ---- D ---- C: \ Program Files \ CCleaner
2009-12-13 12:45:04 ---- A ---- C: \ Boot.bak
2009-12-13 12:44:59 ---- RASHD ---- C: \ cmdcons
2009-12-13 09:53:54 ---- D ---- C: \ WINDOWS \ ERDNT
2009-12-12 18:11:41 ---- D ---- C: \ Program Files \ Trend Micro
2009-12-12 18:11:39 ---- D ---- C: \ rsit
2009-12-12 16:51:24 ---- D ---- C: \ WINDOWS \ Minidump
2009-12-12 16:46:14 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB974318 $
2009-12-12 16:45:15 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB973904 $
2009-12-12 16:45:02 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB974392 $
2009-12-12 16:44:39 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB971737 $
2009-12-10 20:53:06 ---- SHD ---- C: \ WINDOWS \ CSC
2009-12-10 18:40:50 ---- D ---- C: \ Program Files \ ESET
2009-11-26 17:44:57 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB976098-v2 $
2009-11-26 17:44:49 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB973687 $
2009-11-16 16:52:46 ---- D ---- C: \ Program Files \ San Andreas Radio
====== Seznam souborů / složek změněny v posledních 1 měsíc ======
2009-12-14 18:06:43 ---- HD ---- C: \ WINDOWS \ inf
2009-12-14 18:06:14 ---- D ---- C: \ WINDOWS
2009-12-14 18:06:13 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot2
2009-12-14 18:02:18 ---- A ---- C: \ WINDOWS \ ModemLog_HDAUDIO Soft Data Fax Modem s SmartCP.txt
2009-12-14 17:38:21 ---- SHD ---- C: \ WINDOWS \ Installer
2009-12-14 17:38:21 ---- RSD ---- C: \ WINDOWS \ montáž
2009-12-14 17:37:51 ---- A ---- C: \ WINDOWS \ win.ini
2009-12-14 17:36:43 ---- RSD ---- C: \ WINDOWS \ Fonts
2009-12-14 17:36:12 ---- D ---- C: \ Program Files \ Common Files \ Microsoft Shared
2009-12-14 17:34:44 ---- D ---- C: \ WINDOWS \ system32
2009-12-13 22:59:00 ---- A ---- C: \ WINDOWS \ SchedLgU.Txt
2009-12-13 22:51:40 ---- SD ---- C: \ WINDOWS \ Downloaded Program Files
2009-12-13 22:10:02 ---- D ---- C: \ WINDOWS \ system32 \ drivers
2009-12-13 22:09:32 ---- D ---- C: \ Program Files \ AVG
2009-12-13 22:09:25 ---- D ---- C: \ WINDOWS \ WinSxS
2009-12-13 18:10:26 ---- A ---- C: \ WINDOWS \ system.ini
2009-12-13 17:53:38 ---- D ---- C: \ WINDOWS \ AppPatch
2009-12-13 17:52:43 ---- D ---- C: \ Program Files \ Common Files
2009-12-13 16:01:13 ---- A ---- C: \ WINDOWS \ system32 \ PerfStringBackup.INI
2009-12-13 15:56:00 ---- RSHD ---- C: \ WINDOWS \ system32 \ dllcache
2009-12-13 15:35:02 ---- SD ---- C: \ Documents and Settings \ Libor \ Data aplikací \ Microsoft
2009-12-13 15:34:56 ---- D ---- C: \ Program Files
2009-12-13 15:09:34 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot
2009-12-13 14:05:22 ---- D ---- C: \ WINDOWS \ Debug
2009-12-13 13:04:51 ---- D ---- C: \ WINDOWS \ system32 \ config
2009-12-13 12:45:04 ---- RASH ---- C: \ boot.ini
2009-12-12 16:51:20 ---- D ---- C: \ Program Files \ Internet Explorer
2009-12-12 16:45:28 ---- HD ---- C: \ WINDOWS \ $ hf_mig $
2009-12-10 07:35:49 ---- D ---- C: \ WINDOWS \ Prefetch
2009-12-01 21:06:20 ---- A ---- C: \ WINDOWS \ system32 \ Mrt.exe
====== List of drivers (R = Running, S = Stopped, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = Disabled )======
R1 AvgLdx86; AVG Free AVI Loader Driver x86; C: \ WINDOWS \ system32 \ Drivers \ avgldx86.sys [2009-12-13 333192]
R1 AvgMfx86; AVG Free On-Access Scanner Driver minifiltr x86 C: \ WINDOWS \ system32 \ Drivers \ avgmfx86.sys [2009-12-13 28424]
R1 AvgTdiX; AVG Free sítě Redirector C: \ WINDOWS \ system32 \ Drivers \ avgtdix.sys [2009-12-13 360584]
R1 intelppm; Radič procesoru Intel C: \ WINDOWS \ system32 \ DRIVERS \ Intelppm.sys [2008-04-14 40192]
R1 WmiAcpi; Microsoft Windows Management Interface pro ACPI, C: \ WINDOWS \ system32 \ DRIVERS \ wmiacpi.sys [2008-04-13 8832]
R2 int15, int15; \? \ C: \ WINDOWS \ system32 \ drivers \ int15.sys []
R2 irda, Protokol IrDA, C: \ WINDOWS \ system32 \ DRIVERS \ irda.sys [2008-04-13 88192]
R2 mdmxsdk; mdmxsdk C: \ WINDOWS \ system32 \ DRIVERS \ mdmxsdk.sys [2006-06-19 12672]
R2 tvicport; tvicport; \? \ C: \ WINDOWS \ system32 \ drivers \ tvicport.sys []
R2 zntport; zntport; \? \ C: \ WINDOWS \ system32 \ drivers \ zntport.sys []
R3 Arp1394; Protokol 1394 ARP Client; C: \ WINDOWS \ system32 \ DRIVERS \ Arp1394.sys [2008-04-13 60800]
R3 b57w2k, Broadcom NetXtreme Gigabit Ethernet, C: \ WINDOWS \ system32 \ DRIVERS \ b57xp32.sys [2007-02-16 160256]
R3 bcm43xx; Ovladač síťového adaptéru Broadcom 802.11 C: \ WINDOWS \ system32 \ DRIVERS \ bcmwl5.sys [2006-10-12 604928]
R3 CmBatt; Microsoft ACPI metody řízení baterie Driver C: \ WINDOWS \ system32 \ DRIVERS \ CmBatt.sys [2008-04-13 13952]
R3 DKbFltr; Dritek klávesnice Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ DKbFltr.sys [2006-01-20 17408]
R3 GEARAspiWDM; GEAR ASPI Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ GEARAspiWDM.sys [2009-03-19 23400]
R3 HDAudBus; Microsoft UAA Bus Driver for High Definition Audio, C: \ WINDOWS \ system32 \ DRIVERS \ HDAudBus.sys [2008-04-13 144384]
R3 HidUsb; Ovladač třídy standardu HID; C: \ WINDOWS \ system32 \ DRIVERS \ hidusb.sys [2008-04-13 10368]
R3 HSF_DPV; HSF_DPV C: \ WINDOWS \ system32 \ DRIVERS \ HSF_DPV.sys [2006-12-22 988800]
R3 HSFHWAZL; HSFHWAZL C: \ WINDOWS \ system32 \ DRIVERS \ HSFHWAZL.sys [2006-12-22 209664]
R3 ialm; ialm C: \ WINDOWS \ system32 \ DRIVERS \ igxpmp32.sys [2007-06-05 5761728]
R3 IntcAzAudAddService; Servis pro Realtek HD Audio (WDM) C: \ WINDOWS \ system32 \ drivers \ RtkHDAud.sys [2007-05-30 4424192]
R3 mouhid; Ovladač myši standardu HID; C: \ WINDOWS \ system32 \ DRIVERS \ mouhid.sys [2001-10-24 12160]
R3 NIC1394; 1394 Čistá Driver C: \ WINDOWS \ system32 \ DRIVERS \ nic1394.sys [2008-04-13 61824]
R3 NSCIRDA; NSC Infrared Device Driver C: \ WINDOWS \ system32 \ DRIVERS \ nscirda.sys [2008-04-13 28672]
R3 NTIDrvr; Horní třída Filtr Driver C: \ WINDOWS \ system32 \ DRIVERS \ NTIDrvr.sys [2007-08-14 6144]
R3 psdfilter; psdfilter; \? \ C: \ WINDOWS \ system32 \ Drivers \ psdfilter.sys []
R3 psdvdisk; psdvdisk; \? \ C: \ WINDOWS \ system32 \ Drivers \ psdvdisk.sys []
R3 Rasirda; WAN Miniport (IrDA), C: \ WINDOWS \ system32 \ DRIVERS \ rasirda.sys [2001-08-17 19584]
R3 sdbus; sdbus C: \ WINDOWS \ system32 \ DRIVERS \ sdbus.sys [2008-04-13 79232]
R3 Lib, Synaptics Touchpad Driver C: \ WINDOWS \ system32 \ DRIVERS \ SynTP.sys [2005-12-16 191936]
R3 tifm21; tifm21 C: \ WINDOWS \ system32 \ drivers \ tifm21.sys [2007-05-02 290816]
R3 usbehci; Ovladač miniportu rozšířeného řadiče hostitele Microsoft USB 2.0; C: \ WINDOWS \ system32 \ DRIVERS \ Usbehci.sys [2008-04-13 30208]
R3 usbhub; Rozbočovač umožnující USB2; C: \ WINDOWS \ system32 \ DRIVERS \ usbhub.sys [2008-04-13 59520]
R3 usbuhci; Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft, C: \ WINDOWS \ system32 \ DRIVERS \ usbuhci.sys [2008-04-13 20608]
R3 winachsf; winachsf C: \ WINDOWS \ system32 \ DRIVERS \ HSF_CNXT.sys [2006-12-22 730112]
S1 ASPI32; ASPI32 C: \ WINDOWS \ system32 \ drivers \ ASPI32.sys []
S3 catchme; catchme; \? \ C: \ ComboFix \ catchme.sys []
S3 CCDECODE; Dekodér Uzavřené Caption C: \ WINDOWS \ system32 \ DRIVERS \ CCDECODE.sys [2008-04-13 17024]
S3 FETNDIS; VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C: \ WINDOWS \ system32 \ DRIVERS \ fetnd5.sys [2001-08-17 27165]
S3 int15.sys; int15.sys; \? \ C: \ Acer \ Empowering Technology \ eRecovery \ int15.sys []
S3 MREMP50; MREMP50 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMP50.SYS []
S3 MREMP50a64; MREMP50a64 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMP50a64.SYS []
S3 MREMPR5; MREMPR5 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MREMPR5.SYS []
S3 MRENDIS5; MRENDIS5 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRENDIS5.SYS []
S3 MRESP50; MRESP50 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRESP50.SYS []
S3 MRESP50a64; MRESP50a64 NDIS Protocol Driver; \? \ C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Motive \ MRESP50a64.SYS []
S3 MSIRCOMM; Microsoft IR komunikace Driver C: \ WINDOWS \ system32 \ DRIVERS \ MSIRCOMM.sys [2008-04-13 22016]
S3 MSTEE; Microsoft Streaming Tee / Sink-na-Sink Converter; C: \ WINDOWS \ system32 \ drivers \ MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC; NABTS / FEC VBI Codec; C: \ WINDOWS \ system32 \ DRIVERS \ NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP, Microsoft TV / Video Connection; C: \ WINDOWS \ system32 \ DRIVERS \ NdisIP.sys [2008-04-13 10880]
S3 SLIP; BDA Slip De-rámař C: \ WINDOWS \ system32 \ DRIVERS \ SLIP.sys [2008-04-13 11136]
S3 streamip, BDA IPSink C: \ WINDOWS \ system32 \ DRIVERS \ StreamIP.sys [2008-04-13 15232]
S3 usbccgp; Obecný nadřazený ovladač Microsoft USB; C: \ WINDOWS \ system32 \ DRIVERS \ usbccgp.sys [2008-04-13 32128]
S3 usbprint, Třída USB Printer; C: \ WINDOWS \ system32 \ DRIVERS \ usbprint.sys [2008-04-13 25856]
S3 usbscan; Ovladač skeneru USB; C: \ WINDOWS \ system32 \ DRIVERS \ usbscan.sys [2008-04-13 15104]
S3 UsbStor; Ovladač velkokapacitního paměťového zařízení USB; C: \ WINDOWS \ system32 \ DRIVERS \ USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo; Zobrazovací zařízení USB (WDM) C: \ WINDOWS \ system32 \ Drivers \ usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC; Dálnopisný kodek světového standardu C: \ WINDOWS \ system32 \ DRIVERS \ WSTCODEC.SYS [2008-04-13 19200]
====== Seznam služeb (R = Running, S = Stopped, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = Disabled )======
R2 Apple Mobile Device; Apple Mobile Device; C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe [2009-07-09 144712]
R2 avg9wd; AVG Free WatchDog; C: \ Program Files \ AVG \ AVG9 \ avgwdsvc.exe [2009-12-13 285392]
R2 Bonjour Service; Bonjour Service C: \ Program Files \ Bonjour \ mDNSResponder.exe [2008-12-12 238888]
R2 eLockService, eLock Service C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe [2007-03-01 24576]
R2 IAANTMON, Intel (R) Matrix Storage Event Monitor C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ Iaantmon.exe [2007-03-21 355096]
R2 Irmon; Sledování infračerveného prenosu C: \ WINDOWS \ system32 \ svchost.exe [2008-04-14 14336]
R2 LightScribeService; LightScribeService Direct Disc Labeling Service C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe [2007-01-17 61440]
R2 McciCMService; McciCMService C: \ Program Files \ Common Files \ Motive \ McciCMService.exe [2007-10-15 303104]
R2 MSSQL $ MSSMLBIZ, SQL Server (MSSMLBIZ), C: \ Program Files \ Microsoft SQL Server \ MSSQL.1 \ MSSQL \ Binn \ sqlservr.exe [2006-04-14 28933976]
R2 RichVideo; Cyberlink RichVideo Service (CRVS), C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe [2007-01-08 171040]
R3 iPod Service, iPod Service C: \ Program Files \ iPod \ bin \ iPodService.exe [2009-07-13 542496]
S2 CLTNetCnService; Symantec Lic NetConnect služby, C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe / h ccCommon []
S2 Fax, Fax, C: \ WINDOWS \ system32 \ fxssvc.exe [2008-04-14 268288]
S3 aspnet_state, ASP.NET státní službě, C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;. NET Runtime Optimization Service v2.0.50727_X86 C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0; Windows Presentation Foundation Font Cache 3.0.0.0; C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ WPF \ PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc; Google Software Updater, C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe [2009-05-01 182768]
S3 IDriverT; InstallDriver Table Manager; C: \ Program Files \ Common Files \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT.exe [2005-11-14 69632]
S3 idsvc; Windows CardSpace C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ Windows Communication Foundation \ infocard.exe [2008-07-29 881664]
S3 ose; Office Source Engine; C: \ Program Files \ Common Files \ Microsoft Shared \ Source Engine \ Ose.exe [2006-10-26 145184]
S3 SQLWriter, SQL Server VSS Writer C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlwriter.exe [2006-04-14 87840]
S4 MSSQLServerADHelper, SQL Server Active Directory Helper, C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqladhlp90.exe [2005-10-14 45272]
S4 NetTcpPortSharing; Net.Tcp Port sdílení služeb, C: \ WINDOWS \ Microsoft.NET \ Framework \ v3.0 \ Windows Communication Foundation \ SMSvcHost.exe [2008-07-29 132096]
S4 SQLBrowser, SQL Server Browser, C: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlbrowser.exe [2006-04-14 240416]
----------------- EOF -----------------
