zdravim prosim o preventivni kontrolu logu
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:34:21, on 11.6.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
H:\Windows\system32\taskhost.exe
H:\Windows\system32\Dwm.exe
H:\Windows\Explorer.EXE
H:\Program Files\ESET\ESET Smart Security\egui.exe
H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
H:\Program Files\Windows Sidebar\sidebar.exe
H:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
H:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
H:\Windows\system32\taskhost.exe
H:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
H:\Program Files\Internet Explorer\iexplore.exe
H:\Program Files\Internet Explorer\iexplore.exe
H:\Windows\System32\msdt.exe
H:\Windows\System32\sdiagnhost.exe
H:\Windows\system32\conhost.exe
H:\Windows\system32\taskeng.exe
H:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - H:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - H:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [GrooveMonitor] "H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NBKeyScan] "H:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] H:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = H:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://H:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - H:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - H:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - H:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - H:\Windows\system32\atiesrxx.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - H:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - H:\Windows\system32\IoctlSvc.exe
--
End of file - 5556 bytes
preventivni kontrola logu Vyřešeno
Re: preventivni kontrola logu
Ahoj,
Otestuj na www.virustotal.com
H:\Windows\System32\msdt.exe
H:\Windows\System32\sdiagnhost.exe
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
******************************
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
******************************
Stahni Mbam http://download.cnet.com/3001-8022_4-10 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
Otestuj na www.virustotal.com
H:\Windows\System32\msdt.exe
H:\Windows\System32\sdiagnhost.exe
-Do okénka zkopíruj cestu k souboru , pokud napíše, že soubor byl už testován, dej otestovat znovu.
-Sem vlož link s výsledky.
******************************
Stahni CCleaner http://www.filehippo.com/download_cclea ... cbae6b492/
-nainstaluj (neinstaluj Yahoo toolbar)
-zvol záložku Čistič
-nechej v levém sloupečku zatrhnuté vše jak je a zmáčkni tlačítko analyzovat
-pak potvrď tlačítko Spustit Ccleaner
-tím se vyčistí počítač od dočasných soubborů, doporučuji pravidelně používat.
-vyber záložku registry
-klikni na tlačítko hledej problémy
-pak klikni na opravit vybrané problémy, potvrď, že chceš udělat zálohu a nech všechno opravit
******************************
Stahni Mbam http://download.cnet.com/3001-8022_4-10 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
Re: preventivni kontrola logu
a-squared 5.0.0.26 2010.06.12 -
AhnLab-V3 2010.06.11.00 2010.06.11 -
AntiVir 8.2.2.6 2010.06.11 -
Antiy-AVL 2.0.3.7 2010.06.11 -
Authentium 5.2.0.5 2010.06.11 -
Avast 4.8.1351.0 2010.06.11 -
Avast5 5.0.332.0 2010.06.11 -
AVG 9.0.0.787 2010.06.11 -
BitDefender 7.2 2010.06.11 -
CAT-QuickHeal 10.00 2010.06.11 -
ClamAV 0.96.0.3-git 2010.06.11 -
Comodo 5059 2010.06.11 -
DrWeb 5.0.2.03300 2010.06.11 -
eSafe 7.0.17.0 2010.06.10 -
eTrust-Vet 36.1.7629 2010.06.11 -
F-Prot 4.6.0.103 2010.06.11 -
F-Secure 9.0.15370.0 2010.06.11 -
Fortinet 4.1.133.0 2010.06.11 -
GData 21 2010.06.12 -
Ikarus T3.1.1.84.0 2010.06.11 -
Jiangmin 13.0.900 2010.06.11 -
Kaspersky 7.0.0.125 2010.06.11 -
McAfee 5.400.0.1158 2010.06.11 -
McAfee-GW-Edition 2010.1 2010.06.11 -
Microsoft 1.5802 2010.06.11 -
NOD32 5191 2010.06.11 -
Norman 6.04.12 2010.06.11 -
nProtect 2010-06-11.01 2010.06.11 -
Panda 10.0.2.7 2010.06.11 -
PCTools 7.0.3.5 2010.06.11 -
Prevx 3.0 2010.06.12 -
Rising 22.51.04.04 2010.06.11 -
Sophos 4.54.0 2010.06.11 -
Sunbelt 6436 2010.06.11 -
Symantec 20101.1.0.89 2010.06.11 -
TheHacker 6.5.2.0.297 2010.06.11 -
TrendMicro 9.120.0.1004 2010.06.11 -
TrendMicro-HouseCall 9.120.0.1004 2010.06.12 -
VBA32 3.12.12.5 2010.06.11 -
ViRobot 2010.6.11.3881 2010.06.11 -
VirusBuster 5.0.27.0 2010.06.11 -
Rozšiřující informace
File size: 983040 bytes
MD5...: f67a64c46de10425045af682802f5ba6
SHA1..: 74d1f99fab21c98de441f4545fcae9f709be9f8c
SHA256: 65b029802a1cd52e21032cadd0e7c92eeb7d4c475fe892770aeac75c01c4c977
ssdeep: 24576:2rs7EM2kMltkIVxdT9twVGQ26XH4qvIReK1odddGdBnyEj6kKZnBF:6ySq
NK7jyRB
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x3651e
timedatestamp.....: 0x4a5bc13a (Mon Jul 13 23:20:26 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x4c96c 0x4ca00 6.51 e5f8d061fd8eb4202e2fcba51e87f7ee
.data 0x4e000 0x1698 0x200 1.41 c50d76207f5bdead38a493aaaf8da63b
.rsrc 0x50000 0x9e058 0x9e200 6.91 c6ffaefe7ba7e68bca84c985fe24ef5c
.reloc 0xef000 0x4b34 0x4c00 6.02 8d2bd6584429ce4269e680724a514429
( 21 imports )
> ADVAPI32.dll: EventRegister, EventUnregister, EventWrite, RegCloseKey, RegQueryValueExW, RegOpenKeyExW, RegSetValueExW, RegCreateKeyExW, CheckTokenMembership, CreateWellKnownSid, ConvertSidToStringSidW, GetTokenInformation, OpenProcessToken, OpenThreadToken, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegLoadMUIStringW
> KERNEL32.dll: CreateEventW, GetModuleFileNameW, ReadFile, WriteFile, CreateThread, GetFullPathNameW, FindClose, SetCurrentDirectoryW, FindFirstFileW, GetCurrentDirectoryW, CloseHandle, CreateFileW, HeapSetInformation, LocalFree, GetFileAttributesW, GetCommandLineW, FreeLibrary, GetProcAddress, ExpandEnvironmentStringsW, GetUserPreferredUILanguages, FindNextFileW, DeleteFileW, GetCurrentProcess, GetCurrentThread, GetTempPathW, RemoveDirectoryW, SetFileAttributesW, CreateDirectoryW, CopyFileW, GetTempFileNameW, LoadLibraryExW, GetSystemTime, MoveFileW, ConnectNamedPipe, CreateNamedPipeW, OpenEventW, HeapReAlloc, SetDllDirectoryW, CreateTimerQueueTimer, SetEvent, DeleteTimerQueueTimer, ResetEvent, GetTickCount64, InterlockedDecrement, TlsAlloc, GetLastError, TlsFree, DosDateTimeToFileTime, LocalFileTimeToFileTime, SetFileTime, GetFileInformationByHandle, FileTimeToLocalFileTime, FileTimeToDosDateTime, MultiByteToWideChar, WideCharToMultiByte, GetFileSizeEx, FindResourceW, LoadResource, LockResource, SizeofResource, GlobalAlloc, GlobalLock, FreeResource, GlobalUnlock, GlobalFree, UnhandledExceptionFilter, TerminateProcess, GetSystemTimeAsFileTime, GetCurrentProcessId, GetTickCount, QueryPerformanceCounter, GetModuleHandleA, SetUnhandledExceptionFilter, GetStartupInfoW, Sleep, InterlockedExchange, GetExitCodeProcess, WaitForSingleObject, WaitForMultipleObjects, HeapAlloc, GetProcessHeap, HeapFree, LoadLibraryW, InterlockedIncrement, InterlockedCompareExchange, TlsGetValue, GetCurrentThreadId, TlsSetValue
> USER32.dll: UnhookWindowsHookEx, SetWindowsHookExW, GetFocus, EnableWindow, GetKeyState, CallNextHookEx, PostMessageW, CreateWindowExW, IsChild, GetSystemMetrics, SendMessageW, LoadImageW, IsWindow, ShowScrollBar, CloseClipboard, SetClipboardData, EmptyClipboard, OpenClipboard, MessageBoxW, LoadStringW, SetForegroundWindow, GetWindowLongW, AllowSetForegroundWindow, SetWindowLongW, GetClientRect
> msvcrt.dll: __CxxFrameHandler3, _purecall, _vsnwprintf, memset, memcpy, towlower, _wcsicmp, _vsnprintf, _CxxThrowException, memcpy_s, memmove_s, _wcslwr_s, wcsncmp, _wcsnicmp, wcstol, iswdigit, free, calloc, wcstombs_s, malloc, _wtol, wcschr, wcstok, mbstowcs_s, _callnewh, __wgetmainargs, _cexit, _exit, _XcptFilter, exit, _wcmdln, _initterm, _amsg_exit, __setusermatherr, __p__commode, __p__fmode, __set_app_type, __1type_info@@UAE@XZ, _terminate@@YAXXZ, _except_handler4_common, _controlfp, time, srand, _get_osfhandle, rand, _wremove, _lseek, _close, _write, _read, _errno, _wopen, memmove
> ntdll.dll: RtlInitUnicodeStringEx, RtlSetEnvironmentVariable, RtlExpandEnvironmentStrings, RtlDestroyEnvironment, RtlInitializeSid, RtlNtStatusToDosError, RtlSubAuthoritySid, DbgPrintEx, NtQueryInformationToken, NtClose, NtOpenProcessToken, NtOpenThreadToken, WinSqmAddToStream, WinSqmAddToStreamEx, RtlCreateEnvironment
> SHELL32.dll: SHGetKnownFolderIDList, SHBrowseForFolderW, ShellExecuteExW, ShellExecuteW, CommandLineToArgvW, SHGetPathFromIDListW
> COMCTL32.dll: ImageList_Destroy, PropertySheetW, ImageList_Create, ImageList_ReplaceIcon
> OLEAUT32.dll: -, -, -, -, -, -, -, -, -, -, -, -
> UxTheme.dll: SetWindowTheme
> ATL.DLL: -, -
> ole32.dll: CoTaskMemFree, StringFromCLSID, CoCreateInstance, CoUninitialize, OleInitialize, StringFromGUID2, GetHGlobalFromStream, CreateStreamOnHGlobal, CoInitializeEx
> COMDLG32.dll: GetOpenFileNameW, CommDlgExtendedError
> RPCRT4.dll: UuidCreate
> DUser.dll: ForwardGadgetMessage, GetGadgetFocus
> wer.dll: WerReportSubmit, WerReportAddFile, WerReportCreate, WerReportCloseHandle, WerReportSetParameter
> Secur32.dll: GetUserNameExW
> WINTRUST.dll: WinVerifyTrust, WTHelperProvDataFromStateData, WTHelperGetProvSignerFromChain, WTHelperGetProvCertFromChain
> CRYPT32.dll: CertGetCertificateContextProperty, CryptHashCertificate, CertFreeCertificateContext, CertDuplicateCertificateContext
> DUI70.dll: _Destroy@DUIXmlParser@DirectUI@@QAEXXZ, _RemoveAll@Element@DirectUI@@QAEJXZ, _GetSelected@Element@DirectUI@@QAE_NXZ, _SetSelected@Element@DirectUI@@QAEJ_N@Z, _GetVisible@Element@DirectUI@@QAE_NXZ, _CreateElement@DUIXmlParser@DirectUI@@QAEJPBGPAVElement@2@1PAKPAPAV32@@Z, _Add@Element@DirectUI@@QAEJPAV12@@Z, _Click@Button@DirectUI@@SG_AVUID@@XZ, _SetEnabled@Element@DirectUI@@QAEJ_N@Z, _CreateGraphic@Value@DirectUI@@SGPAV12@PAUHICON__@@_N11@Z, _OnMessage@TaskPage@DirectUI@@MAE_NIIJPAJ@Z, __1TaskPage@DirectUI@@UAE@XZ, _EndDefer@Element@DirectUI@@QAEXK@Z, _StartDefer@Element@DirectUI@@QAEXPAK@Z, _SetTooltip@Element@DirectUI@@QAEJ_N@Z, _SetTooltipMaxWidth@Element@DirectUI@@QAEJH@Z, _SetContentString@Element@DirectUI@@QAEJPBG@Z, _SetAccName@Element@DirectUI@@QAEJPBG@Z, _SetAccValue@Element@DirectUI@@QAEJPBG@Z, _SetAccDesc@Element@DirectUI@@QAEJPBG@Z, _SetVisible@Element@DirectUI@@QAEJ_N@Z, _SetLayoutPos@Element@DirectUI@@QAEJH@Z, StrToID, _GetElement@TaskPage@DirectUI@@IAEPAVElement@2@XZ, _FindDescendent@Element@DirectUI@@QAEPAV12@G@Z, _GetParentHWND@TaskPage@DirectUI@@QAEPAUHWND__@@XZ, _PropSheet_SendMessage@TaskPage@DirectUI@@IAEJIIJ@Z, _DestroyCP@TaskPage@DirectUI@@EAEXXZ, _CreateParserCP@TaskPage@DirectUI@@EAEJPAPAVDUIXmlParser@2@@Z, _CreateDUICP@TaskPage@DirectUI@@EAEJPAVHWNDElement@2@PAUHWND__@@1PAPAVElement@2@PAPAVDUIXmlParser@2@@Z, _OnQueryInitialFocus@TaskPage@DirectUI@@MAEPAVElement@2@XZ, _OnWizFinish@TaskPage@DirectUI@@MAEJXZ, _OnReset@TaskPage@DirectUI@@MAEJXZ, _OnKillActive@TaskPage@DirectUI@@MAEJXZ, _InitPropSheetPage@TaskPage@DirectUI@@MAEXPAU_PROPSHEETPAGEW@@@Z, _LoadPage@TaskPage@DirectUI@@MAEJPAVHWNDElement@2@PAUHINSTANCE__@@PAPAVElement@2@PAPAVDUIXmlParser@2@@Z, _LoadParser@TaskPage@DirectUI@@MAEJPAPAVDUIXmlParser@2@@Z, _OnListenedEvent@TaskPage@DirectUI@@MAEXPAVElement@2@PAUEvent@2@@Z, _OnListenedInput@TaskPage@DirectUI@@MAEXPAVElement@2@PAUInputEvent@2@@Z, _OnListenedPropertyChanged@TaskPage@DirectUI@@MAEXPAVElement@2@PBUPropertyInfo@2@HPAVValue@2@2@Z, _OnListenedPropertyChanging@TaskPage@DirectUI@@MAE_NPAVElement@2@PBUPropertyInfo@2@HPAVValue@2@2@Z, _OnListenerDetach@TaskPage@DirectUI@@MAEXPAVElement@2@@Z, _OnListenerAttach@TaskPage@DirectUI@@MAEXPAVElement@2@@Z, __0TaskPage@DirectUI@@QAE@XZ, __1HWNDHost@DirectUI@@UAE@XZ, _Register@HWNDHost@DirectUI@@SGJXZ, _OnPropertyChanged@HWNDHost@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _KeyFocusedProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _GetBool@Value@DirectUI@@QAE_NXZ, _Initialize@HWNDHost@DirectUI@@QAEJIIPAVElement@2@PAK@Z, _GetDisplayNode@Element@DirectUI@@QAEPAUHGADGET__@@XZ, _GetClassInfoPtr@HWNDHost@DirectUI@@SGPAUIClassInfo@2@XZ, _OnNotify@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _GetClassInfoW@HWNDHost@DirectUI@@UAEPAUIClassInfo@2@XZ, _GetContentSize@Element@DirectUI@@UAE_AUtagSIZE@@HHPAVSurface@2@@Z, _OnInput@HWNDHost@DirectUI@@UAEXPAUInputEvent@2@@Z, __0HWNDHost@DirectUI@@QAE@XZ, _Register@Edit@DirectUI@@SGJXZ, _Register@HWNDElement@DirectUI@@SGJXZ, _Register@CCBase@DirectUI@@SGJXZ, _GetFactoryLock@Element@DirectUI@@SGPAU_RTL_CRITICAL_SECTION@@XZ, __0CritSecLock@DirectUI@@QAE@PAU_RTL_CRITICAL_SECTION@@@Z, _ClassExist@ClassInfoBase@DirectUI@@SG_NPAPAUIClassInfo@2@PBQBUPropertyInfo@2@IPAU32@PAUHINSTANCE__@@PBG_N@Z, _Register@ClassInfoBase@DirectUI@@QAEJXZ, __1CritSecLock@DirectUI@@QAE@XZ, _Initialize@CCBase@DirectUI@@QAEJIPAVElement@2@PAK@Z, _Initialize@ClassInfoBase@DirectUI@@QAEJPAUHINSTANCE__@@PBG_NPBQBUPropertyInfo@2@I@Z, _Initialize@CCListView@DirectUI@@QAEJIPAVElement@2@PAK@Z, _SetWinStyle@CCBase@DirectUI@@QAEJH@Z, _Initialize@Edit@DirectUI@@QAEJIPAVElement@2@PAK@Z, _Destroy@Element@DirectUI@@QAEJ_N@Z, _DirectionProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _SetNotifyHandler@CCBase@DirectUI@@QAEXP6GHIIJPAJPAX@Z1@Z, _OnNotify@Edit@DirectUI@@UAE_NIIJPAJ@Z, _CreateHWND@Edit@DirectUI@@MAEPAUHWND__@@PAU3@_N@Z, _DefaultAction@Element@DirectUI@@UAEJXZ, _MessageCallback@Edit@DirectUI@@UAEIPAUtagGMSG@@@Z, _GetContentSize@Edit@DirectUI@@UAE_AUtagSIZE@@HHPAVSurface@2@@Z, _OnInput@Edit@DirectUI@@UAEXPAUInputEvent@2@@Z, _OnPropertyChanged@Edit@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _GetContentStringAsDisplayed@Edit@DirectUI@@UAEPBGPAPAVValue@2@@Z, _IsContentProtected@Edit@DirectUI@@UAE_NXZ, __0Edit@DirectUI@@QAE@XZ, __1ClassInfoBase@DirectUI@@UAE@XZ, _AssertPIZeroRef@ClassInfoBase@DirectUI@@UBEXXZ, _GetChildren@ClassInfoBase@DirectUI@@UBEHXZ, _RemoveChild@ClassInfoBase@DirectUI@@UAEXXZ, _AddChild@ClassInfoBase@DirectUI@@UAEXXZ, _IsGlobal@ClassInfoBase@DirectUI@@UBE_NXZ, _GetModule@ClassInfoBase@DirectUI@@UBEPAUHINSTANCE__@@XZ, _IsSubclassOf@ClassInfoBase@DirectUI@@UBE_NPAUIClassInfo@2@@Z, _IsValidProperty@ClassInfoBase@DirectUI@@UBE_NPBUPropertyInfo@2@@Z, _GetName@ClassInfoBase@DirectUI@@UBEPBGXZ, _GetGlobalIndex@ClassInfoBase@DirectUI@@UBEIXZ, _GetPICount@ClassInfoBase@DirectUI@@UBEIXZ, _GetByClassIndex@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z, _EnumPropertyInfo@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z, _Release@ClassInfoBase@DirectUI@@UAEHXZ, _AddRef@ClassInfoBase@DirectUI@@UAEXXZ, __0ClassInfoBase@DirectUI@@QAE@XZ, _GetClassInfoW@CCListView@DirectUI@@UAEPAUIClassInfo@2@XZ, _OnPropertyChanged@CCBase@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, __0CCListView@DirectUI@@QAE@XZ, _GetClassInfoPtr@Edit@DirectUI@@SGPAUIClassInfo@2@XZ, _GetClassInfoPtr@HWNDElement@DirectUI@@SGPAUIClassInfo@2@XZ, _GetClassInfoPtr@CCBase@DirectUI@@SGPAUIClassInfo@2@XZ, _GetMultiline@Edit@DirectUI@@QAE_NXZ, _GetThemedBorder@Edit@DirectUI@@QAE_NXZ, _AttachCtrlSubclassProc@HWNDHost@DirectUI@@KGXPAUHWND__@@@Z, _OnInput@Element@DirectUI@@UAEXPAUInputEvent@2@@Z, _OnInput@CCBase@DirectUI@@UAEXPAUInputEvent@2@@Z, __1CCBase@DirectUI@@UAE@XZ, _PostCreate@CCBase@DirectUI@@MAEXPAUHWND__@@@Z, _OnReceivedDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z, _OnLostDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z, _OnCustomDraw@CCBase@DirectUI@@UAE_NPAUtagNMCUSTOMDRAWINFO@@PAJ@Z, _EraseBkgnd@HWNDHost@DirectUI@@MAE_NPAUHDC__@@PAJ@Z, _CreateHWND@CCBase@DirectUI@@UAEPAUHWND__@@PAU3@@Z, _SetWindowDirection@HWNDHost@DirectUI@@UAEXPAUHWND__@@@Z, _OnAdjustWindowSize@HWNDHost@DirectUI@@UAEHHHI@Z, _OnWindowStyleChanged@HWNDHost@DirectUI@@UAEXIPBUtagSTYLESTRUCT@@@Z, _OnCtrlThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnSinkThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnSysChar@HWNDHost@DirectUI@@UAE_NG@Z, _OnMessage@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnNotify@CCBase@DirectUI@@UAE_NIIJPAJ@Z, _GetHWND@HWNDHost@DirectUI@@UAEPAUHWND__@@XZ, _HandleUiaEventListener@Element@DirectUI@@UAEXPAUEvent@2@@Z, _HandleUiaPropertyChangingListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@@Z, _HandleUiaPropertyListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _HandleUiaDestroyListener@Element@DirectUI@@UAEXXZ, _GetElementProviderImpl@Element@DirectUI@@UAEJPAVInvokeHelper@2@PAPAVElementProvider@2@@Z, _Release@Value@DirectUI@@QAEXXZ, _SetValue@Element@DirectUI@@QAEJP6GPBUPropertyInfo@2@XZHPAVValue@2@@Z, _ContentProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _SetID@Element@DirectUI@@QAEJPBG@Z, _GetChildren@Element@DirectUI@@QAEPAV_$DynamicArray@PAVElement@DirectUI@@$0A@@2@PAPAVValue@2@@Z, _DefaultAction@CCBase@DirectUI@@UAEJXZ, _GetAccessibleImpl@HWNDHost@DirectUI@@UAEJPAPAUIAccessible@@@Z, _GetClassInfoW@CCBase@DirectUI@@UAEPAUIClassInfo@2@XZ, _GetKeyFocused@HWNDHost@DirectUI@@UAE_NXZ, _RemoveTooltip@Element@DirectUI@@MAEXPAV12@@Z, _ActivateTooltip@Element@DirectUI@@MAEXPAV12@K@Z, _UpdateTooltip@Element@DirectUI@@MAEXPAV12@@Z, _OnUnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z, _OnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z, __SelfLayoutUpdateDesiredSize@Element@DirectUI@@MAE_AUtagSIZE@@HHPAVSurface@2@@Z, __SelfLayoutDoLayout@Element@DirectUI@@MAEXHH@Z, _QueryInterface@Element@DirectUI@@UAGJABU_GUID@@PAPAX@Z, _MessageCallback@HWNDHost@DirectUI@@UAEIPAUtagGMSG@@@Z, _SetKeyFocus@HWNDHost@DirectUI@@UAEXXZ, __BTaskPage@DirectUI@@QAEPAU_PSP@@XZ, _DUICreatePropertySheetPage@TaskPage@DirectUI@@QAEJPAUHINSTANCE__@@@Z, InitProcessPriv, _EnsureVisible@Element@DirectUI@@UAE_NHHHH@Z, _GetAdjacent@Element@DirectUI@@UAEPAV12@PAV12@HPBUNavReference@2@K@Z, _Remove@Element@DirectUI@@UAEJPAPAV12@I@Z, _Insert@Element@DirectUI@@UAEJPAPAV12@II@Z, _Add@Element@DirectUI@@UAEJPAPAV12@I@Z, _Paint@HWNDHost@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z, _OnEvent@HWNDHost@DirectUI@@UAEXPAUEvent@2@@Z, _OnDestroy@HWNDHost@DirectUI@@UAEXXZ, _OnMouseFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z, _OnKeyFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z, UnInitProcessPriv, InitThread, UnInitThread, _OnGroupChanged@Element@DirectUI@@UAEXH_N@Z, _OnPropertyChanged@Element@DirectUI@@UAEXPAUPropertyInfo@2@HPAVValue@2@1@Z, _OnPropertyChanging@Element@DirectUI@@UAE_NPAUPropertyInfo@2@HPAVValue@2@1@Z, _OnPropertyChanging@Element@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z, _GetContentStringAsDisplayed@Element@DirectUI@@UAEPBGPAPAVValue@2@@Z, _IsContentProtected@Element@DirectUI@@UAE_NXZ, _IsRTLReading@Element@DirectUI@@UAE_NXZ, __0CCBase@DirectUI@@QAE@KPBG@Z, _GetString@Value@DirectUI@@QAEPBGXZ, _GetContentString@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z, _SetNote@CCCommandLink@DirectUI@@QAEJPBG@Z, __1Edit@DirectUI@@UAE@XZ
> SHLWAPI.dll: SHCreateStreamOnFileEx
> WINHTTP.dll: WinHttpSendRequest, WinHttpOpenRequest, WinHttpConnect, WinHttpOpen, WinHttpCrackUrl, WinHttpGetDefaultProxyConfiguration, WinHttpGetIEProxyConfigForCurrentUser, WinHttpCloseHandle, WinHttpQueryHeaders, WinHttpReceiveResponse, WinHttpWriteData, WinHttpReadData, WinHttpSetOption, WinHttpGetProxyForUrl
( 0 exports )
RDS...: NSRL Reference Data Set
-
trid..: Windows OCX File (85.9%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
DOS Executable Generic (1.3%)
pdfid.: -
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Diagnostics Troubleshooting Wizard
original name: msdt.exe
internal name: DiagWizard
file version.: 6.1.7600.16385 (win7_rtm.090713-1255)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
AhnLab-V3 2010.06.11.00 2010.06.11 -
AntiVir 8.2.2.6 2010.06.11 -
Antiy-AVL 2.0.3.7 2010.06.11 -
Authentium 5.2.0.5 2010.06.11 -
Avast 4.8.1351.0 2010.06.11 -
Avast5 5.0.332.0 2010.06.11 -
AVG 9.0.0.787 2010.06.11 -
BitDefender 7.2 2010.06.11 -
CAT-QuickHeal 10.00 2010.06.11 -
ClamAV 0.96.0.3-git 2010.06.11 -
Comodo 5059 2010.06.11 -
DrWeb 5.0.2.03300 2010.06.11 -
eSafe 7.0.17.0 2010.06.10 -
eTrust-Vet 36.1.7629 2010.06.11 -
F-Prot 4.6.0.103 2010.06.11 -
F-Secure 9.0.15370.0 2010.06.11 -
Fortinet 4.1.133.0 2010.06.11 -
GData 21 2010.06.12 -
Ikarus T3.1.1.84.0 2010.06.11 -
Jiangmin 13.0.900 2010.06.11 -
Kaspersky 7.0.0.125 2010.06.11 -
McAfee 5.400.0.1158 2010.06.11 -
McAfee-GW-Edition 2010.1 2010.06.11 -
Microsoft 1.5802 2010.06.11 -
NOD32 5191 2010.06.11 -
Norman 6.04.12 2010.06.11 -
nProtect 2010-06-11.01 2010.06.11 -
Panda 10.0.2.7 2010.06.11 -
PCTools 7.0.3.5 2010.06.11 -
Prevx 3.0 2010.06.12 -
Rising 22.51.04.04 2010.06.11 -
Sophos 4.54.0 2010.06.11 -
Sunbelt 6436 2010.06.11 -
Symantec 20101.1.0.89 2010.06.11 -
TheHacker 6.5.2.0.297 2010.06.11 -
TrendMicro 9.120.0.1004 2010.06.11 -
TrendMicro-HouseCall 9.120.0.1004 2010.06.12 -
VBA32 3.12.12.5 2010.06.11 -
ViRobot 2010.6.11.3881 2010.06.11 -
VirusBuster 5.0.27.0 2010.06.11 -
Rozšiřující informace
File size: 983040 bytes
MD5...: f67a64c46de10425045af682802f5ba6
SHA1..: 74d1f99fab21c98de441f4545fcae9f709be9f8c
SHA256: 65b029802a1cd52e21032cadd0e7c92eeb7d4c475fe892770aeac75c01c4c977
ssdeep: 24576:2rs7EM2kMltkIVxdT9twVGQ26XH4qvIReK1odddGdBnyEj6kKZnBF:6ySq
NK7jyRB
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x3651e
timedatestamp.....: 0x4a5bc13a (Mon Jul 13 23:20:26 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x4c96c 0x4ca00 6.51 e5f8d061fd8eb4202e2fcba51e87f7ee
.data 0x4e000 0x1698 0x200 1.41 c50d76207f5bdead38a493aaaf8da63b
.rsrc 0x50000 0x9e058 0x9e200 6.91 c6ffaefe7ba7e68bca84c985fe24ef5c
.reloc 0xef000 0x4b34 0x4c00 6.02 8d2bd6584429ce4269e680724a514429
( 21 imports )
> ADVAPI32.dll: EventRegister, EventUnregister, EventWrite, RegCloseKey, RegQueryValueExW, RegOpenKeyExW, RegSetValueExW, RegCreateKeyExW, CheckTokenMembership, CreateWellKnownSid, ConvertSidToStringSidW, GetTokenInformation, OpenProcessToken, OpenThreadToken, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegLoadMUIStringW
> KERNEL32.dll: CreateEventW, GetModuleFileNameW, ReadFile, WriteFile, CreateThread, GetFullPathNameW, FindClose, SetCurrentDirectoryW, FindFirstFileW, GetCurrentDirectoryW, CloseHandle, CreateFileW, HeapSetInformation, LocalFree, GetFileAttributesW, GetCommandLineW, FreeLibrary, GetProcAddress, ExpandEnvironmentStringsW, GetUserPreferredUILanguages, FindNextFileW, DeleteFileW, GetCurrentProcess, GetCurrentThread, GetTempPathW, RemoveDirectoryW, SetFileAttributesW, CreateDirectoryW, CopyFileW, GetTempFileNameW, LoadLibraryExW, GetSystemTime, MoveFileW, ConnectNamedPipe, CreateNamedPipeW, OpenEventW, HeapReAlloc, SetDllDirectoryW, CreateTimerQueueTimer, SetEvent, DeleteTimerQueueTimer, ResetEvent, GetTickCount64, InterlockedDecrement, TlsAlloc, GetLastError, TlsFree, DosDateTimeToFileTime, LocalFileTimeToFileTime, SetFileTime, GetFileInformationByHandle, FileTimeToLocalFileTime, FileTimeToDosDateTime, MultiByteToWideChar, WideCharToMultiByte, GetFileSizeEx, FindResourceW, LoadResource, LockResource, SizeofResource, GlobalAlloc, GlobalLock, FreeResource, GlobalUnlock, GlobalFree, UnhandledExceptionFilter, TerminateProcess, GetSystemTimeAsFileTime, GetCurrentProcessId, GetTickCount, QueryPerformanceCounter, GetModuleHandleA, SetUnhandledExceptionFilter, GetStartupInfoW, Sleep, InterlockedExchange, GetExitCodeProcess, WaitForSingleObject, WaitForMultipleObjects, HeapAlloc, GetProcessHeap, HeapFree, LoadLibraryW, InterlockedIncrement, InterlockedCompareExchange, TlsGetValue, GetCurrentThreadId, TlsSetValue
> USER32.dll: UnhookWindowsHookEx, SetWindowsHookExW, GetFocus, EnableWindow, GetKeyState, CallNextHookEx, PostMessageW, CreateWindowExW, IsChild, GetSystemMetrics, SendMessageW, LoadImageW, IsWindow, ShowScrollBar, CloseClipboard, SetClipboardData, EmptyClipboard, OpenClipboard, MessageBoxW, LoadStringW, SetForegroundWindow, GetWindowLongW, AllowSetForegroundWindow, SetWindowLongW, GetClientRect
> msvcrt.dll: __CxxFrameHandler3, _purecall, _vsnwprintf, memset, memcpy, towlower, _wcsicmp, _vsnprintf, _CxxThrowException, memcpy_s, memmove_s, _wcslwr_s, wcsncmp, _wcsnicmp, wcstol, iswdigit, free, calloc, wcstombs_s, malloc, _wtol, wcschr, wcstok, mbstowcs_s, _callnewh, __wgetmainargs, _cexit, _exit, _XcptFilter, exit, _wcmdln, _initterm, _amsg_exit, __setusermatherr, __p__commode, __p__fmode, __set_app_type, __1type_info@@UAE@XZ, _terminate@@YAXXZ, _except_handler4_common, _controlfp, time, srand, _get_osfhandle, rand, _wremove, _lseek, _close, _write, _read, _errno, _wopen, memmove
> ntdll.dll: RtlInitUnicodeStringEx, RtlSetEnvironmentVariable, RtlExpandEnvironmentStrings, RtlDestroyEnvironment, RtlInitializeSid, RtlNtStatusToDosError, RtlSubAuthoritySid, DbgPrintEx, NtQueryInformationToken, NtClose, NtOpenProcessToken, NtOpenThreadToken, WinSqmAddToStream, WinSqmAddToStreamEx, RtlCreateEnvironment
> SHELL32.dll: SHGetKnownFolderIDList, SHBrowseForFolderW, ShellExecuteExW, ShellExecuteW, CommandLineToArgvW, SHGetPathFromIDListW
> COMCTL32.dll: ImageList_Destroy, PropertySheetW, ImageList_Create, ImageList_ReplaceIcon
> OLEAUT32.dll: -, -, -, -, -, -, -, -, -, -, -, -
> UxTheme.dll: SetWindowTheme
> ATL.DLL: -, -
> ole32.dll: CoTaskMemFree, StringFromCLSID, CoCreateInstance, CoUninitialize, OleInitialize, StringFromGUID2, GetHGlobalFromStream, CreateStreamOnHGlobal, CoInitializeEx
> COMDLG32.dll: GetOpenFileNameW, CommDlgExtendedError
> RPCRT4.dll: UuidCreate
> DUser.dll: ForwardGadgetMessage, GetGadgetFocus
> wer.dll: WerReportSubmit, WerReportAddFile, WerReportCreate, WerReportCloseHandle, WerReportSetParameter
> Secur32.dll: GetUserNameExW
> WINTRUST.dll: WinVerifyTrust, WTHelperProvDataFromStateData, WTHelperGetProvSignerFromChain, WTHelperGetProvCertFromChain
> CRYPT32.dll: CertGetCertificateContextProperty, CryptHashCertificate, CertFreeCertificateContext, CertDuplicateCertificateContext
> DUI70.dll: _Destroy@DUIXmlParser@DirectUI@@QAEXXZ, _RemoveAll@Element@DirectUI@@QAEJXZ, _GetSelected@Element@DirectUI@@QAE_NXZ, _SetSelected@Element@DirectUI@@QAEJ_N@Z, _GetVisible@Element@DirectUI@@QAE_NXZ, _CreateElement@DUIXmlParser@DirectUI@@QAEJPBGPAVElement@2@1PAKPAPAV32@@Z, _Add@Element@DirectUI@@QAEJPAV12@@Z, _Click@Button@DirectUI@@SG_AVUID@@XZ, _SetEnabled@Element@DirectUI@@QAEJ_N@Z, _CreateGraphic@Value@DirectUI@@SGPAV12@PAUHICON__@@_N11@Z, _OnMessage@TaskPage@DirectUI@@MAE_NIIJPAJ@Z, __1TaskPage@DirectUI@@UAE@XZ, _EndDefer@Element@DirectUI@@QAEXK@Z, _StartDefer@Element@DirectUI@@QAEXPAK@Z, _SetTooltip@Element@DirectUI@@QAEJ_N@Z, _SetTooltipMaxWidth@Element@DirectUI@@QAEJH@Z, _SetContentString@Element@DirectUI@@QAEJPBG@Z, _SetAccName@Element@DirectUI@@QAEJPBG@Z, _SetAccValue@Element@DirectUI@@QAEJPBG@Z, _SetAccDesc@Element@DirectUI@@QAEJPBG@Z, _SetVisible@Element@DirectUI@@QAEJ_N@Z, _SetLayoutPos@Element@DirectUI@@QAEJH@Z, StrToID, _GetElement@TaskPage@DirectUI@@IAEPAVElement@2@XZ, _FindDescendent@Element@DirectUI@@QAEPAV12@G@Z, _GetParentHWND@TaskPage@DirectUI@@QAEPAUHWND__@@XZ, _PropSheet_SendMessage@TaskPage@DirectUI@@IAEJIIJ@Z, _DestroyCP@TaskPage@DirectUI@@EAEXXZ, _CreateParserCP@TaskPage@DirectUI@@EAEJPAPAVDUIXmlParser@2@@Z, _CreateDUICP@TaskPage@DirectUI@@EAEJPAVHWNDElement@2@PAUHWND__@@1PAPAVElement@2@PAPAVDUIXmlParser@2@@Z, _OnQueryInitialFocus@TaskPage@DirectUI@@MAEPAVElement@2@XZ, _OnWizFinish@TaskPage@DirectUI@@MAEJXZ, _OnReset@TaskPage@DirectUI@@MAEJXZ, _OnKillActive@TaskPage@DirectUI@@MAEJXZ, _InitPropSheetPage@TaskPage@DirectUI@@MAEXPAU_PROPSHEETPAGEW@@@Z, _LoadPage@TaskPage@DirectUI@@MAEJPAVHWNDElement@2@PAUHINSTANCE__@@PAPAVElement@2@PAPAVDUIXmlParser@2@@Z, _LoadParser@TaskPage@DirectUI@@MAEJPAPAVDUIXmlParser@2@@Z, _OnListenedEvent@TaskPage@DirectUI@@MAEXPAVElement@2@PAUEvent@2@@Z, _OnListenedInput@TaskPage@DirectUI@@MAEXPAVElement@2@PAUInputEvent@2@@Z, _OnListenedPropertyChanged@TaskPage@DirectUI@@MAEXPAVElement@2@PBUPropertyInfo@2@HPAVValue@2@2@Z, _OnListenedPropertyChanging@TaskPage@DirectUI@@MAE_NPAVElement@2@PBUPropertyInfo@2@HPAVValue@2@2@Z, _OnListenerDetach@TaskPage@DirectUI@@MAEXPAVElement@2@@Z, _OnListenerAttach@TaskPage@DirectUI@@MAEXPAVElement@2@@Z, __0TaskPage@DirectUI@@QAE@XZ, __1HWNDHost@DirectUI@@UAE@XZ, _Register@HWNDHost@DirectUI@@SGJXZ, _OnPropertyChanged@HWNDHost@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _KeyFocusedProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _GetBool@Value@DirectUI@@QAE_NXZ, _Initialize@HWNDHost@DirectUI@@QAEJIIPAVElement@2@PAK@Z, _GetDisplayNode@Element@DirectUI@@QAEPAUHGADGET__@@XZ, _GetClassInfoPtr@HWNDHost@DirectUI@@SGPAUIClassInfo@2@XZ, _OnNotify@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _GetClassInfoW@HWNDHost@DirectUI@@UAEPAUIClassInfo@2@XZ, _GetContentSize@Element@DirectUI@@UAE_AUtagSIZE@@HHPAVSurface@2@@Z, _OnInput@HWNDHost@DirectUI@@UAEXPAUInputEvent@2@@Z, __0HWNDHost@DirectUI@@QAE@XZ, _Register@Edit@DirectUI@@SGJXZ, _Register@HWNDElement@DirectUI@@SGJXZ, _Register@CCBase@DirectUI@@SGJXZ, _GetFactoryLock@Element@DirectUI@@SGPAU_RTL_CRITICAL_SECTION@@XZ, __0CritSecLock@DirectUI@@QAE@PAU_RTL_CRITICAL_SECTION@@@Z, _ClassExist@ClassInfoBase@DirectUI@@SG_NPAPAUIClassInfo@2@PBQBUPropertyInfo@2@IPAU32@PAUHINSTANCE__@@PBG_N@Z, _Register@ClassInfoBase@DirectUI@@QAEJXZ, __1CritSecLock@DirectUI@@QAE@XZ, _Initialize@CCBase@DirectUI@@QAEJIPAVElement@2@PAK@Z, _Initialize@ClassInfoBase@DirectUI@@QAEJPAUHINSTANCE__@@PBG_NPBQBUPropertyInfo@2@I@Z, _Initialize@CCListView@DirectUI@@QAEJIPAVElement@2@PAK@Z, _SetWinStyle@CCBase@DirectUI@@QAEJH@Z, _Initialize@Edit@DirectUI@@QAEJIPAVElement@2@PAK@Z, _Destroy@Element@DirectUI@@QAEJ_N@Z, _DirectionProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _SetNotifyHandler@CCBase@DirectUI@@QAEXP6GHIIJPAJPAX@Z1@Z, _OnNotify@Edit@DirectUI@@UAE_NIIJPAJ@Z, _CreateHWND@Edit@DirectUI@@MAEPAUHWND__@@PAU3@_N@Z, _DefaultAction@Element@DirectUI@@UAEJXZ, _MessageCallback@Edit@DirectUI@@UAEIPAUtagGMSG@@@Z, _GetContentSize@Edit@DirectUI@@UAE_AUtagSIZE@@HHPAVSurface@2@@Z, _OnInput@Edit@DirectUI@@UAEXPAUInputEvent@2@@Z, _OnPropertyChanged@Edit@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _GetContentStringAsDisplayed@Edit@DirectUI@@UAEPBGPAPAVValue@2@@Z, _IsContentProtected@Edit@DirectUI@@UAE_NXZ, __0Edit@DirectUI@@QAE@XZ, __1ClassInfoBase@DirectUI@@UAE@XZ, _AssertPIZeroRef@ClassInfoBase@DirectUI@@UBEXXZ, _GetChildren@ClassInfoBase@DirectUI@@UBEHXZ, _RemoveChild@ClassInfoBase@DirectUI@@UAEXXZ, _AddChild@ClassInfoBase@DirectUI@@UAEXXZ, _IsGlobal@ClassInfoBase@DirectUI@@UBE_NXZ, _GetModule@ClassInfoBase@DirectUI@@UBEPAUHINSTANCE__@@XZ, _IsSubclassOf@ClassInfoBase@DirectUI@@UBE_NPAUIClassInfo@2@@Z, _IsValidProperty@ClassInfoBase@DirectUI@@UBE_NPBUPropertyInfo@2@@Z, _GetName@ClassInfoBase@DirectUI@@UBEPBGXZ, _GetGlobalIndex@ClassInfoBase@DirectUI@@UBEIXZ, _GetPICount@ClassInfoBase@DirectUI@@UBEIXZ, _GetByClassIndex@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z, _EnumPropertyInfo@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z, _Release@ClassInfoBase@DirectUI@@UAEHXZ, _AddRef@ClassInfoBase@DirectUI@@UAEXXZ, __0ClassInfoBase@DirectUI@@QAE@XZ, _GetClassInfoW@CCListView@DirectUI@@UAEPAUIClassInfo@2@XZ, _OnPropertyChanged@CCBase@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, __0CCListView@DirectUI@@QAE@XZ, _GetClassInfoPtr@Edit@DirectUI@@SGPAUIClassInfo@2@XZ, _GetClassInfoPtr@HWNDElement@DirectUI@@SGPAUIClassInfo@2@XZ, _GetClassInfoPtr@CCBase@DirectUI@@SGPAUIClassInfo@2@XZ, _GetMultiline@Edit@DirectUI@@QAE_NXZ, _GetThemedBorder@Edit@DirectUI@@QAE_NXZ, _AttachCtrlSubclassProc@HWNDHost@DirectUI@@KGXPAUHWND__@@@Z, _OnInput@Element@DirectUI@@UAEXPAUInputEvent@2@@Z, _OnInput@CCBase@DirectUI@@UAEXPAUInputEvent@2@@Z, __1CCBase@DirectUI@@UAE@XZ, _PostCreate@CCBase@DirectUI@@MAEXPAUHWND__@@@Z, _OnReceivedDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z, _OnLostDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z, _OnCustomDraw@CCBase@DirectUI@@UAE_NPAUtagNMCUSTOMDRAWINFO@@PAJ@Z, _EraseBkgnd@HWNDHost@DirectUI@@MAE_NPAUHDC__@@PAJ@Z, _CreateHWND@CCBase@DirectUI@@UAEPAUHWND__@@PAU3@@Z, _SetWindowDirection@HWNDHost@DirectUI@@UAEXPAUHWND__@@@Z, _OnAdjustWindowSize@HWNDHost@DirectUI@@UAEHHHI@Z, _OnWindowStyleChanged@HWNDHost@DirectUI@@UAEXIPBUtagSTYLESTRUCT@@@Z, _OnCtrlThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnSinkThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnSysChar@HWNDHost@DirectUI@@UAE_NG@Z, _OnMessage@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z, _OnNotify@CCBase@DirectUI@@UAE_NIIJPAJ@Z, _GetHWND@HWNDHost@DirectUI@@UAEPAUHWND__@@XZ, _HandleUiaEventListener@Element@DirectUI@@UAEXPAUEvent@2@@Z, _HandleUiaPropertyChangingListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@@Z, _HandleUiaPropertyListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z, _HandleUiaDestroyListener@Element@DirectUI@@UAEXXZ, _GetElementProviderImpl@Element@DirectUI@@UAEJPAVInvokeHelper@2@PAPAVElementProvider@2@@Z, _Release@Value@DirectUI@@QAEXXZ, _SetValue@Element@DirectUI@@QAEJP6GPBUPropertyInfo@2@XZHPAVValue@2@@Z, _ContentProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ, _SetID@Element@DirectUI@@QAEJPBG@Z, _GetChildren@Element@DirectUI@@QAEPAV_$DynamicArray@PAVElement@DirectUI@@$0A@@2@PAPAVValue@2@@Z, _DefaultAction@CCBase@DirectUI@@UAEJXZ, _GetAccessibleImpl@HWNDHost@DirectUI@@UAEJPAPAUIAccessible@@@Z, _GetClassInfoW@CCBase@DirectUI@@UAEPAUIClassInfo@2@XZ, _GetKeyFocused@HWNDHost@DirectUI@@UAE_NXZ, _RemoveTooltip@Element@DirectUI@@MAEXPAV12@@Z, _ActivateTooltip@Element@DirectUI@@MAEXPAV12@K@Z, _UpdateTooltip@Element@DirectUI@@MAEXPAV12@@Z, _OnUnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z, _OnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z, __SelfLayoutUpdateDesiredSize@Element@DirectUI@@MAE_AUtagSIZE@@HHPAVSurface@2@@Z, __SelfLayoutDoLayout@Element@DirectUI@@MAEXHH@Z, _QueryInterface@Element@DirectUI@@UAGJABU_GUID@@PAPAX@Z, _MessageCallback@HWNDHost@DirectUI@@UAEIPAUtagGMSG@@@Z, _SetKeyFocus@HWNDHost@DirectUI@@UAEXXZ, __BTaskPage@DirectUI@@QAEPAU_PSP@@XZ, _DUICreatePropertySheetPage@TaskPage@DirectUI@@QAEJPAUHINSTANCE__@@@Z, InitProcessPriv, _EnsureVisible@Element@DirectUI@@UAE_NHHHH@Z, _GetAdjacent@Element@DirectUI@@UAEPAV12@PAV12@HPBUNavReference@2@K@Z, _Remove@Element@DirectUI@@UAEJPAPAV12@I@Z, _Insert@Element@DirectUI@@UAEJPAPAV12@II@Z, _Add@Element@DirectUI@@UAEJPAPAV12@I@Z, _Paint@HWNDHost@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z, _OnEvent@HWNDHost@DirectUI@@UAEXPAUEvent@2@@Z, _OnDestroy@HWNDHost@DirectUI@@UAEXXZ, _OnMouseFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z, _OnKeyFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z, UnInitProcessPriv, InitThread, UnInitThread, _OnGroupChanged@Element@DirectUI@@UAEXH_N@Z, _OnPropertyChanged@Element@DirectUI@@UAEXPAUPropertyInfo@2@HPAVValue@2@1@Z, _OnPropertyChanging@Element@DirectUI@@UAE_NPAUPropertyInfo@2@HPAVValue@2@1@Z, _OnPropertyChanging@Element@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z, _GetContentStringAsDisplayed@Element@DirectUI@@UAEPBGPAPAVValue@2@@Z, _IsContentProtected@Element@DirectUI@@UAE_NXZ, _IsRTLReading@Element@DirectUI@@UAE_NXZ, __0CCBase@DirectUI@@QAE@KPBG@Z, _GetString@Value@DirectUI@@QAEPBGXZ, _GetContentString@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z, _SetNote@CCCommandLink@DirectUI@@QAEJPBG@Z, __1Edit@DirectUI@@UAE@XZ
> SHLWAPI.dll: SHCreateStreamOnFileEx
> WINHTTP.dll: WinHttpSendRequest, WinHttpOpenRequest, WinHttpConnect, WinHttpOpen, WinHttpCrackUrl, WinHttpGetDefaultProxyConfiguration, WinHttpGetIEProxyConfigForCurrentUser, WinHttpCloseHandle, WinHttpQueryHeaders, WinHttpReceiveResponse, WinHttpWriteData, WinHttpReadData, WinHttpSetOption, WinHttpGetProxyForUrl
( 0 exports )
RDS...: NSRL Reference Data Set
-
trid..: Windows OCX File (85.9%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
DOS Executable Generic (1.3%)
pdfid.: -
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Diagnostics Troubleshooting Wizard
original name: msdt.exe
internal name: DiagWizard
file version.: 6.1.7600.16385 (win7_rtm.090713-1255)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Re: preventivni kontrola logu
Sdianghost.exe
a-squared 5.0.0.26 2010.06.12 -
AhnLab-V3 2010.06.11.00 2010.06.11 -
AntiVir 8.2.2.6 2010.06.11 -
Antiy-AVL 2.0.3.7 2010.06.11 -
Authentium 5.2.0.5 2010.06.11 -
Avast 4.8.1351.0 2010.06.11 -
Avast5 5.0.332.0 2010.06.11 -
AVG 9.0.0.787 2010.06.11 -
BitDefender 7.2 2010.06.11 -
CAT-QuickHeal 10.00 2010.06.11 -
ClamAV 0.96.0.3-git 2010.06.11 -
Comodo 5059 2010.06.11 -
DrWeb 5.0.2.03300 2010.06.11 -
eSafe 7.0.17.0 2010.06.10 -
eTrust-Vet 36.1.7629 2010.06.11 -
F-Prot 4.6.0.103 2010.06.11 -
F-Secure 9.0.15370.0 2010.06.11 -
Fortinet 4.1.133.0 2010.06.11 -
GData 21 2010.06.12 -
Ikarus T3.1.1.84.0 2010.06.11 -
Jiangmin 13.0.900 2010.06.11 -
Kaspersky 7.0.0.125 2010.06.11 -
McAfee 5.400.0.1158 2010.06.11 -
McAfee-GW-Edition 2010.1 2010.06.11 -
Microsoft 1.5802 2010.06.11 -
NOD32 5191 2010.06.11 -
Norman 6.04.12 2010.06.11 -
nProtect 2010-06-11.01 2010.06.11 -
Panda 10.0.2.7 2010.06.11 -
PCTools 7.0.3.5 2010.06.11 -
Prevx 3.0 2010.06.12 -
Rising 22.51.04.04 2010.06.11 -
Sophos 4.54.0 2010.06.11 -
Sunbelt 6436 2010.06.11 -
Symantec 20101.1.0.89 2010.06.11 -
TheHacker 6.5.2.0.297 2010.06.11 -
TrendMicro 9.120.0.1004 2010.06.11 -
TrendMicro-HouseCall 9.120.0.1004 2010.06.12 -
VBA32 3.12.12.5 2010.06.11 -
ViRobot 2010.6.11.3881 2010.06.11 -
VirusBuster 5.0.27.0 2010.06.11 -
Rozšiřující informace
File size: 21504 bytes
MD5...: 15f07e50407139aa93d3fb6e612d2f74
SHA1..: 77c70b58ca78922b4a1b2d38a6378539c9140d6c
SHA256: aee5af2e994b008a7a2bf47283b8fc9197ca67296cdd18f3ba37ef3631fcce8f
ssdeep: 384:WF7ZmM+BA/y4MR2J/mByJA8JMb1y5SKLDPBk5p/VpnweqV5cQXLeixWZt7DW
:V408Q1y5SKpkL/ceU/XLeim
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x29fb
timedatestamp.....: 0x4a5bc113 (Mon Jul 13 23:19:47 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x3510 0x3600 6.17 31cbb5850f120ce5497d07afa221771e
.data 0x5000 0x410 0x200 1.11 d7bd02ba39cd6979733b8381d8fc4f24
.rsrc 0x6000 0x11f8 0x1200 3.96 33332c7d51d4338221fe2cdbe4763c68
.reloc 0x8000 0x588 0x600 3.98 d579eae4cd39e38729f6417518efec86
( 5 imports )
> ADVAPI32.dll: EventRegister, EventUnregister, MakeAbsoluteSD, ConvertStringSecurityDescriptorToSecurityDescriptorW, OpenThreadToken, OpenProcessToken, GetTokenInformation, ConvertSidToStringSidW, AllocateAndInitializeSid, CheckTokenMembership, FreeSid, EventWrite
> KERNEL32.dll: AllocConsole, CreateEventW, HeapSetInformation, SetCurrentDirectoryW, GetCurrentDirectoryW, GetCurrentThread, CloseHandle, UnhandledExceptionFilter, GetCurrentProcess, TerminateProcess, GetSystemTimeAsFileTime, GetCurrentProcessId, GetCurrentThreadId, GetTickCount, QueryPerformanceCounter, GetModuleHandleA, SetUnhandledExceptionFilter, GetStartupInfoW, InterlockedCompareExchange, Sleep, InterlockedExchange, HeapFree, LocalFree, HeapAlloc, GetLastError, GetProcessHeap, InterlockedDecrement, SetEvent, InterlockedIncrement, WaitForSingleObject
> msvcrt.dll: _controlfp, _except_handler4_common, _terminate@@YAXXZ, _onexit, _lock, __dllonexit, _unlock, __1type_info@@UAE@XZ, __set_app_type, __p__fmode, __p__commode, __setusermatherr, _amsg_exit, _initterm, _wcmdln, exit, _XcptFilter, _exit, _cexit, __wgetmainargs, malloc, _callnewh, _CxxThrowException, free, __0exception@@QAE@ABV0@@Z, __1exception@@UAE@XZ, _what@exception@@UBEPBDXZ, __0exception@@QAE@XZ, __CxxFrameHandler3, _vsnprintf, _vsnwprintf
> ole32.dll: CoInitializeSecurity, CoInitializeEx, CoUninitialize, CoRegisterClassObject, CoRevokeClassObject, CoCreateInstance
> ntdll.dll: DbgPrintEx
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Scripted Diagnostics Native Host
original name: sdiagnhost.exe
internal name: sdiagnhost.exe
file version.: 6.1.7600.16385 (win7_rtm.090713-1255)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
a-squared 5.0.0.26 2010.06.12 -
AhnLab-V3 2010.06.11.00 2010.06.11 -
AntiVir 8.2.2.6 2010.06.11 -
Antiy-AVL 2.0.3.7 2010.06.11 -
Authentium 5.2.0.5 2010.06.11 -
Avast 4.8.1351.0 2010.06.11 -
Avast5 5.0.332.0 2010.06.11 -
AVG 9.0.0.787 2010.06.11 -
BitDefender 7.2 2010.06.11 -
CAT-QuickHeal 10.00 2010.06.11 -
ClamAV 0.96.0.3-git 2010.06.11 -
Comodo 5059 2010.06.11 -
DrWeb 5.0.2.03300 2010.06.11 -
eSafe 7.0.17.0 2010.06.10 -
eTrust-Vet 36.1.7629 2010.06.11 -
F-Prot 4.6.0.103 2010.06.11 -
F-Secure 9.0.15370.0 2010.06.11 -
Fortinet 4.1.133.0 2010.06.11 -
GData 21 2010.06.12 -
Ikarus T3.1.1.84.0 2010.06.11 -
Jiangmin 13.0.900 2010.06.11 -
Kaspersky 7.0.0.125 2010.06.11 -
McAfee 5.400.0.1158 2010.06.11 -
McAfee-GW-Edition 2010.1 2010.06.11 -
Microsoft 1.5802 2010.06.11 -
NOD32 5191 2010.06.11 -
Norman 6.04.12 2010.06.11 -
nProtect 2010-06-11.01 2010.06.11 -
Panda 10.0.2.7 2010.06.11 -
PCTools 7.0.3.5 2010.06.11 -
Prevx 3.0 2010.06.12 -
Rising 22.51.04.04 2010.06.11 -
Sophos 4.54.0 2010.06.11 -
Sunbelt 6436 2010.06.11 -
Symantec 20101.1.0.89 2010.06.11 -
TheHacker 6.5.2.0.297 2010.06.11 -
TrendMicro 9.120.0.1004 2010.06.11 -
TrendMicro-HouseCall 9.120.0.1004 2010.06.12 -
VBA32 3.12.12.5 2010.06.11 -
ViRobot 2010.6.11.3881 2010.06.11 -
VirusBuster 5.0.27.0 2010.06.11 -
Rozšiřující informace
File size: 21504 bytes
MD5...: 15f07e50407139aa93d3fb6e612d2f74
SHA1..: 77c70b58ca78922b4a1b2d38a6378539c9140d6c
SHA256: aee5af2e994b008a7a2bf47283b8fc9197ca67296cdd18f3ba37ef3631fcce8f
ssdeep: 384:WF7ZmM+BA/y4MR2J/mByJA8JMb1y5SKLDPBk5p/VpnweqV5cQXLeixWZt7DW
:V408Q1y5SKpkL/ceU/XLeim
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x29fb
timedatestamp.....: 0x4a5bc113 (Mon Jul 13 23:19:47 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x3510 0x3600 6.17 31cbb5850f120ce5497d07afa221771e
.data 0x5000 0x410 0x200 1.11 d7bd02ba39cd6979733b8381d8fc4f24
.rsrc 0x6000 0x11f8 0x1200 3.96 33332c7d51d4338221fe2cdbe4763c68
.reloc 0x8000 0x588 0x600 3.98 d579eae4cd39e38729f6417518efec86
( 5 imports )
> ADVAPI32.dll: EventRegister, EventUnregister, MakeAbsoluteSD, ConvertStringSecurityDescriptorToSecurityDescriptorW, OpenThreadToken, OpenProcessToken, GetTokenInformation, ConvertSidToStringSidW, AllocateAndInitializeSid, CheckTokenMembership, FreeSid, EventWrite
> KERNEL32.dll: AllocConsole, CreateEventW, HeapSetInformation, SetCurrentDirectoryW, GetCurrentDirectoryW, GetCurrentThread, CloseHandle, UnhandledExceptionFilter, GetCurrentProcess, TerminateProcess, GetSystemTimeAsFileTime, GetCurrentProcessId, GetCurrentThreadId, GetTickCount, QueryPerformanceCounter, GetModuleHandleA, SetUnhandledExceptionFilter, GetStartupInfoW, InterlockedCompareExchange, Sleep, InterlockedExchange, HeapFree, LocalFree, HeapAlloc, GetLastError, GetProcessHeap, InterlockedDecrement, SetEvent, InterlockedIncrement, WaitForSingleObject
> msvcrt.dll: _controlfp, _except_handler4_common, _terminate@@YAXXZ, _onexit, _lock, __dllonexit, _unlock, __1type_info@@UAE@XZ, __set_app_type, __p__fmode, __p__commode, __setusermatherr, _amsg_exit, _initterm, _wcmdln, exit, _XcptFilter, _exit, _cexit, __wgetmainargs, malloc, _callnewh, _CxxThrowException, free, __0exception@@QAE@ABV0@@Z, __1exception@@UAE@XZ, _what@exception@@UBEPBDXZ, __0exception@@QAE@XZ, __CxxFrameHandler3, _vsnprintf, _vsnwprintf
> ole32.dll: CoInitializeSecurity, CoInitializeEx, CoUninitialize, CoRegisterClassObject, CoRevokeClassObject, CoCreateInstance
> ntdll.dll: DbgPrintEx
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Scripted Diagnostics Native Host
original name: sdiagnhost.exe
internal name: sdiagnhost.exe
file version.: 6.1.7600.16385 (win7_rtm.090713-1255)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Re: preventivni kontrola logu
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Verze databáze: 4190
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
12.6.2010 7:26:49
mbam-log-2010-06-12 (07-26-49).txt
Typ skenu: Úplný sken (H:\|)
Skenované objekty: 204881
Uplynulý čas: 22 minuta(y), 44 sekunda(y)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 1
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 1
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče registru:
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
H:\System Volume Information\_restore{654307D5-C4D9-495B-A043-347BE44D5BFF}\RP931\A0145612.dll (Trojan.Hiloti) -> Quarantined and deleted successfully.
www.malwarebytes.org
Verze databáze: 4190
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
12.6.2010 7:26:49
mbam-log-2010-06-12 (07-26-49).txt
Typ skenu: Úplný sken (H:\|)
Skenované objekty: 204881
Uplynulý čas: 22 minuta(y), 44 sekunda(y)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 1
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 1
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče registru:
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
H:\System Volume Information\_restore{654307D5-C4D9-495B-A043-347BE44D5BFF}\RP931\A0145612.dll (Trojan.Hiloti) -> Quarantined and deleted successfully.
Re: preventivni kontrola logu
Co počítač, máš s ním ted nějaké problémy?
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde
Re: preventivni kontrola logu Vyřešeno
promin ze jsem se ted neozval, ale musim tento log ukoncit.Nedostanu se na PC dekuju za pomoc
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 101 hostů